34.30.109.193
# IP Intelligence Briefing: 34.30.109.193/32
Classification: Google Cloud Infrastructure β Low Risk
Date: Current analysis cycle
Risk Score: 25 (Low Risk)
---
## Executive Summary
IP 34.30.109.193 is a Google Cloud Compute instance (GOOGL-2 network, ASN 396982) with low-risk reputation. The IP shows no active threat indicators, no open services, and is classified as cloud infrastructure. One DNSBL listing detected. Geographic data shows Council Bluffs, IA, though RTT measurements indicate a geolocation validation anomaly (reported 59ms RTT vs. 144.4ms minimum for claimed distance).
---
## Threat Profile
Overall Risk: Low (25/100)
Abuse Confidence: Not reported
Known Attacker: No
Tor Exit Node: No
Spam Source: No
Threat Indicators: None detected
Blacklist Count: 0
Known Campaigns: None
Threat Persistence: 0 days (not persistently malicious)
---
## Network Classification
- Infrastructure Type: CloudCompute
- Provider: Google Cloud
- CIDR Block: 34.4.5.0/24 (GOOGL-2)
- Connection Type: Cloud hosting
- Services: None detected (firewalled)
- DNS: Forward confirmed, resolves to 193.109.30.34.bc.googleusercontent.com
---
## Geolocation & Control Plane
Location: Council Bluffs, IA, US
Geolocation Confidence: 0.8
Geolocation Validation: Anomaly detected β measured RTT (59ms) inconsistent with claimed distance (7,219km; minimum expected 144.4ms)
Control Plane:
- BGP Prefix: 34.30.0.0/16
- Origin ASN: 396982 (Google LLC)
- Route Stability: Unstable
- DNSSEC: Valid
- DNSBL Listings: 1 of 8 total lists
- Operator Score: 0.3478 (Basic)
---
## Observation History (23 Total Signals)
Recent Activity:
- 2026-06-16 07:54: Operator score 0.3478 (Basic); signal count 3 of 8
- 2026-06-16 07:54: Full profile signal with 6 dimensions covered, 6 total sources
- 2026-06-12 13:12: Ownership stability confirmed; threat observation count 1
- 2026-06-12 13:12: Geolocation confirmed: Council Bluffs, IA (confidence 0.8)
Temporal Analysis: No ownership changes; threat persistence 0 days. IP not persistently malicious.
---
## Relationship Analysis (21 Relationships)
Network Relationships: Multiple entries referencing GOOGL-2 (Google Cloud network)
DNS Associations: All point to 193.109.30.34.bc.googleusercontent.com
Entity Type: Cloud infrastructure cluster
No cross-organization or malicious entity associations detected.
---
## Neighborhood Analysis (34.30.109.0/24)
Subnet Classification: Mostly clean
Abuse Density: 1 (Profile) / 0 (Neighbors tool)
Threat Siblings: 1 (per profile data)
Active Siblings: 1
*Note: Minor data inconsistency between profile and neighbors tool regarding abuse density. Recommend monitoring subnet 34.30.109.0/24 for additional threat siblings.*
---
## Recommended Actions
Firewall Rules: No specific blocks recommended at this time.
Monitoring: Monitor for service openings and DNSBL additions.
Block Decision: Not required for low-risk cloud infrastructure unless specific threat correlation exists.
---
## Intelligence Narrative
This IP represents standard Google Cloud hosting infrastructure with minimal threat exposure. The single DNSBL listing and basic operator score suggest some reputation friction but no active malicious behavior. The RTT/geolocation anomaly warrants observation but does not indicate compromise. The subnet shows minimal abuse density (1/256 per profile). Continue standard monitoring for cloud infrastructure patterns and watch for any service openings that would convert this to an active target.
Priority: Low
Action Required: Monitor only
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGL-2 |
| CIDR Block | 34.4.5.0/24 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 193.109.30.34.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 193.109.30.34.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 35% | 2 | 4 |
| Overall | 24% | 10 | 17 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (55%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-01 17:54:11 UTC |
| Last Seen | 2026-06-21 07:50:53 UTC |
| Profile Built | 2026-06-21 08:12:50 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 32 |
Full dossier details are available via our API.