35.196.9.85
# IP INTELLIGENCE BRIEFING
Target: 35.196.9.85/32
Classification: LOW RISK / INFRASTRUCTURE
Date Generated: Current
Data Source: IPDebrief Intelligence Platform
---
## EXECUTIVE SUMMARY
IP 35.196.9.85 is a Google Cloud infrastructure address with a low-risk reputation score of 25. The IP resolves to googleusercontent.com and is associated with standard cloud storage/CDN services. No threat indicators, known campaigns, or malicious activity observed. The /24 subnet demonstrates clean classification with zero abuse density.
---
## OWNERSHIP & INFRASTRUCTURE
| Attribute | Value |
|---|---|
| Organization | Google LLC |
| ASN | 396982 |
| Network Name | GOOGLE-CLOUD |
| CIDR Block | 35.192.0.0/12 |
| RIR | ARIN |
| Classification | Cloud Infrastructure (Google Cloud) |
| Is CDN | No |
| Is Hosting | No |
Geolocation: United States, South Carolina, Moncks Corner (33.21°N, 80.17°W)
---
## THREAT PROFILE
| Indicator | Status |
|---|---|
| Risk Score | 25 (Low) |
| Abuse Confidence Score | Not reported |
| Known Attacker | No |
| Spam Source | No |
| Tor Exit Node | No |
| Blacklist Count | 0 |
| DNSBL Listed | 1 of 8 lists |
| Known Campaigns | None |
Services Detected: Firewall/no services detected. No open ports, TLS certificates, or HTTP services exposed.
---
## DNS ANALYSIS
| Attribute | Value |
|---|---|
| PTR Hostname | 85.9.196.35.bc.googleusercontent.com |
| Forward Resolution | 85.9.196.35.bc.googleusercontent.com |
| Domain | googleusercontent.com |
| Forward Confirmed | Yes |
| Email Auth (SPF/DMARC) | Present |
---
## OBSERVATION HISTORY
Total Observations: 21
Analysis Period: Through 2026-06-20
Key temporal findings:
- 2026-06-11: Confirmed Google Cloud infrastructure classification
- 2026-06-15 to 2026-06-20: Consistent "Basic" operator score (0.3478)
- Signal Persistence: No escalation or significant changes detected
- Threat Persistence: 0 days (not persistently malicious)
---
## NETWORK RELATIONSHIPS
Total Relationships: 25
Relationship patterns identified:
- DNS Associations: Multiple entries pointing to 85.9.196.35.bc.googleusercontent.com
- Network Associations: Repeated same-network links to GOOGLE-CLOUD
- External Associations: None detected
No relationships with malicious or suspicious entities.
---
## SUBNET ANALYSIS (35.196.9.0.0/24)
| Metric | Value |
|---|---|
| Abuse Density | 0 (Clean) |
| Classification | Clean |
| Total Siblings | 1 |
| Active Siblings | 1 |
| Threat Siblings | 0 |
| High/Medium Risk IPs | 0 |
---
## SECURITY ACTIONS
Recommendation: No blocking required. This IP is part of legitimate Google Cloud infrastructure with no threat indicators. Standard allow rules apply for expected Google Cloud traffic.
Note: The single DNSBL listing (1 of 8) is within acceptable thresholds for cloud infrastructure addresses and does not indicate malicious activity.
---
## ANALYST NOTES
This IP represents legitimate cloud infrastructure with no evidence of abuse or compromise. The absence of open services, combined with the clean neighborhood profile and consistent observation history, supports classification as benign. SOC analysts may monitor but no immediate action required.
Threat Level: LOW
Confidence: HIGH
Recommended Action: Monitor / Allow
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGLE-CLOUD |
| CIDR Block | 35.192.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 85.9.196.35.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 85.9.196.35.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-25 18:48:05 UTC |
| Last Seen | 2026-06-29 02:05:08 UTC |
| Profile Built | 2026-06-29 08:07:18 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 23 |
Full dossier details are available via our API.