35.187.97.163

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 35.187.97.163/32

Classification: Google Cloud Infrastructure

Risk Level: Low Risk

Date: 2026-06-20

## Executive Summary

Target IP 35.187.97.163 is identified as a Google Cloud Platform (GCP) compute instance with a clean security posture. The IP resolves to Google's infrastructure with standard cloud computing characteristics and demonstrates minimal threat indicators.

## Network Ownership & Infrastructure

Attribute	Value
Organization	Google LLC
ASN	396982
Network Role	CloudCompute
Infrastructure Type	Cloud Hosting
Country	Belgium (BE)
City	St. Ghislain
Geolocation Confidence	Consensus (2 sources)

The IP is part of Google Cloud's network infrastructure (BGP prefix: 35.187.96.0/19) with DNSSEC validation enabled. Route stability shows as false, which is typical for cloud infrastructure with dynamic IP allocation.

## DNS & Network Services

PTR Hostname: 163.97.187.35.bc.googleusercontent.com
Forward Resolution: Confirmed (1 hostname)
Open Ports: None detected
TLS Certificate: None exposed
HTTP Services: None detected
Service Classification: Firewalled / No Services

The absence of open ports and services indicates this is an internal or heavily restricted GCP compute instance without public-facing services.

## Threat Assessment

Indicator	Status
Risk Score	0
Abuse Confidence	N/A
Blacklist Count	0
Tor Exit Node	No
Known Attacker	No
Spam Source	No
Threat Feeds	None
Campaign Likelihood	None

The IP shows no association with threat campaigns, known malicious activity, or security blacklists.

## Neighborhood Analysis

Subnet: 35.187.97.163/24
Abuse Density: 0
Classification: Mostly Clean
Total Siblings: 1
Active Siblings: 1
Threat Siblings: 1

The /24 subnet maintains a clean profile with no high or medium-risk neighbors detected.

## Historical Observations

Signal observation history reveals 24 recorded observations. Key findings include:

DNSSEC Validation: Confirmed across multiple observation windows
ASN Resolution: Consistent mapping to GOOGLE-CLOUD-PLATFORM (ASN 396982)
Operator Score: 0.2174 (Basic classification)
Threat Persistence: 0 days observed

The IP demonstrates stable characteristics with no significant threat persistence patterns.

## Relationship Graph

40 relationships identified, primarily:

DNS associations to 163.187.97.35.bc.googleusercontent.com
Network association to GOOGLE-CLOUD infrastructure

## Recommended Actions

No immediate security actions required. The IP represents legitimate Google Cloud infrastructure with a clean security profile. If traffic is observed:

Permit standard Google Cloud egress/ingress traffic
Monitor for unusual patterns consistent with GCP network behavior
No blocking recommended based on current threat data

## SOC Analyst Notes

This IP should be treated as legitimate cloud infrastructure. No firewall blocking or alerting is warranted based on the current risk profile. Standard GCP network monitoring practices apply.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇧🇪 Belgium
Region	WAL
City	St. Ghislain
Timezone	Europe/Brussels
Latitude	50.45
Longitude	3.82

🏢 Ownership & Registration

Organization	Google LLC
ASN	AS396982
Network Name	—
CIDR Block	—
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	163.97.187.35.bc.googleusercontent.com
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`163.97.187.35.bc.googleusercontent.com`

🔐 DNS Hygiene

Hygiene Score	100% (Excellent)
SPF	Present
DMARC	Present
FCrDNS	Verified
DNSSEC	Valid
CAA	Present

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Firewalled / No Services
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected
Closed Ports	22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	30%	2	4
routing	34%	1	4
services	12%	2	2
ownership	24%	2	3
reputation	32%	1	3
geolocation	34%	2	3
Overall	27%	10	19

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-24 06:33:39 UTC
Last Seen	2026-06-28 23:48:57 UTC
Profile Built	2026-06-29 05:50:42 UTC
Data Freshness	Live
Signal Types	22
Total Observations	28

🔍 22 signal types · 28 observations collected

This report is generated from 22+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

35.187.97.163📋 Copy