136.116.89.12
## IPDEBRIEF INTELLIGENCE BRIEFING
Target: 136.116.89.12/32 | Classification: Low Risk
EXECUTIVE SUMMARY
The target IP address 136.116.89.12 is a Google Cloud Platform infrastructure address with low risk profile. Ownership is confirmed as Google LLC (ASN: 396982), located in Council Bluffs, Iowa. The IP exhibits no malicious threat indicators and operates within legitimate cloud compute infrastructure.
---
OWNERSHIP & GEOLOCATION
| Attribute | Value |
|---|---|
| Organization | Google LLC |
| ASN | 396982 |
| Country | United States (US) |
| Region | Iowa (IA) |
| City | Council Bluffs |
| RIR | ARIN |
| BGP Prefix | 136.112.0.0/13 |
NETWORK CLASSIFICATION
- Infrastructure Type: Cloud Compute (Google Cloud Platform)
- Connection Type: Firewall/No Services Active
- Service Purpose: Firewalled / No Services
- Risk Score: 25 (Low Risk)
- Provider Score: 0
- Authority Score: 0
THREAT ASSESSMENT
| Indicator | Status |
|---|---|
| Known Attacker | No |
| Spam Source | No |
| Tor Exit Node | No |
| Blacklist Count | 0 |
| Abuse Confidence Score | Not Applicable |
| Threat Persistence | Not Persistently Malicious |
DNS Reputation:
- PTR Hostname: 12.89.116.136.bc.googleusercontent.com
- SPF: Valid
- DMARC: Valid
- DNSBL Listed: 1 of 8 lists
---
OBSERVATION HISTORY
Total Observations: 21 signals
Analysis Period: Through June 2026
Key Timeline Events:
- 2026-06-19: Recent ASN confirmation (Google Cloud Platform) and geolocation inference (Council Bluffs, IA)
- 2026-06-14: Previous Google LLC attribution from AlienVault OTX
Temporal Indicators:
- Ownership Changes: 0
- Threat Observation Count: 1
- Threat Persistence Days: 0
- Route Stability: False (minor BGP changes observed)
- DNSSEC Valid: True
---
RELATIONSHIP ANALYSIS
Total Relationships: 77
Primary Associations:
- Multiple "Same Network" relationships to GOOGL-46 network segment
- DNS Association: 12.89.116.136.bc.googleusercontent.com
- All relationships consistent with legitimate Google Cloud infrastructure
---
NEIGHBORHOOD ANALYSIS
Subnet: 136.116.89.12/24
| Metric | Value |
|---|---|
| Abuse Density | 0 |
| Subnet Classification | Mostly Clean |
| Total Siblings | 1 |
| Active Siblings | 1 |
| Threat Siblings | 1 |
| Inherited Risk | 2 |
Risk Distribution: No high-risk neighbors detected in /24 subnet.
---
SECURITY ACTIONS
Recommended Actions: None required
- Risk profile indicates legitimate cloud infrastructure
- No firewall rules recommended
- No blocking actions warranted
Infrastructure Validation:
- Control Plane Score: 0.3478 (Basic)
- Operator Label: Basic
- IRR Consistency: Verified
- Route Changes (30d): 0
---
INTELLIGENCE CONCLUSION
Risk Level: LOW
Recommended Handling: Allow Traffic / Monitor as Baseline
The target IP 136.116.89.12/32 is a legitimate Google Cloud Platform address with no malicious indicators. The single DNSBL listing is minimal and consistent with cloud infrastructure operations. No threat activity, known attacker associations, or malicious campaign indicators were detected across all observation periods.
SOC Analyst Guidance:
- No blocking or mitigation actions required
- Classify as legitimate cloud infrastructure
- Monitor as baseline traffic from Google Cloud services
- No additional threat intelligence enrichment needed
---
*Report generated by IPDebrief Intelligence Platform | Data Source: Multi-signal inference and threat feeds*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 12.89.116.136.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 12.89.116.136.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 22% | 1 | 2 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 22% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-13 19:03:45 UTC |
| Last Seen | 2026-06-27 23:38:15 UTC |
| Profile Built | 2026-06-28 17:42:49 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 26 |
Full dossier details are available via our API.