13.221.192.251
IP Risk Score: 69 / 100
This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.
What is this IP address?
United States (US)
Conf. level: 100 / 100
Properties
Observed Client Profile
- OS: iOS (100%)
- Device Type: Mobile (100%)
- Browser Family: Safari (100%)
- Rendering Engine: Gecko (100%)
Behavioral Indicators
The IP address is associated with AWS and exhibits behavior typical of automated access, including multiple requests in a short time frame. The user-agent appears legitimate but is being used from a cloud hosting environment, raising concerns about potential scraping or probing activities.
The supernet (13.221.0.0/16), which this IP belongs to, exhibits behavior indicative of automated scraping and potential misuse of legitimate infrastructure, with multiple IPs showing repetitive low-value interactions and a mix of legitimate and suspicious user agents. The presence of honeypot hits and high-frequency 404 responses suggests coordinated activity that may be aimed at analytics pollution.
JavaScript Support
โ YesUser-Agent Samples
- Mozilla/5.0 (iPhone; CPU iPhone OS 26_2_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) EdgiOS/143.0.3650.139 Version/26.0 Mobile/15E148 Safari/604.1
IP Location
Region: Virginia, United States
City: Ashburn
Local time: 2026-06-22 10:23:45