IP Risk Score: 77 / 100

This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.

Block IPs like this in your system

What is this IP address?

IP Address: 13.221.46.88

Country: United States flag

United States (US)

Region Name: Virginia (VA)

City: Ashburn

ISP: Amazon.com, Inc.

Organization: AWS EC2 (us-east-1)

Threat level: 77 / 100
Conf. level: 100 / 100

Properties

ASN: AS14618

AS Name: Amazon.com, Inc.

Timezone: America/New_York

Reverse DNS: ec2-13-221-46-88.compute-1.amazonaws.com

Status: Critical

Hosting

Observed Client Profile

OS: Windows (100%)
Device Type: Desktop (100%)
Browser Family: Chrome (100%)
Rendering Engine: Gecko (100%)

Behavioral Indicators

The IP address is associated with AWS EC2 and exhibits behavior indicative of automated access, including lack of JavaScript support and a structured user-agent. The access pattern is limited but raises concerns due to the cloud hosting environment.

The supernet (13.221.0.0/16), which this IP belongs to, exhibits behavior indicative of automated scraping and potential misuse of legitimate infrastructure, with multiple IPs showing repetitive low-value interactions and a mix of legitimate and suspicious user agents. The presence of honeypot hits and high-frequency 404 responses suggests coordinated activity that may be aimed at analytics pollution.

JavaScript Support

⚠️ No

User-Agent Samples

Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0

Integrate IPIntel into your system

IP Location

Region: Virginia, United States

City: Ashburn

Local time: 2026-06-22 09:09:03

Subnet
13.221.46.0/24
Supernet
13.221.0.0/16