solanexai-axy.pages[.]dev
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of solanexai-axy.pages[.]dev
This website appears to present itself as a cryptocurrency token presale or token-purchase interface branded around “SOLA-NEX” and “SOLDEX.” The screenshot shows a wallet-connection flow, token purchase options across several blockchain networks, a countdown timer, fundraising progress, and sections such as tokenomics, audit results, referrals, and leaderboard. Based on the page layout and terminology, it appears intended to attract users interested in buying a crypto asset during a presale phase.
The domain uses a pages.dev subdomain, which suggests the content is hosted on a static site platform rather than a dedicated branded domain. The page title is listed as “Google,” which does not appear consistent with the visible branding in the screenshot and may indicate poor metadata hygiene or possible deceptive presentation. Available classification data is mixed, with some providers labeling it as information technology while others associate it with phishing or fraud-related activity.
Safety Assessment for solanexai-axy.pages[.]dev
Several scan signals raise concerns at the time of this scan. The site was flagged by 4 out of 94 security engines, and multiple classification sources associated it with phishing or fraud-related behavior. In addition, a malware scan marked one JavaScript file as suspicious and identified a referenced domain, solanex.ai, as suspicious as well. While blacklist databases checked here did not show active listings, the combination of phishing detections, suspicious script findings, and crypto wallet interaction increases the potential risk profile.
The screenshot itself also shows patterns commonly associated with high-risk crypto solicitation pages, including a wallet-connect prompt, direct payment address, presale countdown timer, bonus incentives tied to larger deposits, and fundraising claims that are difficult to independently verify from the page alone. The mismatch between the visible branding and the page metadata title further adds uncertainty. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site is served through Cloudflare infrastructure and presents a valid TLS certificate issued by a mainstream certificate authority, with certificate validity extending into 2026. Hosting appears to be on a Cloudflare-backed pages.dev deployment, and the resolved server IP is associated with Cloudflare edge infrastructure in Canada. The domain registration is several years old, but that age does not necessarily establish legitimacy for the current content or subdomain usage.
DNSSEC appears to be unsigned, which is not uncommon but does mean there is no DNSSEC-based authenticity protection visible here. A suspicious JavaScript file was identified during malware scanning, and the use of a hosted subdomain for a crypto presale page may make attribution more difficult. The available protocol details are incomplete, so only limited conclusions can be drawn about the broader server configuration.
Share your experience with this website. Was it safe? Did you encounter any issues?