Check an IP Address, Domain Name, Subnet, or ASN

37.57.25.3 was found in our database!

$ whois 37.57.25.3

country·🇺🇦 Ukraine

city·Kharkiv

isp·Content Delivery Network Ltd

asn·AS13188

network·Standard

$ sikker risk 37.57.25.3scoring →

confidence

100%Very High

first_seen·Feb 12, 2026

last_seen·20d ago

sessions·82

events·82

$ sikker protocols 37.57.25.3

MSSQL

48 / 48

SMB

34 / 34

$ sikker summary 37.57.25.3

37.57.25.3 has a threat confidence score of 100%. This IP address from Ukraine (AS13188, Content Delivery Network Ltd) has been observed in 82 honeypot sessions targeting MSSQL, SMB protocols. Detected attack patterns include smb remcom remote command execution, smb remcom stdout pipe access. First observed on February 12, 2026, most recently active February 26, 2026.

$ sikker behaviors 37.57.25.3catalog →

very_highSmb Remcom Remote Command Execution10x

Identifies PsExec/RemCom-style remote command execution over SMB, involving IPC$ share access, service control manager pipe interaction (svcctl), and communication via the RemCom named pipe. This behavior reflects authenticated lateral movement and remote process execution through Windows administrative shares.

highSmb Remcom Stdout Pipe Access15x

SMB session accessing a RemCom_stdout* named pipe following IPC$ share access, indicating interaction with a RemCom-style remote command execution channel.

$ sikker primitives 37.57.25.3

smb_empty_rpc_call25 smb_ipc_share_access25 smb_file_create_remcom_std15 smb_remcom_pipe_open10 smb_svcctl_pipe_open10 smb_remcom_named_pipe_communication10

$ sikker related 37.57.25.3

🇺🇦·More threats fromUkraine→AS·More threats fromContent Delivery Network Ltd→MSSQ·More threats targetingMSSQL→SMB·More threats targetingSMB→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
178.151.142.109	85%	49
178.150.13.191	35%	3
178.150.135.19	53%	482
159.224.199.208	20%	34
37.57.94.151	21%	39

IP Address	Confidence	Events
77.83.39.250	71%	296
185.156.73.69	93%	900
185.156.73.59	93%	918
95.214.232.18	88%	10,882
45.12.1.19	88%	8,422