IP Address Details:
🇰🇷Seoul, South Korea — LGTELECOM
Network Details
- ISP
- LGTELECOM
- Organization
- LGTELECOM
- ASN
- AS17853
- Registry (RIR)
- RIPE NCC
- Reverse DNS
- None
Geolocation
- Country
- 🇰🇷South Korea (KR)
- Region
- Seoul (11)
- Latitude
- 37.5658
- Longitude
- 126.9780
- Accuracy Radius
- ~100 km
- Continent
- Asia (AS)
Timezone & Region
- Timezone
- Asia/Seoul
- Abbreviation
- GMT+9
- UTC Offset
- GMT+09:00
- Capital
- Seoul
- Calling Code
- +82
- Currency
- KRW
Security Analysis
Routes traffic through a remote server to mask the real IP.
Intermediary server that forwards requests on behalf of users.
Part of the Tor anonymous communication network.
Hosted on a cloud or data center provider, not a residential ISP.
Apple iCloud Private Relay or similar privacy service.
RFC-reserved address not intended for public internet traffic.
WHOIS / Network Registration
Network Block
- Network Name
- LGTELECOM-KR
- Handle
- 106.96.0.0 - 106.103.255.255
- IP Range
- 106.96.0.0 – 106.103.255.255
- CIDR
- 106.96.0.0/13
- RIR
- APNIC
- Status
- active
Organization
- Name
- IP Manager
- ID
- SR104-KR
Abuse Reporting & Contact Directory
If you are experiencing malicious activity from this IP address, use the contacts below to file an abuse report with the network operator. Include timestamps, log excerpts, and the IP address in your report.
SR104-KRAbuse
DDoS attacks, hacking, port scanning, or any malicious activity originating from this IP address.
Technical
Routing issues, network outages, peering problems, or BGP misconfigurations.
When Should You Report This IP Address?
Your server is being flooded with traffic from this IP, causing outages or degraded performance.
Evidence to include: Firewall logs, bandwidth graphs, connection counts
Repeated login attempts, SSH brute forcing, or attempts to exploit vulnerabilities on your systems.
Evidence to include: Auth logs, fail2ban logs, IDS/IPS alerts
This IP is sending bulk unsolicited email or is listed on spam blocklists.
Evidence to include: Email headers, message samples, blocklist URLs
This IP hosts websites impersonating legitimate services to steal credentials or financial data.
Evidence to include: URLs, screenshots, domain registration details
Systematic scanning of your network ports or enumeration of services, often a precursor to an attack.
Evidence to include: Firewall logs, IDS alerts, netflow data
This IP is distributing malware, acting as a command-and-control server, or participating in a botnet.
Evidence to include: Malware samples, network captures, DNS logs
This IP hosts or distributes copyrighted material without authorization.
Evidence to include: URLs to infringing content, proof of ownership
Report to law enforcement immediately. Contact NCMEC (USA) or your national hotline, then notify the ISP.
Evidence to include: Do not download or retain material — report URLs/IPs only
Tips for Filing an Effective Abuse Report
- Always include the IP address, timestamps with timezone, and log excerpts showing the malicious activity.
- Send reports from a professional email address — ISPs may deprioritize reports from free email providers.
- For urgent threats (active attacks, CSAM), call the abuse phone number directly rather than waiting for an email response.
- If you don't receive a response within 48 hours, escalate to the Regional Internet Registry (APNIC).
- For child exploitation material, report to NCMEC CyberTipline (USA) or your national hotline first.