35.205.45.49
# IP INTELLIGENCE BRIEFING
Target IP: 35.205.45.49/32
Classification: Low Risk β Cloud Infrastructure
Date: Current Analysis
---
## EXECUTIVE SUMMARY
IP address 35.205.45.49 is a legitimate Google Cloud compute resource classified as low risk. The IP exhibits no threat indicators, no malicious activity, and demonstrates consistent cloud infrastructure behavior. No immediate defensive action required.
---
## OWNERSHIP AND INFRASTRUCTURE
| Attribute | Value |
|---|---|
| **Organization** | Google LLC |
| **ASN** | 396982 |
| **Network Name** | GOOGLE-CLOUD |
| **CIDR Block** | 35.192.0.0/12 |
| **RIR** | ARIN |
| **Infrastructure Type** | CloudCompute |
| **Classification** | Hosting/Cloud Service |
The IP is part of Google Cloud's infrastructure, registered under ASN 396982. The network block 35.192.0.0/12 is a known Google Cloud allocation.
---
## GEOLOCATION
| Attribute | Value |
|---|---|
| **Country** | Belgium (BE) |
| **Region** | Brussels Capital |
| **City** | CA |
| **Accuracy Radius** | 2,500 km |
| **Geo Consensus** | True |
Geolocation data indicates the IP is associated with Belgium, though the large accuracy radius is consistent with cloud infrastructure routing patterns.
---
## THREAT ASSESSMENT
| Indicator | Status |
|---|---|
| **Risk Score** | 25 (Low Risk) |
| **Blacklist Count** | 0 |
| **Known Attacker** | No |
| **Spam Source** | No |
| **Tor Exit Node** | No |
| **Abuse Confidence** | N/A |
| **Threat Feeds** | None |
The IP shows no threat indicators across all major threat intelligence feeds. No known malicious campaigns or attack patterns detected.
---
## NETWORK SERVICES AND PORTS
| Service | Status |
|---|---|
| **Open Ports** | None detected |
| **HTTP Title** | N/A |
| **TLS Certificate** | N/A |
| **Connection Type** | Firewalled / No Services |
No open ports or active services detected. The IP appears to be firewalled with no publicly accessible services, which is consistent with cloud compute infrastructure behavior.
---
## DNS AND RESOLUTION
| Attribute | Value |
|---|---|
| **PTR Hostname** | 49.45.205.35.bc.googleusercontent.com |
| **Forward Resolution** | Confirmed |
| **Hosted Domain** | googleusercontent.com |
| **SPF Record** | Present |
| **DMARC Record** | Present |
DNS resolution is properly configured with valid reverse DNS records pointing to googleusercontent.com. Email authentication records (SPF/DMARC) are present.
---
## OBSERVATION HISTORY
Total observations: 37 signals across multiple dimensions.
Key Observations:
- Infrastructure Classification: Consistently classified as Google Cloud infrastructure across all observation periods
- Routing Signals: Stable operator score (0.3478) with basic classification
- Threat Persistence: No persistent malicious behavior detected
- Ownership Stability: No ownership changes recorded
The IP demonstrates stable, consistent behavior typical of legitimate cloud infrastructure with no degradation or escalation in risk signals.
---
## RELATIONSHIP ANALYSIS
Associated Entities:
- Network: GOOGLE-CLOUD (Same Network relationship)
- DNS Hostnames: 49.45.205.35.bc.googleusercontent.com
- Total Relationships: 49
All relationships point to legitimate Google Cloud infrastructure and DNS associations. No suspicious or unexpected relationships detected.
---
## NEIGHBORHOOD ANALYSIS
Subnet: 35.205.45.49/24
- Total Neighbors: 0
- Abuse Density: 0%
- High Risk Neighbors: 0
- Medium Risk Neighbors: 0
- Low Risk Neighbors: 0
No neighboring IPs detected in the /24 subnet. Zero abuse density indicates clean neighborhood traffic.
---
## CONTROL PLANE DATA
| Attribute | Value |
|---|---|
| **BGP Prefix** | 35.205.32.0/20 |
| **Route Stability** | False |
| **Route Changes (30d)** | 0 |
| **RPKI State** | N/A |
| **DNSSEC Valid** | True |
| **CAA Records** | Present |
| **DNSBL Listed** | 1 of 8 lists |
Control plane data shows DNSSEC validation is active. Single DNSBL listing exists but does not correlate with threat indicators.
---
## RECOMMENDED ACTIONS
Risk Score: 25 (Low Risk)
Recommended Actions: None
No firewall rules or blocking actions recommended. The IP is classified as low-risk cloud infrastructure with no threat indicators.
---
## INTELLIGENCE CONCLUSION
IP 35.205.45.49 is a legitimate Google Cloud compute resource with low risk profile. The IP demonstrates:
- Clean threat indicators across all feeds
- Consistent cloud infrastructure behavior
- Proper DNS and email authentication configuration
- Zero abuse density in neighborhood context
- No historical malicious activity
SOC Analyst Guidance: Monitor as standard. No blocking or mitigation required. If this IP appears in alerting contexts, correlate with additional context before taking action.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGLE-CLOUD |
| CIDR Block | 35.192.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 49.45.205.35.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 49.45.205.35.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 21% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 24% | 2 | 2 |
| Overall | 24% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-14 08:02:55 UTC |
| Last Seen | 2026-06-26 18:12:24 UTC |
| Profile Built | 2026-06-27 11:00:10 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 48 |
Full dossier details are available via our API.