35.195.85.179
IP Intelligence Briefing: 35.195.85.179/32
Date: 2026-06-04
Overview:
- Risk Score: 15 (Low Risk)
- Ownership: Google LLC (ASN 396982)
- Geolocation: Belgium (St. Ghislain), but registered to the U.S.
- Network Role: Google Cloud Compute instance (firewalled, no open services)
- Threat Indicators: No malicious activity detected; no DNS-based threats or spam sources.
Key Findings:
1. Legitimate Infrastructure:
- The IP is associated with Google Cloud infrastructure, classified as a "CloudCompute" node.
- No open ports, TLS certificates, or HTTP services detected, consistent with a firewalled cloud instance.
2. Geolocation Discrepancy:
- While geolocated to Belgium, the IP is registered to Google (U.S.), suggesting potential spoofing or misattribution.
3. Observation History:
- A single observation from 2026-06-04 flagged ambiguous "malicious activity" in a truncated report. Further investigation is required to validate this claim.
4. Network Relationships:
- Linked to Google's `googleusercontent.com` DNS domain, consistent with cloud service provider activity.
- No peer IPs in the /24 subnet (neighbors tool returned zero results).
Recommendations:
- Monitor: Track the IP for changes in threat indicators or network behavior.
- Verify: Cross-check the "malicious activity" flag with additional sources due to incomplete data.
- No Action Required: Current risk profile and network role indicate no immediate security impact.
Conclusion:
This IP is likely a legitimate Google Cloud instance with no confirmed malicious activity. The SOC team should prioritize monitoring for anomalies while avoiding unnecessary blocking of Google infrastructure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | โ |
| CIDR Block | 35.195.80.0/20 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 179.85.195.35.bc.googleusercontent.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 179.85.195.35.bc.googleusercontent.com |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 38% | 2 | 5 |
| routing | 24% | 4 | 5 |
| services | 12% | 2 | 2 |
| ownership | 24% | 3 | 4 |
| reputation | 26% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 25% | 14 | 22 |
| Data Coherence | Consistent (100%) |
| Attribution | High (100%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:05:38 UTC |
| Last Seen | 2026-06-27 12:15:25 UTC |
| Profile Built | 2026-06-28 06:19:08 UTC |
| Data Freshness | Live |
| Signal Types | 32 |
| Total Observations | 39 |
Full dossier details are available via our API.