104.196.48.226
Threat Intelligence Briefing: IP 104.196.48.226/32
Observation Summary:
- IP Address: 104.196.48.226/32
- Organization: Google LLC
- Location: United States
- ASN (Autonomous System Number): AS15169
- Hosting Provider: Google
- Services: Primarily associated with Google Cloud Platform services.
Observation History:
- Activity Patterns:
The IP address is consistently associated with Google services, exhibiting normal traffic patterns typical of cloud infrastructure operations. Historical data indicates no anomalies or suspicious activities.
- Relationships:
The IP is part of Google's global network infrastructure. It interacts frequently with other Google-owned IPs, supporting typical cloud services like data storage, processing, and application hosting.
- Neighborhood Data:
The IP resides within a network block managed by Google, surrounded by other IPs related to Google's cloud and service offerings. The neighborhood shows no signs of hosting malicious activities or compromised nodes.
Threat Analysis:
- Threat Level: Low
Based on the observed data, the IP address 104.196.48.226/32 does not exhibit any indicators of compromise or malicious behavior. It aligns with expected activity for a Google Cloud service endpoint.
- Actionable Insights:
- Continue monitoring for any deviations from established traffic patterns, which could indicate potential misuse.
- Ensure that any traffic to or from this IP is expected and aligns with legitimate Google Cloud service usage.
- Maintain awareness of Google Cloud security advisories and updates to ensure ongoing protection against emerging threats.
Conclusion:
The IP address 104.196.48.226/32 is a legitimate part of Google's infrastructure, primarily used for cloud services. There are no current threats associated with this IP based on observed data. SOC teams should continue routine monitoring and adhere to best practices for cloud security management.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 226.48.196.104.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 226.48.196.104.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 53% | 1 | 13 |
| services | 12% | 2 | 2 |
| ownership | 17% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 31% | 2 | 3 |
| Overall | 28% | 10 | 28 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-10 10:12:57 UTC |
| Last Seen | 2026-06-27 17:17:28 UTC |
| Profile Built | 2026-06-28 17:22:15 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 40 |
Full dossier details are available via our API.