# IPDEBRIEF INTELLIGENCE BRIEFING
Target IP: 35.253.169.84/32
Date: 2026-06-20
Classification: Low Risk - Google Cloud Infrastructure
---
## EXECUTIVE SUMMARY
IP 35.253.169.84 is a Google Cloud Platform (GCP) infrastructure address with a low-risk profile (risk score: 25). The IP resolves to a Google-hosted reverse DNS hostname (bc.googleusercontent.com) and is associated with Google LLC (ASN 396982). No active threat indicators detected. The IP is classified as cloud infrastructure with no open services.
---
## OWNERSHIP & INFRASTRUCTURE
| Attribute | Value |
|---|---|
| Organization | Google LLC |
| ASN | 396982 |
| Network Role | Google Cloud Platform |
| CIDR Block | 35.253.0.0/16 |
| RIR | ARIN |
| Geolocation | Council Bluffs, Iowa, US |
| DNS Reverse | 84.169.253.35.bc.googleusercontent.com |
Key Findings:
- Infrastructure type: CloudCompute (GCP)
- Is Cloud: YES
- Is CDN/Proxy/Vpn/Tor: NO
- Network stability: Route not stable (routeChanges30d: 0, but isRouteStable: false)
---
## THREAT ASSESSMENT
| Metric | Value | Assessment |
|---|---|---|
| Overall Risk Score | 25 | Low Risk |
| Provider Score | 0 | Neutral |
| Authority Score | 0 | Neutral |
| Abuse Confidence Score | N/A | Not applicable |
| Blacklist Count | 0 | Clean |
| Known Attacker | NO | N/A |
| Known Spam Source | NO | N/A |
| Tor Exit Node | NO | N/A |
Control Plane Indicators:
- DNSSEC Valid: YES
- CAA Records: YES
- DNSBL Listed: 1 of 8 lists (operatorScore: 0.3478 - Basic)
- RPki State: Not evaluated
- IRR Consistency: N/A
Threat Indicators: Empty (no indicators detected)
---
## NETWORK NEIGHBORHOOD (35.253.169.0/24)
| Metric | Value |
|---|---|
| Abuse Density | 1 |
| Classification | Mostly Clean |
| Total Siblings | 1 |
| Active Siblings | 0 |
| Threat Siblings | 1 |
Assessment: The /24 subnet shows minimal abuse activity with 1 threat sibling detected. The target IP itself inherits a risk score of 2 from neighborhood context.
---
## OBSERVATION HISTORY
Total Observations: 21 signals
Recent Activity (June 2026):
- ASN resolution: Google LLC, US (35.253.0.0/16)
- Geolocation inference: Council Bluffs, IA (confidence: 0.80)
- Network role: Cloud infrastructure (confidence: 0.90)
- Operator score: 0.3478 (Basic)
Temporal Analysis:
- Ownership changes: 0 (stable)
- Threat observation count: 1
- Persistently malicious: NO
- Threat persistence days: 0
---
## SERVICE & PORT ANALYSIS
| Service Category | Status |
|---|---|
| Open Ports | None detected |
| TLS Certificate | None |
| HTTP Title | None |
| Server Banner | None |
| Service Purpose | Firewalled / No Services |
Note: IP appears to be in a non-service state (no open ports detected).
---
## RELATIONSHIP GRAPH
Detected Relationships (58 total):
- DNS Associations: Multiple entries to 84.169.253.35.bc.googleusercontent.com
- Network Relationships: Same network (GOOGL-2)
- Additional relationships truncated
---
## RECOMMENDED ACTIONS
Current Risk Level: Low (25/100)
Action: No immediate action required
Recommended Approach:
- Allow traffic from this IP (Google Cloud infrastructure)
- No firewall blocking recommended
- Monitor for any changes in risk profile
- Consider context-specific rules based on your threat intelligence
Note: No specific firewall rules generated due to low risk profile.
---
## INTELLIGENCE NARRATIVE
IP 35.253.169.84 is a legitimate Google Cloud Platform infrastructure address with minimal risk indicators. The IP resolves to a standard Google-hosted reverse DNS entry and is located within the 35.253.0.0/16 BGP prefix. No open services were detected, suggesting the IP may be in a non-operational or management-only state. The neighborhood shows low abuse density with one threat sibling in the /24 subnet.
Given the Google Cloud infrastructure classification and low-risk profile, this IP should be treated as trusted infrastructure. However, SOC analysts should maintain standard monitoring practices and review any traffic patterns that deviate from expected Google Cloud behavior.
Confidence Level: High
Data Sources: IPDebrief Intelligence Platform
Last Updated: 2026-06-20
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 84.169.253.35.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 84.169.253.35.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | 1/4 domains |
| DMARC | 1/4 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
| Domains Checked | 4 domains |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 443 | https | tcp | β |
| Closed Ports | 22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | kuberneteskubernetes.defaultkubernetes.default.svckubernetes.default.svc.cluster.local |
| Valid From | 2026-06-25T05:40:12+00:00 |
| Valid Until | 2031-06-24T05:42:12+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha256RSA |
| Validity Period | 1825 days |
| Serial Number | 00B3A7B03E8DE16DF69AC26B40809A6F1F |
| Thumbprint | 75232B0A746A77EF13B567C7D0196449D637AD22 |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 49% | 2 | 5 |
| routing | 42% | 1 | 8 |
| services | 35% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 36% | 10 | 25 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-20 22:13:09 UTC |
| Last Seen | 2026-06-28 12:44:53 UTC |
| Profile Built | 2026-06-29 06:50:44 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 38 |
Full dossier details are available via our API.