8.231.213.236
# IP Intelligence Briefing: 8.231.213.236/32
Classification: LOW RISK / LEGITIMATE INFRASTRUCTURE
Date: 2026-06-16
Analyst: IPDebrief Intelligence
---
## Executive Summary
IP address 8.231.213.236 is identified as a legitimate Google Cloud infrastructure component with a risk score of 25 (Low Risk). No malicious indicators, threat campaigns, or abuse signals detected. The IP is classified as cloud compute infrastructure with proper DNS and email authentication controls in place.
---
## Ownership & Geolocation
| Attribute | Value |
|---|---|
| Organization | Google LLC |
| ASN | 396982 |
| Netname | GOOGL-2 |
| CIDR Block | 8.228.0.0/14 |
| RIR | ARIN |
| Country | United States (US) |
| Region | Oregon (OR) |
| City | The Dalles |
Geolocation Validation: Coordinates 45.6°N, -121.18°W with 8032.6 km distance from observation point. Geo-validation plausible but ICMP probes blocked (unable to validate RTT).
---
## Network Infrastructure Profile
- Infrastructure Type: CloudCompute
- Service Provider: Google Cloud
- Connection Type: Firewalled / No Services
- Open Ports: None detected
- Is Cloud: Yes
- Is CDN: No
- Is Hosting: Yes
---
## Threat Intelligence Assessment
| Indicator | Status |
|---|---|
| Risk Score | 25 (Low Risk) |
| Blacklist Count | 0 |
| Abuse Confidence | N/A |
| Known Attacker | No |
| Spam Source | No |
| Tor Exit Node | No |
| Known Campaigns | None |
Control Plane Analysis:
- DNSBL Listed: 1 (of 8 total lists)
- Operator Score: 0.3478 (Basic)
- Route Stability: Unstable
- DNSSEC Valid: Yes
- RPKI State: Not assessed
---
## DNS & Email Authentication
- PTR Record: 236.213.231.8.bc.googleusercontent.com
- Forward Confirmed: Yes
- Domain: googleusercontent.com
- SPF Record: Present
- DMARC Record: Present
- Certificate Matches: 0
- Campaign Likelihood: None
---
## Historical Observation Summary
Total Observations: 21 (as of 2026-06-16)
| Metric | Value |
|---|---|
| Abuse Density | 0 |
| Classification | Clean |
| Threat Persistence Days | 0 |
| Threat Observation Count | 0 |
| Persistently Malicious | No |
Recent Signals (2026-06-16):
- Subnet classification: Clean
- Network abuse density: 0
- Geolocation validation: Plausible
- Control plane operator score: 0.3478
---
## Relationship Graph Analysis
Total Relationships: 17
- Network Associations: All map to GOOGL-2 network
- DNS Associations: 236.213.231.8.bc.googleusercontent.com
- Malicious Relationships: None detected
---
## Neighborhood Analysis (/24 Subnet: 8.231.213.236/24)
| Metric | Value |
|---|---|
| Subnet Classification | Clean |
| Abuse Density | 0 |
| Active Siblings | 1 |
| Threat Siblings | 0 |
| High Risk Neighbors | 0 |
| Medium Risk Neighbors | 0 |
---
## Security Actions & Recommendations
Recommended Actions: None
Firewall Rules: None required
---
## Intelligence Conclusions
1. Legitimate Infrastructure: IP is confirmed as Google Cloud compute infrastructure with proper authentication controls (SPF/DMARC).
2. No Active Threats: Zero malicious indicators across 21 observations. No blacklist presence, no known campaigns, no threat persistence.
3. Clean Neighborhood: Subnet 8.231.213.0/24 shows 0 abuse density with clean classification.
4. Operational Status: IP appears to be actively used for legitimate cloud services (firewalled with no open ports).
5. SOC Guidance: This IP should be treated as trusted infrastructure. No blocking or alerting required. Monitor as part of normal cloud service baseline.
---
End of Briefing
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Google LLC |
| ASN | AS396982 |
| Network Name | GOOGL-2 |
| CIDR Block | 8.228.0.0/14 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 236.213.231.8.bc.googleusercontent.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | 236.213.231.8.bc.googleusercontent.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 30% | 2 | 3 |
| Overall | 23% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 12:22:26 UTC |
| Last Seen | 2026-06-21 10:35:20 UTC |
| Profile Built | 2026-06-21 10:41:29 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 25 |
Full dossier details are available via our API.