IPDebrief

35.253.169.84

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IPDEBRIEF INTELLIGENCE BRIEFING

Target IP: 35.253.169.84/32

Date: 2026-06-20

Classification: Low Risk - Google Cloud Infrastructure

---

## EXECUTIVE SUMMARY

IP 35.253.169.84 is a Google Cloud Platform (GCP) infrastructure address with a low-risk profile (risk score: 25). The IP resolves to a Google-hosted reverse DNS hostname (bc.googleusercontent.com) and is associated with Google LLC (ASN 396982). No active threat indicators detected. The IP is classified as cloud infrastructure with no open services.

---

## OWNERSHIP & INFRASTRUCTURE

AttributeValue
OrganizationGoogle LLC
ASN396982
Network RoleGoogle Cloud Platform
CIDR Block35.253.0.0/16
RIRARIN
GeolocationCouncil Bluffs, Iowa, US
DNS Reverse84.169.253.35.bc.googleusercontent.com

Key Findings:

---

## THREAT ASSESSMENT

MetricValueAssessment
Overall Risk Score25Low Risk
Provider Score0Neutral
Authority Score0Neutral
Abuse Confidence ScoreN/ANot applicable
Blacklist Count0Clean
Known AttackerNON/A
Known Spam SourceNON/A
Tor Exit NodeNON/A

Control Plane Indicators:

Threat Indicators: Empty (no indicators detected)

---

## NETWORK NEIGHBORHOOD (35.253.169.0/24)

MetricValue
Abuse Density1
ClassificationMostly Clean
Total Siblings1
Active Siblings0
Threat Siblings1

Assessment: The /24 subnet shows minimal abuse activity with 1 threat sibling detected. The target IP itself inherits a risk score of 2 from neighborhood context.

---

## OBSERVATION HISTORY

Total Observations: 21 signals

Recent Activity (June 2026):

Temporal Analysis:

---

## SERVICE & PORT ANALYSIS

Service CategoryStatus
Open PortsNone detected
TLS CertificateNone
HTTP TitleNone
Server BannerNone
Service PurposeFirewalled / No Services

Note: IP appears to be in a non-service state (no open ports detected).

---

## RELATIONSHIP GRAPH

Detected Relationships (58 total):

---

## RECOMMENDED ACTIONS

Current Risk Level: Low (25/100)

Action: No immediate action required

Recommended Approach:

Note: No specific firewall rules generated due to low risk profile.

---

## INTELLIGENCE NARRATIVE

IP 35.253.169.84 is a legitimate Google Cloud Platform infrastructure address with minimal risk indicators. The IP resolves to a standard Google-hosted reverse DNS entry and is located within the 35.253.0.0/16 BGP prefix. No open services were detected, suggesting the IP may be in a non-operational or management-only state. The neighborhood shows low abuse density with one threat sibling in the /24 subnet.

Given the Google Cloud infrastructure classification and low-risk profile, this IP should be treated as trusted infrastructure. However, SOC analysts should maintain standard monitoring practices and review any traffic patterns that deviate from expected Google Cloud behavior.

Confidence Level: High

Data Sources: IPDebrief Intelligence Platform

Last Updated: 2026-06-20

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionIA
CityCouncil Bluffs
TimezoneAmerica/Chicago
Latitude41.26
Longitude-95.85

🏒 Ownership & Registration

OrganizationGoogle LLC
ASNAS396982
Network Nameβ€”
CIDR Blockβ€”
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTR84.169.253.35.bc.googleusercontent.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnames84.169.253.35.bc.googleusercontent.com

πŸ” DNS Hygiene

Hygiene Score100% (Excellent)
SPF1/4 domains
DMARC1/4 domains
FCrDNSVerified
DNSSECValid
CAAPresent
Domains Checked4 domains

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierHosting β€” Infrastructure provider without advanced routing
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
443httpstcpβ€”
Closed Ports22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
CN=35.253.169.84
Issued by CN=7ffc5f0b-e381-438d-b2d9-6bcb2eeda20b
Self-signed: No
SANskuberneteskubernetes.defaultkubernetes.default.svckubernetes.default.svc.cluster.local
Valid From2026-06-25T05:40:12+00:00
Valid Until2031-06-24T05:42:12+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_128_GCM_SHA256
Signature Algorithmsha256RSA
Validity Period1825 days
Serial Number00B3A7B03E8DE16DF69AC26B40809A6F1F
Thumbprint75232B0A746A77EF13B567C7D0196449D637AD22

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
49%
25
routing
42%
18
services
35%
23
ownership
24%
23
reputation
31%
13
geolocation
33%
23
Overall36%1025
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-20 22:13:09 UTC
Last Seen2026-06-28 12:44:53 UTC
Profile Built2026-06-29 06:50:44 UTC
Data FreshnessLive
Signal Types23
Total Observations38
πŸ” 23 signal types Β· 38 observations collected
This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.