# IP Intelligence Briefing: 35.244.39.75/32
Classification: LOW RISK โ Cloud Infrastructure
Date: 2026-06-28
Analyst: IPDebrief Intelligence Team
## Executive Summary
IP 35.244.39.75 is identified as Google Cloud infrastructure located in Mumbai, India (ASN 396982). The IP presents a low-risk profile with a risk score of 25/100. No active threat indicators, open services, or malicious campaign associations were detected during analysis. The IP is part of a clean subnet with minimal abuse activity.
## Ownership and Network Classification
- Organization: Google LLC
- ASN: 396982
- Geolocation: Mumbai, Maharashtra, India (IN)
- Network Role: Google Cloud โ CloudCompute infrastructure
- Classification: Cloud hosting environment, not bogon/anycast/proxy
## Threat Intelligence Findings
Current Risk Profile:
- Overall Risk Score: 25 (Low Risk)
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
- Blacklist Count: 0
- Known Campaigns: None
Threat Indicators:
- No active threat indicators identified
- Not flagged as known attacker or spam source
- Not a Tor exit node
- No blacklist entries across monitored threat feeds
Network Services:
- No open ports detected
- No active TLS certificates
- No HTTP services observed
- Port scan activity recorded but no exploitable services
## Historical Observations
Analysis of 20 historical observations indicates consistent low-risk behavior:
- Last Observation: 2026-06-28T03:40:57 UTC
- Geolocation Signals: Consistent Mumbai, India location data
- Operator Score: 0.3478 (Basic operator classification)
- Threat Persistence: 0 days (no persistent malicious activity)
- DNS Signals: Forward confirmed to 75.39.244.35.bc.googleusercontent.com
- Email Reputation: SPF and DMARC records present for associated domain
## Relationship Analysis
The IP exhibits 35 documented relationships:
- Primary associations: GOOGLE-CLOUD network
- DNS association: 75.39.244.35.bc.googleusercontent.com
- Network classification: Cloud infrastructure
No suspicious external relationships or command-and-control associations were identified.
## Neighborhood Assessment
Subnet: 35.244.39.75/24
- Abuse Density: 0 (Extremely low)
- Subnet Classification: Mostly clean
- Threat Siblings: 1 (minimal)
- Active Threat Neighbors: 0
- Risk Inheritance: 2/100
The surrounding /24 subnet demonstrates minimal abuse activity, reinforcing the low-risk classification of the target IP.
## Recommended Security Actions
Firewall/Routing Decisions:
- No blocking recommended โ IP is legitimate Google Cloud infrastructure
- Standard monitoring sufficient
- No specific iptables/nftables rules required
Monitoring Recommendations:
- Continue standard logging for outbound connections
- Monitor for unusual outbound traffic patterns
- No immediate threat mitigation actions required
## Conclusion
IP 35.244.39.75 represents legitimate Google Cloud infrastructure with a low-risk profile. The IP shows no evidence of malicious activity, and the surrounding network environment is clean. SOC analysts should treat this IP as trusted cloud infrastructure. Standard monitoring practices apply; no special threat mitigation measures are warranted.
---
*Generated by IPDebrief Intelligence Platform*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 75.39.244.35.bc.googleusercontent.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 75.39.244.35.bc.googleusercontent.com |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-16 14:59:05 UTC |
| Last Seen | 2026-06-28 03:40:49 UTC |
| Profile Built | 2026-06-28 21:46:49 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 24 |
Full dossier details are available via our API.