136.112.89.205
# IP INTELLIGENCE BRIEFING
Target: 136.112.89.205/32
Classification: Google Cloud Infrastructure (ASN 396982)
Report Date: 2026-06-21
---
## Executive Summary
IP 136.112.89.205 operates as Google Cloud infrastructure with an overall risk score of 25 (Low Risk). The IP is associated with Google LLC (ASN 396982), network GOOGL-46, within the 136.112.0.0/12 CIDR block. Geolocation indicates the United States (Council Bluffs, IA) with an accuracy radius of 830km. The IP is classified as cloud compute hosting with no active open ports (firewalled state).
---
## Risk Assessment
| Metric | Value |
|---|---|
| **Risk Score** | 25 (Low Risk) |
| **Provider Score** | 0 |
| **Authority Score** | 0 |
| **Blacklist Count** | 0 |
| **DNSBL Listed** | 1 of 8 total lists |
| **Tor Exit Node** | No |
| **Known Attacker** | No |
| **Spam Source** | No |
---
## Network Infrastructure
- Organization: Google LLC
- ASN: 396982
- Network Name: GOOGL-46
- CIDR Block: 136.112.0.0/12
- RIR: ARIN
- Infrastructure Type: Cloud Compute
- Connection Type: Firewalled / No Services
- Service Purpose: Cloud hosting infrastructure
---
## DNS Intelligence
- Reverse DNS: 205.89.112.136.bc.googleusercontent.com
- Forward Resolution: 205.89.112.136.bc.googleusercontent.com
- Domain: googleusercontent.com
- SPF Record: Present
- DMARC Record: Present
- DNSSEC Valid: Yes
- CAA Records: Present
---
## Historical Observations
Analysis of 18 signal observations reveals the following temporal patterns:
Signal Type Distribution:
- Cloud Infrastructure identification: Consistent across observations
- Threat listings: 1 listing observed with "high" severity designation
- Operator score: 0.3478 (Basic classification)
- Ownership stability: 0 changes recorded
Key Temporal Indicators:
- Most recent observation: 2026-06-21T00:31:38 UTC
- Threat observation count: 0
- Threat persistence days: 0
- Is persistently malicious: No
---
## Relationship Graph
The relationship graph identifies 44 associated entities:
- DNS Associations: Multiple entries linking to 205.89.112.136.bc.googleusercontent.com
- Network Associations: GOOGL-46 network affiliation confirmed
- Classification: No unusual interconnections detected
---
## Neighborhood Analysis
Subnet: 136.112.89.205/24
- Abuse Density: 0 (clean)
- Active Siblings: 0
- Threat Siblings: 0
- Risk Distribution: No high/medium risk neighbors identified
- Inherited Risk: 0
---
## Recommended Security Actions
Based on the low-risk profile and Google Cloud infrastructure classification:
1. Allow Traffic: The IP represents legitimate cloud infrastructure with no evidence of malicious activity
2. Monitor DNSBL Listing: Review the 1 DNSBL listing for context; may be false positive or related to cloud service restrictions
3. No Blocking Recommended: Risk score of 25 with no known attacker indicators suggests defensive measures are not warranted
4. Logging: Consider logging for forensic analysis if traffic patterns deviate from expected cloud service behavior
---
## Intelligence Notes
- The IP is associated with googleusercontent.com, commonly used for Google Cloud services (Cloud Storage, Firebase, etc.)
- High-severity threat listing observed in historical data warrants contextual review; may relate to cloud service compliance rather than active threats
- No neighboring IPs in /24 subnet identified as active or threatening
- Firewalled state (no open ports) is consistent with cloud infrastructure security posture
---
Classification: LOW RISK
SOC Recommendation: Monitor; no immediate action required
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGL-46 |
| CIDR Block | 136.112.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 205.89.112.136.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 205.89.112.136.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 54% | 1 | 10 |
| services | 8% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 18% | 1 | 2 |
| geolocation | 34% | 2 | 3 |
| Overall | 27% | 9 | 21 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-26 06:50:01 UTC |
| Last Seen | 2026-06-29 02:39:16 UTC |
| Profile Built | 2026-06-29 08:42:23 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 29 |
Full dossier details are available via our API.