136.109.220.38
IP Intelligence Briefing for 136.109.220.38
Date: 2026-06-11
---
**1. Core Profile**
- Risk Score: 50 (Moderate Risk)
- Ownership: Google LLC (ASN 396982, netname GOOGL-2)
- Geolocation: The Dalles, Oregon, US (45.6°N, -121.18°W)
- Network Role: Google Cloud Compute instance (firewalled, no services exposed)
- Threat Indicators: Clean (no malicious activity, no blacklist entries)
---
**2. Observation History**
- Latest Activity: June 2026
- Geolocation inferred via multi-signal inference (confidence 0.56)
- No recent threat signals or network instability
- Ownership unchanged over 30 days (avg. ownership days: N/A)
---
**3. Relationships**
- DNS Associations: Linked to `38.220.109.136.bc.googleusercontent.com` (Google service)
- Network Relationships:
- Same subnet as Google's GOOGL-2 ASN (136.107.0.0/16)
- No correlated malicious IPs or campaigns
---
**4. Neighborhood Analysis**
- Subnet: 136.109.220.38/24
- Abuse Density: 0% (clean subnet)
- Neighbors: No active or malicious sibling IPs in the subnet
---
**5. Recommended Actions**
- Firewall Rules (Example):
- `iptables -A INPUT -s 136.109.220.38 -j DROP`
- Cloudflare/WAF rule: Block IP with description "IPDebrief risk score 50"
- Monitoring: Track for unexpected geolocation changes or new threat indicators.
---
**Conclusion**
This IP is a legitimate Google Cloud Compute instance with no detected malicious activity. The moderate risk score may reflect benign infrastructure activity. No immediate action required, but continued monitoring is advised for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGL-2 |
| CIDR Block | 136.107.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 38.220.109.136.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 38.220.109.136.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | 1/4 domains |
| DMARC | 1/4 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
| Domains Checked | 4 domains |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 443 | https | tcp | β |
| Closed Ports | 22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | kuberneteskubernetes.defaultkubernetes.default.svckubernetes.default.svc.cluster.local |
| Valid From | 2026-06-11T07:40:46+00:00 |
| Valid Until | 2031-06-10T07:42:46+00:00 |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 8% | 1 | 1 |
| services | 24% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 35% | 2 | 3 |
| Overall | 22% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-27 01:06:43 UTC |
| Last Seen | 2026-06-29 03:37:10 UTC |
| Profile Built | 2026-06-29 04:00:46 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 25 |
Full dossier details are available via our API.