8.228.80.15
# IP Intelligence Briefing: 8.228.80.15/32
Classification: Low Risk β Cloud Infrastructure
Date: 2026-06-20
Analyst: IPDebrief Intelligence Team
---
## Executive Summary
IP 8.228.80.15 is a Google Cloud infrastructure address with a low overall risk score of 25. The address resolves to Google's cloud DNS infrastructure (googleusercontent.com) and is hosted in Ashburn, VA. While classified as low risk, the subnet shows inherited threat indicators from associated addresses. No direct threat indicators were observed against this specific IP.
---
## Ownership and Geolocation
| Field | Value |
|---|---|
| **Organization** | Google LLC (ASN 396982) |
| **Location** | Ashburn, Virginia, US |
| **RIR** | ARIN |
| **Infrastructure Type** | Cloud Compute (Google Cloud) |
| **Network Role** | Cloud Provider / CDN Infrastructure |
---
## Technical Profile
DNS Configuration
- PTR Hostname: `15.80.228.8.bc.googleusercontent.com`
- Domain: `googleusercontent.com`
- Forward Resolution: Confirmed
- Email Authentication: SPF and DMARC records present
Network Services
- Open Ports: None detected
- HTTP/HTTPS: No active services exposed
- TLS Certificates: None
- State: Firewalled / No Services
Network Classification
- Cloud Provider: Yes (Google Cloud)
- CDN: No
- VPN/Proxy: No
- Tor Exit: No
- Hosting Service: Yes
- Anycast: No
---
## Threat Assessment
Risk Score: 25/100 β Low Risk
| Indicator | Status |
|---|---|
| Known Attacker | No |
| Tor Exit Node | No |
| Spam Source | No |
| Blacklist Count | 0 |
| Known Campaigns | None |
| Threat Persistence | 0 days |
Control Plane Analysis
- BGP Prefix: 8.228.64.0/18
- Route Stability: Unstable (0 route changes in 30 days)
- DNSSEC Validated: Yes
- DNSBL Listings: 0/8 lists
---
## Neighborhood Analysis
Subnet: 8.228.80.0/24
Abuse Density: 1 (Low)
Classification: Mostly Clean
| Metric | Value |
|---|---|
| Total Siblings | 1 |
| Active Siblings | 1 |
| Threat Siblings | 1 |
| Inherited Risk | 2 |
*Note: One sibling IP in the /24 subnet shows threat indicators. Monitor for lateral activity.*
---
## Observation History
Total Observations: 24 signals tracked
Recent Activity (June 15-20, 2026)
- June 20: DNSSEC and CAA signal observed (confidence 0.60)
- June 15: Subnet classification "mostly_clean" recorded
- June 15: DNS blacklist listing detected (max severity: high, 8 total lists)
- June 15: Geo validation attempted β ICMP blocked, geo plausible (6,295 km distance from probe)
Temporal Indicators
- Ownership Changes: 0
- Threat Observation Count: 1
- Persistently Malicious: No
- Geo Validation: ICMP blocked β unable to validate
---
## Relationship Graph
Total Relationships: 38 entries
- DNS Associations: Multiple hostname mappings to `15.80.228.8.bc.googleusercontent.com`
- Network Affiliations: Same Network (GOOGL-2)
- Infrastructure: Google Cloud infrastructure cluster
---
## Recommended Actions
| Action Type | Recommendation |
|---|---|
| **Firewall** | No blocking required β legitimate Google Cloud infrastructure |
| **Monitoring** | Monitor subnet 8.228.80.0/24 for threat sibling activity |
| **Threat Intel** | No threat indicators require immediate action |
| **Allowlist** | Consider allowlisting for Google Cloud services |
---
## Analyst Notes
This IP address represents normal Google Cloud infrastructure operations. The low risk score and cloud compute classification indicate legitimate service hosting. While one sibling IP in the /24 subnet shows threat indicators, no direct threats were observed against 8.228.80.15. Standard monitoring applies.
Confidence Level: Medium β Cloud infrastructure with minimal direct threat indicators.
Priority: Low β Routine monitoring sufficient.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 15.80.228.8.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 15.80.228.8.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 43% | 2 | 5 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 25% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-20 11:47:16 UTC |
| Last Seen | 2026-06-28 12:04:08 UTC |
| Profile Built | 2026-06-29 06:09:07 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 28 |
Full dossier details are available via our API.