35.200.195.35
INTELLIGENCE BRIEFING: 35.200.195.35/32
Classification: Low Risk / Cloud Infrastructure
Date: Current Analysis
Risk Score: 25/100
---
EXECUTIVE SUMMARY
IP 35.200.195.35 was classified as Google Cloud Platform infrastructure hosting cloud compute services in Mumbai, India. The IP demonstrated low-risk characteristics throughout the observation period, with no malicious activity detected and clean neighborhood metrics. The address resolved to legitimate Google Cloud DNS records and showed no evidence of abuse or threat actor activity.
OWNERSHIP AND INFRASTRUCTURE
The IP address belongs to Google LLC (ASN 396982) within the GOOGLE-CLOUD network block (35.192.0.0/12). Infrastructure analysis confirmed cloud compute designation with no proxy, VPN, or residential indicators. The address maintained stable ownership throughout the observation window with no changes recorded. DNS resolution confirmed the address through 35.195.200.35.bc.googleusercontent.com with forward confirmation verified.
THREAT ASSESSMENT
Threat indicators remained absent during analysis. The IP was not flagged as a known attacker, Tor exit node, or spam source. Blacklist enumeration returned zero counts. DNSBL enumeration showed 1 listing out of 8 total lists reviewed. No known campaigns or correlated IPs were identified. The operator score rated as "Basic" (0.3478). Control plane analysis indicated the address was not a route hijack target and maintained route stability.
NETWORK ROLE AND SERVICES
Network classification identified the address as cloud hosting infrastructure. Service scanning returned no open ports, indicating the address operates as a firewalled endpoint with no active services exposed. No TLS certificates, HTTP titles, or server banners were detected. The infrastructure type was confirmed as CloudCompute.
HISTORICAL OBSERVATIONS
Twenty-one signal observations were recorded. The most recent observation (2026-06-21) confirmed cloud infrastructure with Google Cloud provider designation. Earlier observations from 2026-06-16 showed clean subnet classification (abuse density: 0) and operator score of 0.3478. No persistent threat patterns emerged. The IP was not flagged as persistently malicious. Threat observation count remained at zero.
RELATIONSHIP ANALYSIS
Relationship mapping identified multiple associations with GOOGLE-CLOUD network entities. DNS associations consistently resolved to 35.195.200.35.bc.googleusercontent.com. All relationships aligned with legitimate Google Cloud infrastructure patterns. No suspicious external associations were detected.
NEIGHBORHOOD ANALYSIS
The /24 subnet (35.200.195.35/24) demonstrated clean classification with zero abuse density. One active sibling IP was observed with zero threat siblings detected. The neighborhood showed no inherited risk indicators.
RECOMMENDATIONS
No defensive actions were required. The IP presents low-risk characteristics consistent with legitimate cloud infrastructure. Standard cloud provider allow-listing practices apply. No firewall rules or WAF configurations were recommended based on the risk profile.
END OF BRIEFING
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGLE-CLOUD |
| CIDR Block | 35.192.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 35.195.200.35.bc.googleusercontent.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 35.195.200.35.bc.googleusercontent.com |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-28 18:34:55 UTC |
| Last Seen | 2026-06-29 05:50:41 UTC |
| Profile Built | 2026-06-29 05:54:07 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 23 |
Full dossier details are available via our API.