35.203.211.4
IP Intelligence Briefing: 35.203.211.4
Date: June 15, 2026
---
**1. Core Profile**
- Reputation: Moderate Risk (Risk Score: 40)
- Ownership: Google LLC (ASN: 396982)
- Geolocation: London, England (51.51°N, 0.13°W)
- Network Role: Google Cloud infrastructure (Firewalled / No Services)
- Threat Indicators: No malicious activity detected (no blacklists, campaigns, or known attackers).
---
**2. Observation History**
- Recent Activity:
- Observed June 10โ15, 2026, with stable risk scores (0โ40).
- No significant spikes in threat signals or network anomalies.
- Long-Term Trend: Consistent low-to-moderate risk, no persistent malicious behavior.
---
**3. Network Relationships**
- DNS Associations: Linked to `4.211.203.35.bc.googleusercontent.com` (Google Cloud DNS).
- Subnet: Part of `35.203.211.0/24`, classified as "mixed" (some IPs in subnet show risk).
- Neighbors:
- 36 total IPs in subnet; 16 active, 18 flagged as potentially risky (abuse density: 50%).
- Notable neighbors:
- 35.203.211.5, 6, 13, 14, 17, 21, 34, 37, 41, 45, 50, 56, 58, 62, 67, 72, 78, 80, 82, 100, 104, 108, 109, 118, 126, 135, 139, 151, 152, 155, 165, 175, 177, 178, 187, 193, 199, 209, 214, 215, 236, 245, 253
- Risk scores range from 0 (low) to 40 (moderate).
---
**4. Threat Context**
- No Direct Threats: No indicators of spam, malware, or known attacker activity.
- Subnet Risk: 50% abuse density; 18 of 36 IPs in subnet show moderate risk.
- Google Cloud Context: Legitimate infrastructure, but monitor for unexpected traffic or connections to malicious domains.
---
**5. Recommendations**
- Monitor Subnet: Track neighboring IPs with higher risk scores (e.g., 35.203.211.5, 35.203.211.58, 35.203.211.126).
- Verify DNS Traffic: Ensure DNS queries to `googleusercontent.com` align with expected cloud services.
- Check for Anomalies: Monitor for unexpected outbound connections or unusual traffic patterns from this subnet.
---
Conclusion: 35.203.211.4 is a legitimate Google Cloud IP with no direct malicious activity. However, its subnet contains a mix of low and moderate-risk IPs, warranting closer scrutiny to detect potential lateral movement or compromised hosts.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 4.211.203.35.bc.googleusercontent.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 4.211.203.35.bc.googleusercontent.com |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 39% | 2 | 5 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 22% | 10 | 16 |
| Data Coherence | Mostly Consistent (85%) โ 1 contradiction(s) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-23 06:22:33 UTC |
| Last Seen | 2026-06-28 20:39:04 UTC |
| Profile Built | 2026-06-29 08:43:38 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 25 |
Full dossier details are available via our API.