Skip to main content
DNS Checker(beta)

IP Address Details:

🇧🇷São Paulo, São Paulo, Brazil — Cloudflare, Inc.

IPv4
Datacenter — Cloudflare

Network Details

ISP
Cloudflare, Inc.
Organization
Cloudflare, Inc.
ASN
AS13335
Registry (RIR)
RIPE NCC
Reverse DNS
None

Geolocation

Country
🇧🇷Brazil (BR)
Region
São Paulo (SP)
City
São Paulo
Postal Code
01323
Latitude
-23.5475
Longitude
-46.6361
Accuracy Radius
~100 km
Continent
South America (SA)

Timezone & Region

Timezone
America/Sao_Paulo
Abbreviation
GMT-3
UTC Offset
GMT-03:00
Capital
Brasilia
Calling Code
+55
Currency
BRL

Security Analysis

Threat Score15/100 — Low Risk
VPN
Clear

Routes traffic through a remote server to mask the real IP.

Proxy
Clear

Intermediary server that forwards requests on behalf of users.

Tor Exit Node
Clear

Part of the Tor anonymous communication network.

Datacenter / Cloud
Detected

Hosted on a cloud or data center provider, not a residential ISP.

Privacy Relay
Clear

Apple iCloud Private Relay or similar privacy service.

Bogon / Reserved
Clear

RFC-reserved address not intended for public internet traffic.

Detected Services

Cloudflare

WHOIS / Network Registration

Network Block

Network Name
CLOUDFLARENET
Handle
NET-104-16-0-0-1
IP Range
104.16.0.0 – 104.31.255.255
CIDR
104.16.0.0/12
RIR
ARIN
Status
active

Organization

Name
Cloudflare, Inc.
ID
CLOUD14
Address
101 Townsend Street, San Francisco, CA, 94107, United States
Registered Mar 28, 2014
Last Updated Sep 4, 2024

Abuse Reporting & Contact Directory

If you are experiencing malicious activity from this IP address, use the contacts below to file an abuse report with the network operator. Include timestamps, log excerpts, and the IP address in your report.

Cloudflare, Inc.CLOUD14
101 Townsend Street, San Francisco, CA, 94107, United States

Abuse

DDoS attacks, hacking, port scanning, or any malicious activity originating from this IP address.

Technical

Routing issues, network outages, peering problems, or BGP misconfigurations.

When Should You Report This IP Address?

DDoS / DoS Attack

Your server is being flooded with traffic from this IP, causing outages or degraded performance.

Evidence to include: Firewall logs, bandwidth graphs, connection counts

Brute Force / Unauthorized Access

Repeated login attempts, SSH brute forcing, or attempts to exploit vulnerabilities on your systems.

Evidence to include: Auth logs, fail2ban logs, IDS/IPS alerts

Spam & Unsolicited Email

This IP is sending bulk unsolicited email or is listed on spam blocklists.

Evidence to include: Email headers, message samples, blocklist URLs

Phishing & Scam Sites

This IP hosts websites impersonating legitimate services to steal credentials or financial data.

Evidence to include: URLs, screenshots, domain registration details

Port Scanning & Reconnaissance

Systematic scanning of your network ports or enumeration of services, often a precursor to an attack.

Evidence to include: Firewall logs, IDS alerts, netflow data

Malware & Botnet C2

This IP is distributing malware, acting as a command-and-control server, or participating in a botnet.

Evidence to include: Malware samples, network captures, DNS logs

Copyright / DMCA Violation

This IP hosts or distributes copyrighted material without authorization.

Evidence to include: URLs to infringing content, proof of ownership

Child Exploitation (CSAM)

Report to law enforcement immediately. Contact NCMEC (USA) or your national hotline, then notify the ISP.

Evidence to include: Do not download or retain material — report URLs/IPs only

Tips for Filing an Effective Abuse Report

  • Always include the IP address, timestamps with timezone, and log excerpts showing the malicious activity.
  • Send reports from a professional email address — ISPs may deprioritize reports from free email providers.
  • For urgent threats (active attacks, CSAM), call the abuse phone number directly rather than waiting for an email response.
  • If you don't receive a response within 48 hours, escalate to the Regional Internet Registry (ARIN).
  • For child exploitation material, report to NCMEC CyberTipline (USA) or your national hotline first.