Elevated Risk
IP 150.107.38.251 is a high-risk address operated by UCLOUD INFORMATION TECHNOLOGY HK LIMITED in Hong Kong, with a threat level of 8/10 and 319 abuse reports filed against it over approximately 10 months of observed malicious activity.
Automated honeypot sensors recorded the majority of the 319 reports targeting this IP between August 2025 and June 2026, indicating sustained hostile scanning and intrusion attempts originating from the AS135377 network. The activity frequency rating of 8/10 confirms persistent, high-volume engagement with exposed services rather than isolated opportunistic probes. This concentration of hostile traffic within a defined timeframe and the 92% confidence score in attributing malicious intent collectively establish the IP's reputation as an established attack platform rather than a compromised end-host.
The dominant threat category of Hacking reflects a broad pattern of unauthorized access attempts, vulnerability probing, and intrusion activity directed at exposed services. This style of automated attack frequently precedes credential compromise, data exfiltration, or deployment of secondary payloads within target environments. Organizations with exposed SSH, RDP, HTTP APIs, or other network-accessible interfaces face the most direct risk from this IP's sustained scanning behavior.
Site operators should block or rate-limit traffic from 150.107.38.251 at the network perimeter, implement fail2ban or similar dynamic firewall rules to automatically ban repeat offenders, and enforce strong authentication on all externally accessible services. Regular patching, intrusion detection monitoring, and review of authentication logs will help identify any successful compromise attempts originating from this source.
NG 
JP 
FR 
UA 
IR