34.130.111.28
# IP Intelligence Briefing: 34.130.111.28
## Executive Summary
IP 34.130.111.28 is a legitimate Google Cloud infrastructure address with low risk profile. No malicious activity or threat indicators detected. Classification indicates firewalled cloud compute infrastructure with no exposed services.
## Infrastructure Profile
- Risk Score: 25 (Low Risk)
- Owner: Google LLC (ASN 396982)
- Location: Toronto, Ontario, Canada (US registry)
- Infrastructure Type: CloudCompute (Google Cloud Platform)
- Network Classification: Firewall/No Services
- DNS Resolution: 28.111.130.34.bc.googleusercontent.com
- Service Status: No open ports detected
## Threat Assessment
- Malicious Indicators: None
- Tor Exit Node: No
- Known Attacker: No
- Spam Source: No
- Blacklist Count: 0
- Campaign Association: None detected
## Historical Observations
Analysis of 18 signal observations spanning multiple dates shows consistent infrastructure classification:
- Cloud Infrastructure: Consistently identified as Google Cloud (June 7, 2026)
- Reputation: Stable with no degradation patterns
- Threat Persistence: None observed
- Ownership Changes: None recorded
## Network Context
- Subnet: 34.130.111.0/24
- Abuse Density: 0 (Clean)
- Threat Siblings: 0
- Relationships: 32 total relationships (primarily network and DNS associations)
- BGP Prefix: 34.130.96.0/20
## Technical Details
- Control Plane: Route stable, DNSSEC validated
- Operator Score: 0.3478 (Basic)
- GeoValidation: Plausible (ICMP validation blocked)
- Email Authentication: SPF and DMARC configured
- Anycast: No
- Hosting: Yes (Google Cloud infrastructure)
## Recommendations
No blocking action required. This IP belongs to legitimate Google Cloud infrastructure and presents no threat to defensive security operations.
Monitoring Notes:
- The single DNSBL listing may represent a false positive; verify with upstream feed providers
- Standard logging of traffic from this IP is appropriate for baseline traffic analysis
- No firewall rules recommended for this address
## Conclusion
IP 34.130.111.28 is classified as legitimate cloud infrastructure with no malicious indicators. The low-risk profile, clean neighborhood, and consistent history support treating this as benign Google Cloud infrastructure. No defensive action required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 28.111.130.34.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 28.111.130.34.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 12% | 2 | 2 |
| routing | 8% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 20% | 2 | 3 |
| reputation | 15% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 15% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-14 23:36:06 UTC |
| Last Seen | 2026-06-28 01:43:45 UTC |
| Profile Built | 2026-06-28 19:48:38 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 23 |
Full dossier details are available via our API.