# solanaai.pages.dev — MALICIOUS — Crypto Drainer (Solana Drainer) > solanaai.pages.dev hosts a live Solana crypto drainer kit. This high-risk domain resolves to 188.114.96.3 and impersonates Solana to steal wallets. ## Summary PhishDestroy identifies solanaai.pages.dev as a high-risk Solana crypto drainer domain actively luring victims under the guise of legitimate Solana services. The domain’s current configuration delivers a Solana Drainer kit designed to siphon cryptocurrency from unsuspecting wallets, with the threat actor already live and operational. Users are urged to treat this domain with extreme caution and avoid any interaction that could expose their private keys or seed phrases. This domain was flagged with a high-risk designation based on its confirmed use of a Solana Drainer kit and active impersonation of the Solana brand. Technical indicators include a VirusTotal score of 0/95 detections, indicating it has evaded detection by current AV signatures; registration through Cloudflare, Inc.; an SSL certificate issued by Google Trust Services; a resolved IP address of 188.114.96.3; and active impersonation of Solana to deceive users. The domain’s infrastructure aligns with known crypto-draining operations, leveraging trusted certificates and CDN services to appear legitimate while hosting malicious payloads. To mitigate exposure to this threat, users should immediately block the domain solanaai.pages.dev at the network level and refrain from accessing any links or content associated with it. For Solana users, ensure wallet applications and browser extensions are updated to the latest versions and consider using hardware wallets for additional security. Organizations should update firewall and DNS policies to block traffic to and from 188.114.96.3 and monitor for any outbound connections to this IP. Reporting this domain to threat intelligence platforms can help prevent further exploitation by the same threat actor. ## Threat Details - Verdict: MALICIOUS — Crypto Drainer (Solana Drainer) - Site status: unknown (HTTP ?) - Drainer type: Solana Drainer - Target brand: Solana ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/b1c6726e-39e5-475d-87f5-834e25a11056 - PhishDestroy: https://phishdestroy.io/domain/solanaai.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/solanaai.pages.dev/llm.txt ## If You Visited This Site 1. Revoke all token approvals immediately (revoke.cash / unrekt.net) 2. Move remaining funds to a new wallet 3. Do not interact with any transactions from this site 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/solanaai.pages.dev/ Last updated: 2026-03-26