# IP Intelligence Briefing: 34.58.118.142/32
Classification: Cloud Infrastructure / Low Threat Risk
Report Date: Current
Risk Assessment: Moderate Risk (Score: 50)
---
## Executive Summary
IP address 34.58.118.142 is a Google Cloud Platform (GCP) compute instance operating within a cloud-native infrastructure environment. The IP demonstrates typical cloud service characteristics with no active threat indicators. The primary concern is geolocation data inconsistency requiring operational awareness.
---
## Infrastructure Profile
| Attribute | Value |
|---|---|
| **Organization** | Google LLC |
| **ASN** | 396982 (GOOGLE-CLOUD-PLATFORM) |
| **Network Block** | 34.4.5.0/24, 34.58.0.0/16 (BGP Prefix) |
| **Infrastructure Type** | CloudCompute (Google Cloud) |
| **Ownership** | GOOGL-2 |
| **RIR** | ARIN |
Network Role Assessment:
- Cloud infrastructure: Confirmed
- CDN/VPN/Proxy: Not applicable
- Hosting services: Enabled
- Open ports: None detected
- TLS certificates: None observed
---
## Threat Intelligence
Threat Indicators:
- Known attacker: No
- Tor exit node: No
- Spam source: No
- Blacklist count: 0
- Abuse confidence score: Null
- Known campaigns: None
Control Plane Analysis:
- Route stability: Stable (0 route changes in 30 days)
- RPKI state: Not validated
- DNSSEC: Valid
- DNSBL listings: 1 of 8 total lists
- Operator score: 0.3478 (Basic)
---
## Geolocation Assessment
Reported Location: United States, Council Bluffs, IA
Timezone: America/Chicago
β οΈ Geolocation Validation Issue Detected:
- GeoPlausible: False
- Distance reported: 7,219 km
- Observed RTT: 55.0 ms
- Minimum possible RTT for distance: 144.4 ms
- Violation: RTT significantly lower than minimum possible for reported distance
Conclusion: Reported geolocation is likely inaccurate. The IP is registered to US, but the RTT violation indicates the physical location may differ from the registered address. This is common in cloud environments where instances may be located in different geographic regions than their administrative registration.
---
## DNS Analysis
| Field | Value |
|---|---|
| **PTR Hostname** | 142.118.58.34.bc.googleusercontent.com |
| **Forward Resolution** | Confirmed |
| **Domain** | googleusercontent.com |
| **SPF Record** | Present |
| **DMARC Record** | Present |
| **Forward Resolution Count** | 1 |
---
## Neighborhood Analysis
Subnet: 34.58.118.142/24
- Abuse Density: 1 (Low)
- Classification: Mostly clean
- Total Siblings: 1
- Active Siblings: 1
- Threat Siblings: 1
Risk Distribution:
- High: 0
- Medium: 0
- Low: 0
The /24 subnet is classified as low-risk with minimal abuse activity. The single threat sibling represents typical cloud infrastructure noise.
---
## Temporal Analysis
- Observations: 24 total signals over monitoring period
- Ownership Changes: 0
- Threat Persistence Days: 0
- Threat Observation Count: 1
- Persistently Malicious: No
Recent observation history (June 2026) confirms consistent Google Cloud infrastructure assignment with stable ASN and prefix associations.
---
## Related Entities
DNS Associations:
- 142.118.58.34.bc.googleusercontent.com
Network Associations:
- GOOGL-2 (multiple network references)
---
## Recommended Actions
1. Monitoring: No immediate blocking recommended. IP operates within legitimate cloud infrastructure.
2. Geolocation Verification: Exercise caution when using the reported US Council Bluffs location for threat correlation.
3. Traffic Analysis: Monitor for any behavioral changes, as the IP shows no persistent malicious activity.
4. Firewall Rules: No specific firewall rules required based on current risk profile. Standard cloud egress/ingress policies apply.
---
## Intelligence Conclusion
IP 34.58.118.142 is a benign Google Cloud Platform compute instance with no evidence of malicious activity. The primary intelligence value lies in recognizing the geolocation data limitation for operational purposes. No threat mitigation actions are currently warranted. Treat as standard cloud infrastructure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
| Enumeration | Path/resource enumeration | 1 |
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGL-2 |
| CIDR Block | 34.4.5.0/24 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 142.118.58.34.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 142.118.58.34.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 45% | 1 | 9 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 40% | 2 | 3 |
| Overall | 31% | 10 | 23 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (55%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-31 23:10:30 UTC |
| Last Seen | 2026-06-29 08:56:25 UTC |
| Profile Built | 2026-06-29 14:59:13 UTC |
| Data Freshness | Live |
| Signal Types | 25 |
| Total Observations | 35 |
Full dossier details are available via our API.