[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now


Port scanning - any way to contact the provider?

Posted on 2008-10-08
Medium Priority
Last Modified: 2013-12-14
We're getting thousands of port scannings from
GB/United Kingdom/mobile-032-148-149-213.mycingular.net
where the MAC address is always the same, but the IP address changes (but always mycingular.net)

any suggestions?
Question by:willsherwood
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Accepted Solution

belowzerotech earned 1000 total points
ID: 22670386
you can always do a WHOIS on the IP. this is what I get.

OrgName:    AT&T Global Network Services
OrgID:      ATGS
Address:    3200 Lake Emma Road
City:       Lake Mary
StateProv:  FL
PostalCode: 32746
Country:    US

NetRange: -
NetName:    ATT-32-0-0-0-A
NetHandle:  NET-32-0-0-0-1
NetType:    Direct Allocation
Updated:    2007-05-22

RTechHandle: IAA17-ARIN
RTechName:   IP Address Administration
RTechPhone:  +1-732-420-2071
RTechEmail:  addrmgt@qsun.att.com

OrgAbuseHandle: ATTAB-ARIN
OrgAbuseName:   ATT Abuse
OrgAbusePhone:  +1-919-319-8130
OrgAbuseEmail:  abuse@att.net

OrgTechHandle: ICC-ARIN
OrgTechName:   IP Customer Care
OrgTechPhone:  +1-888-613-6330
OrgTechEmail:  harishbhavsar@att.com

OrgTechHandle: IPSWI-ARIN
OrgTechName:   IP SWIP
OrgTechPhone:  +1-888-613-6330
OrgTechEmail:  swipid@icorefep2.noc.att.com

OrgTechHandle: GIS3-ARIN
OrgTechName:   GMIS IP SWIP
OrgTechPhone:  +1-404-962-5160
OrgTechEmail:  rm-att-gmis-ipreg@ems.att.com

OrgTechHandle: DRU40-ARIN
OrgTechName:   Rueegg, Daniel
OrgTechPhone:  +41 1 4957899
OrgTechEmail:  drueegg5@agns.ch

# ARIN WHOIS database, last updated 2008-10-07 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
LVL 32

Assisted Solution

harbor235 earned 1000 total points
ID: 22670598

Port scanning is not against the law, I would however review your site's security posture and ensure that you have things locked down. If you continue to get scans someone is looking to find a way in. Now is a good time to do security assessment and even do a port scan your self from outside your network and see what the scanners are seeing.

Like belowzerotech posted above, you should also send an email to abuse@att.net. ATT has a very robust security depatment and I sure they can at least look into the source since it is within their network(s).

harbor235 ;}

Author Closing Comment

ID: 31504299

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions? Just ask.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question