35.254.246.157
IP Intelligence Briefing: 35.254.246.157
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Ownership: Owned by Google LLC (ASN 396982, netname *GOOGL-2*).
- Geolocation: Council Bluffs, IA, US (ARIN-registrant).
- Network Role: Google Cloud infrastructure (CloudCompute).
- Services:
- Open SSH service (port 22, version *SSH-2.0-OpenSSH_10.0*).
- No TLS certificate or HTTP service detected.
- DNS:
- PTR hostname: *157.246.254.35.bc.googleusercontent.com*.
- No malicious domain associations or email auth issues.
---
**2. Threat & Risk Indicators**
- Threat Score: Low (no malicious indicators, abuse confidence score null).
- Blacklists: Not listed in DNSBLs (0/8 total lists).
- Historical Signals:
- Stable network configuration since June 2026.
- No spikes in risk, scans, or anomalous activity.
- BGP:
- Route stability: *Unstable* (routeChanges30d = 0, isRouteStable = false).
- RPKI state: Not reported.
---
**3. Relationships & Network Context**
- DNS Associations:
- Repeated DNS records linked to *googleusercontent.com* (likely internal Google infrastructure).
- Subnet:
- Subnet *35.254.246.157/24* has 0 abusive neighbors (abuseDensity = 0).
- Organizational Links:
- Directly tied to Googleβs ARIN-registered ASN (396982).
---
**4. Recommendations**
- Monitor: Track SSH service for unauthorized access attempts (port 22).
- Verify: Confirm if this IP hosts critical internal services (e.g., Google Cloud Compute instances).
- Firewall: Allow traffic on port 22 if legitimate, but restrict unnecessary protocols.
- Investigate: Check for unexpected DNS changes or new subdomains in the *googleusercontent.com* domain.
---
Conclusion: This IP is part of Googleβs infrastructure and shows no immediate malicious activity. However, its moderate risk score and unstable BGP route suggest monitoring for configuration drift or unintended exposure. No urgent action required, but maintain visibility for operational security.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGL-2 |
| CIDR Block | 35.252.0.0/14 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 157.246.254.35.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 157.246.254.35.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_10.0 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 22% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-25 18:48:05 UTC |
| Last Seen | 2026-06-29 02:05:59 UTC |
| Profile Built | 2026-06-29 08:09:37 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 21 |
Full dossier details are available via our API.