35.241.221.21
# IPDEBRIEF INTELLIGENCE BRIEFING
Subject: 35.241.221.21/32
Classification: Google Cloud Infrastructure
Risk Assessment: LOW
Date: 2026-06-20
## EXECUTIVE SUMMARY
Intelligence analysis identified IP 35.241.221.21 as a legitimate Google Cloud Compute infrastructure address. The IP demonstrated a risk score of 25 (Low Risk) with no active threat indicators, no blacklist associations, and no evidence of malicious activity. The address resolves to Google's cloud infrastructure and exhibits normal operational behavior consistent with cloud hosting services.
## INFRASTRUCTURE PROFILE
Ownership and Classification:
- Organization: Google LLC (ASN 396982)
- Infrastructure Type: Cloud Compute
- Provider: Google Cloud
- Registration: ARIN registry
- Abuse Contact: Available via RDAP
Geolocation:
- Country: Belgium (BE)
- Region: WALLONIA (WAL)
- City: St. Ghislain
- Coordinates: 50.45°N, 3.82°E
- Accuracy: 150 km radius
- Consensus: True
Network Role:
- Cloud Provider: Yes
- Hosting Service: Yes
- CDN: No
- Proxy: No
- VPN: No
- TOR Exit: No
- Mobile: No
- Residential: No
- Bogon: No
## THREAT INTELLIGENCE
Risk Indicators:
- Overall Risk Score: 25 (Low Risk)
- Abuse Confidence Score: Not applicable
- Blacklist Count: 0
- Known Attacker: False
- Spam Source: False
- Campaign Association: None detected
Threat Feeds:
- No threat feed matches detected
- No known campaign associations
- No certificate-based threat indicators
## OBSERVATION HISTORY
Temporal Analysis:
- Latest Observation: 2026-06-20 06:43:07 UTC
- Observation Count: 20 historical signals
- Threat Persistence Days: 0
- Is Persistently Malicious: False
Infrastructure Consistency:
- Cloud infrastructure classification maintained across all observation windows
- Provider consistently identified as Google Cloud
- Geographic attribution consistently resolved to Belgium region
- No infrastructure ownership changes detected
Operator Score: 0.3478 (Basic classification)
## RELATIONSHIP MAPPING
Network Relationships:
- DNS Associations: 21.221.241.35.bc.googleusercontent.com (repeated across multiple relationships)
- Network Affiliations: Multiple associations with GOOGLE-CLOUD network
- Total Relationships: 24
Correlation Analysis:
- No correlated malicious IPs detected
- No certificate subject matches
- No banner-based campaign correlations
## NEIGHBORHOOD ANALYSIS
Subnet Assessment: 35.241.221.21/24
- Abuse Density: 0
- Classification: mostly_clean
- Total Siblings: 1
- Active Siblings: 0
- Threat Siblings: 1
Risk Distribution:
- High Risk Neighbors: 0
- Medium Risk Neighbors: 0
- Low Risk Neighbors: 0
## SERVICES AND DNS
DNS Resolution:
- PTR Hostname: 21.221.241.35.bc.googleusercontent.com
- Forward Resolution: Confirmed
- DNSSEC Valid: Yes
- CAA Records: Present
- DNSBL Listed: 1 of 8 total lists
Service State:
- Open Ports: None detected
- TLS Certificate: Not available
- HTTP Title: Not available
- Server Banner: Not available
## RECOMMENDATIONS
Security Actions:
- No immediate blocking actions recommended
- IP classified as legitimate cloud infrastructure
- Standard monitoring practices sufficient
- No firewall rules required based on risk profile
Intelligence Context:
- This IP represents Google Cloud infrastructure deployed in Belgium
- No malicious activity detected in observation history
- Neighborhood shows minimal abuse density
- DNS and network relationships confirm legitimate cloud hosting operation
---
Status: CLEARED FOR NORMAL OPERATIONS
Next Review: Periodic monitoring recommended
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 21.221.241.35.bc.googleusercontent.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 21.221.241.35.bc.googleusercontent.com |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 22% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 09:37:35 UTC |
| Last Seen | 2026-06-28 08:50:15 UTC |
| Profile Built | 2026-06-29 02:54:32 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 24 |
Full dossier details are available via our API.