City: unknown
Region: unknown
Country: India
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 139.5.0.0 - 139.5.19.255
CIDR: 139.5.0.0/20, 139.5.16.0/22
NetName: APNIC-ERX-139-5-0-0
NetHandle: NET-139-5-0-0-1
Parent: NET139 (NET-139-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2015-09-04
Updated: 2022-03-08
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/139.5.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '139.5.0.0 - 139.5.3.255'
% Abuse contact for '139.5.0.0 - 139.5.3.255' is 'abuse@railtelindia.com'
inetnum: 139.5.0.0 - 139.5.3.255
netname: RAILTEL-IN
descr: RailTel Corporation is an Internet Service Provider.
country: IN
admin-c: NA1011-AP
tech-c: NA1011-AP
abuse-c: NA1011-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-IN-IRINN
mnt-lower: MAINT-IN-RAILTEL
mnt-lower: MAINT-IN-IRINN
mnt-routes: MAINT-IN-RAILTEL
mnt-routes: MAINT-IN-IRINN
mnt-irt: IRT-RAILTEL-IN
last-modified: 2025-08-11T22:56:46Z
source: APNIC
irt: IRT-RAILTEL-IN
address: Plot No, 143
address: Sector 44 ,Gurugram
address: Haryana ,122003
e-mail: abuse@railtelindia.com
abuse-mailbox: abuse@railtelindia.com
admin-c: NA1011-AP
tech-c: NA1011-AP
auth: # Filtered
mnt-by: MAINT-IN-RAILTEL
mnt-by: MAINT-IN-IRINN
last-modified: 2025-09-27T12:14:45Z
source: APNIC
person: Network Administrator
address: Plate-A, 6th Floor, Office Block Tower-2,
address: East Kidwai Nagar, New Delhi-110023
country: IN
phone: +91 11 22900600
e-mail: ipadmin@railtel.in
nic-hdl: NA1011-AP
mnt-by: MAINT-IN-RAILTEL
mnt-by: MAINT-IN-IRINN
fax-no: +91 11 22900699
last-modified: 2025-09-27T09:36:11Z
source: APNIC
% Information related to '139.5.0.0/24AS24186'
route: 139.5.0.0/24
descr: Railtel Enterprise Limited
origin: AS24186
mnt-by: MAINT-IN-REL
mnt-by: MAINT-IN-IRINN
last-modified: 2025-09-27T09:57:55Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.5.0.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22690
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.5.0.113. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101701 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 18 11:01:10 CST 2025
;; MSG SIZE rcvd: 104b'113.0.5.139.in-addr.arpa domain name pointer ws113-0.5.139.rcil.gov.in.
'b'113.0.5.139.in-addr.arpa name = ws113-0.5.139.rcil.gov.in.
Authoritative answers can be found from:
'| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.92.1.142 | attackbots | Jul 21 05:02:22 TORMINT sshd\[10275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.142 user=root Jul 21 05:02:24 TORMINT sshd\[10275\]: Failed password for root from 218.92.1.142 port 18821 ssh2 Jul 21 05:03:18 TORMINT sshd\[10361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.142 user=root ... |
2019-07-21 17:13:45 |
| 173.249.21.204 | attack | 21.07.2019 11:04:24 - Wordpress fail Detected by ELinOX-ALM |
2019-07-21 17:16:40 |
| 203.142.81.114 | attack | Jul 21 10:47:34 rpi sshd[30070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.81.114 Jul 21 10:47:35 rpi sshd[30070]: Failed password for invalid user admin from 203.142.81.114 port 43766 ssh2 |
2019-07-21 17:03:08 |
| 89.108.183.5 | attackspambots | Many RDP login attempts detected by IDS script |
2019-07-21 16:58:33 |
| 145.239.190.73 | attack | [portscan] tcp/22 [SSH] *(RWIN=65535)(07211223) |
2019-07-21 17:28:12 |
| 61.219.57.45 | attack | Unauthorised access (Jul 21) SRC=61.219.57.45 LEN=40 PREC=0x20 TTL=243 ID=25474 TCP DPT=445 WINDOW=1024 SYN |
2019-07-21 17:21:13 |
| 46.166.143.101 | attackspam | Automatic report - Banned IP Access |
2019-07-21 17:06:37 |
| 191.53.17.126 | attackbotsspam | failed_logins |
2019-07-21 16:51:58 |
| 41.208.150.114 | attack | Invalid user sisi from 41.208.150.114 port 49685 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.208.150.114 Failed password for invalid user sisi from 41.208.150.114 port 49685 ssh2 Invalid user jeronimo from 41.208.150.114 port 37395 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.208.150.114 |
2019-07-21 16:44:52 |
| 157.230.28.16 | attack | Automatic report - Banned IP Access |
2019-07-21 17:22:10 |
| 191.53.236.144 | attackbotsspam | failed_logins |
2019-07-21 17:23:22 |
| 41.210.141.252 | attackbots | UG - - [21 Jul 2019:09:30:29 +0300] GET f2me paysms.php?c=ru&p=07 HTTP 1.1 403 292 - UNTRUSTED 1.0 |
2019-07-21 17:04:20 |
| 223.181.244.5 | attackspam | Sun, 21 Jul 2019 07:37:52 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 17:45:45 |
| 51.15.191.81 | attackspam | NAME : ONLINE_NET_DEDICATED_SERVERS CIDR : 51.15.0.0/16 | EMAIL - SPAM {Looking for resource vulnerabilities} DDoS Attack France - block certain countries :) IP: 51.15.191.81 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-07-21 17:36:46 |
| 51.77.157.78 | attackbots | Jul 21 09:39:20 lnxmail61 sshd[25582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.78 |
2019-07-21 17:01:44 |