# swapdexairpro-ai.fyi — MALICIOUS > swapdexairpro-ai.fyi poses as a cryptocurrency platform, tricking users into fake trades. Flagged by 21/95 security tools, it's a high-risk phishing site to. ## Summary PhishDestroy identifies swapdexairpro-ai.fyi as a high-risk fake cryptocurrency exchange designed to harvest user credentials and cryptocurrency funds through deceptive trading interfaces. This domain impersonates legitimate crypto platforms to lure victims into depositing funds or entering sensitive wallet information, which are then exfiltrated by attackers. The site leverages social engineering tactics, such as mimicking professional UI/UX elements, to appear legitimate at first glance. Users interacting with this domain risk financial loss, credential theft, and potential malware installation through malicious scripts embedded in the fraudulent trading portal. This domain was flagged by 21 out of 95 security vendors on VirusTotal, indicating widespread detection of its malicious nature. It was registered through Epik LLC on March 13, 2026, a relatively recent creation purpose-built for phishing campaigns. Additionally, it has been blocked by four major security blocklists, including PhishingArmy, StevenBlack, OISD, and CERT-PL, demonstrating its aggressive malicious intent. The domain resolves to IP address 209.196.146.115, hosted on infrastructure with a history of supporting fraudulent activities. Its Let’s Encrypt SSL certificate may further falsely reassure users of its legitimacy, as attackers increasingly exploit free certificates to enhance credibility. If you visited swapdexairpro-ai.fyi, immediately cease all interactions and do not enter any personal information, passwords, or cryptocurrency wallet credentials. Check your device for signs of compromise, such as unauthorized transactions or installed malware. If you entered sensitive data, reset your passwords on all accounts, revoke any API keys or wallet permissions, and consider transferring remaining assets to a secure, offline wallet. Report the domain to your local CERT team and security vendor to aid in blocking efforts. Use a reputable security tool to scan your system and remove any detected threats. To prevent future exposure, avoid clicking links from unsolicited emails or ads promoting crypto trading platforms and verify any financial site through official channels before use. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-13 20:32:19 - Registrar: Epik LLC - IP: 209.196.146.115 ## Detection Status - VirusTotal: 21 vendors flagged - Google Safe Browsing: clean - Blocklists: 4 hits Lists: ["PhishingArmy", "StevenBlack", "OISD", "CERT-PL"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/21db144f-33e1-46e0-bd01-c17d49ca3442 - PhishDestroy: https://phishdestroy.io/domain/swapdexairpro-ai.fyi/ - LLM endpoint: https://phishdestroy.io/domain/swapdexairpro-ai.fyi/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/swapdexairpro-ai.fyi/ Last updated: 2026-04-14