Report - www.thermotics.com/

Report Overview

Visitedpublic

2026-04-13 22:04:08

Tags

malicious clickfix

Submit Tags

URL

www.thermotics.com/

Finishing URL

thermotics.com/

IP / ASN

United States

50.6.2.219

#0

Title

Thermotics®: OTSG Once Through Steam Generator

Malicious - Copy/Paste Social Engineering (ClickFix)

Detections

urlquery

2

Network Intrusion Detection

3

Threat Detection Systems

6

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
polygon-pokt.nodies.app	unknown	2023-05-12	2025-08-27	2026-04-04	1.5 kB	2.4 kB	172.67.70.207
ap7.supportly.au	unknown	unknown	No data	No data	3.0 kB	442 kB	104.21.83.184
1rpc.io	47066	2022-08-02	2022-08-18	2026-04-06	480 B	304 B	20.105.41.175
polygon-bor-rpc.publicnode.com	2163006	2016-08-16	2024-04-26	2026-04-13	1.5 kB	2.1 kB	104.20.24.117
polygon-public.nodies.app	unknown	2023-05-12	2025-08-27	2026-04-04	1.5 kB	2.4 kB	172.67.70.207
darkorange-hornet-643740.hostingersite.com	unknown	unknown	No data	No data	2.4 kB	48 kB	91.108.98.30
polygon.gateway.tenderly.co	unknown	2020-05-11	2025-08-03	2026-04-04	495 B	541 B	35.227.193.242
gateway.tenderly.co	1960624	2020-05-11	2022-05-12	2026-04-04	501 B	542 B	35.227.193.242
polygon.lava.build	7157037	2023-09-14	2025-08-27	2026-04-04	1.5 kB	3.6 kB	104.18.24.75
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2026-04-12	2.2 kB	156 kB	172.217.19.227
polygon.drpc.org	unknown	2005-01-09	2023-12-16	2026-04-04	1.5 kB	1.9 kB	104.18.10.59
fonts.googleapis.com	313	2005-01-25	2012-05-23	2026-04-12	1.0 kB	60 kB	142.251.38.106
thermotics.com	unknown	unknown	No data	No data	40 kB	6.2 MB	50.6.2.219
upload.wikimedia.org	4329	2003-03-16	2012-05-21	2026-04-13	473 B	65 kB	185.15.59.240
www.thermotics.com	unknown	unknown	No data	No data	487 B	107 kB	50.6.2.219
polygon.rpc.subquery.network	unknown	2020-10-07	2025-08-27	2026-04-04	1.5 kB	1.7 kB	51.254.59.59
api.zan.top	1528343	2023-03-24	2023-08-02	2026-04-04	494 B	704 B	8.219.97.231

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2026-04-13 22:03:47	low	Client IP	20.105.41.175	ET INFO Observed Smart Chain Domain in TLS SNI (1rpc .io)
2026-04-13 22:03:47	low	Client IP	8.219.97.231	ET INFO Observed Smart Chain Domain in TLS SNI (api .zan .top)
2026-04-13 22:03:48	low	Client IP	8.222.235.176	ET INFO Observed Smart Chain Domain in TLS SNI (api .zan .top)

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
DigiCert UltraDNS	ap7.supportly.au	malicious	Sinkholed
DNS4EU	ap7.supportly.au	malicious	Sinkholed
Cloudflare DNS	ap7.supportly.au	malicious	Sinkholed
Hagezi Threat Feed	ap7.supportly.au	malicious	Sinkholed
Quad9 DNS	ap7.supportly.au	malicious	Sinkholed
DigiCert UltraDNS	darkorange-hornet-643740.hostingersite.com	malicious	Sinkholed

JavaScript (38)

HTTP Transactions (122)

	URL	IP	Response	Size