# IP Intelligence Briefing: 35.195.57.140
Date: Current
Classification: Defensive Intelligence Report
---
## Executive Summary
IP address 35.195.57.140 is identified as a Google Cloud Infrastructure endpoint with a Low Risk reputation profile (Risk Score: 25). The address demonstrates consistent operational stability within Google's cloud network (ASN: 396982, Org: GOOGLE-CLOUD, CIDR: 35.192.0.0/12). No active threat indicators, malware signatures, or malicious reputation sources detected.
---
## Risk Assessment
| Metric | Value | Assessment |
|---|---|---|
| Risk Score | 25 | Low Risk |
| Provider Score | 0 | Neutral |
| Authority Score | 0 | Neutral |
| Blacklist Count | 0 | Clean |
| Abuse Confidence | N/A | Not Applicable |
| Threat Persistence | 0 days | No Persistent Malicious Activity |
The IP is classified as CloudCompute infrastructure with hosting capabilities enabled. No proxy, VPN, Tor, or anonymization services detected.
---
## Geolocation & Infrastructure
Location: St. Ghislain, Wallonia, Belgium (BE)
Coordinates: 50.45°N, 3.82°E
Timezone: Europe/Brussels
Infrastructure: Google Cloud Platform
CIDR Block: 35.192.0.0/12
---
## Technical Profile
DNS Resolution: 140.57.195.35.bc.googleusercontent.com
PTR Record: 140.57.195.35.bc.googleusercontent.com
Forward Resolution Confirmed: Yes
Email Authentication: SPF and DMARC records present (domain-level)
Open Ports: None detected
Active Services: None observed
TLS Certificate: Not detected
---
## Threat Intelligence
Threat Indicators: None
Known Campaigns: None
Is Known Attacker: False
Is Spam Source: False
Is Tor Exit Node: False
Threat Feeds: No matches
Campaign Likelihood: None
Control Plane Data:
- Route Stability: False (0 route changes in 30 days)
- DNSBL Listed: 1 out of 8 total lists (potential false positive for cloud infrastructure)
- DNSSEC Valid: Yes
- RPKI State: Not applicable
- BGP Prefix: 35.195.48.0/20
---
## Historical Analysis
Observation Period: 23 signals recorded
Timeline: June 11-21, 2026
Key Findings:
- June 21, 2026: Confirmed Google Cloud compute infrastructure, cloud hosting enabled
- June 16, 2026: Basic operator score assessment (0.3478/1.0)
- June 11, 2026: Subnet classified as "mostly_clean" with abuse density 1
- No escalation or de-escalation patterns observed
- No ownership changes detected
The IP has maintained consistent operational characteristics throughout the observation window with no adverse reputation shifts.
---
## Network Relationships
Relationship Count: 27 total associations
Primary Associations:
- DNS: 140.57.195.35.bc.googleusercontent.com (multiple records)
- Network: GOOGLE-CLOUD (multiple same-network associations)
No external organizational associations beyond Google Cloud infrastructure. No certificate relationships or cross-organization links detected.
---
## Subnet Neighborhood
Subnet: 35.195.57.0/24
Abuse Density: 0 (clean)
Risk Distribution: No high/medium/low risk neighbors identified
Active Siblings: 1
Threat Siblings: 1 (consistent with profile data)
The /24 subnet demonstrates minimal abuse activity. One threat sibling exists, likely unrelated to this specific endpoint.
---
## Recommended Security Actions
Current Risk Level: LOW
Action Required: No immediate blocking recommended
Standard Mitigation:
- Monitor for service discovery on currently closed ports
- Maintain baseline traffic patterns for Google Cloud egress
- Review any DNSBL listings for potential false positives if blocking is implemented
Firewall Rules: No specific rules recommended for this IP based on current risk profile.
---
## Intelligence Conclusion
IP 35.195.57.140 represents legitimate Google Cloud infrastructure with no observable malicious activity. The endpoint maintains a clean reputation profile across multiple threat intelligence sources. Historical analysis confirms operational stability with no reputation degradation patterns. Routine monitoring is sufficient; no blocking or mitigation actions required unless specific traffic anomalies are observed.
Threat Level: LOW
Confidence: High (based on 23 historical observations)
Recommended Action: Continue monitoring
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGLE-CLOUD |
| CIDR Block | 35.192.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 140.57.195.35.bc.googleusercontent.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 140.57.195.35.bc.googleusercontent.com |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 38% | 2 | 5 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 24% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-27 07:17:39 UTC |
| Last Seen | 2026-06-29 04:05:42 UTC |
| Profile Built | 2026-06-29 04:11:13 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 24 |
Full dossier details are available via our API.