Scams Bitcoin Mixers List and Services closed

Quote from: logfiles on November 17, 2023, 10:33:53 PM

2. I think it's OK to leave those that are also inactive. The list will act as an archive of past scam bitcoin mixers. In the past, I noticed that scammers tend to make comebacks using domains of old mixers that had been shutdown before.

I am of the opinion, that all domains should be left listed, even when they become inactive. Someone may try to start a legitimate business at some point, and it would be good if there were a warning for domains with a scam history. Just imagine, you start a business, invest a lot of money in it, and suddenly you start being contacted by scammed users who want their money back, even though you have nothing to do with it.

Quote from: GazetaBitcoin on November 17, 2023, 08:15:43 AM

Quote from: LeGaulois on January 17, 2022, 08:43:58 PM

Hi dude.

That's because scammers use this method:

- They see a new service annonced on Bitcointalk
- They buy domain extensions, to reserve a slot, and wait patiently. (No problem to wait a month or a year)
- If the service becomes popular in the niche, they start to use the domain name.
- Everything is ready to go, up to forget to remove some footprints.

I basically use a tool to check every domain extension, and I can see when they're bought too. So for exemple:
If there is new mixer called Chipmixer.com and a month later someone buys Chipmixer.net, you can guess there is a very hight possibility that the domain name will be used to scam people, and the chance of just a radom guy buying chipmixer.net to make a blog or whatever is very very low.

Quote

At same time, maybe OP can revamp this thread and ensure that all clones listed are still active?

I could remove dead websites of course, but scammers can buy old domain names too (and they do it), so it can be usefull for reference.
Helix-gram is an exemple where it can be.

(At the same time, it gives me hint sometimes to find other scams with archive.org)

Now that we have another mixer down in the forum, you will add to the list. This came as a surprise to many in the forum because immediately after Royse777 announced the escrow address has been refilled and it was not up to 3 or hours when the seizure announcement came in to the forum. And I don't know why mixers are used for this act. But I still believed that there are still good mixers exist.

Let mixers also scronized users that deposit big amount of Bitcoin for mixing. If it is possible they should put the maximum limit of Bitcoin to be mixed to avoid problem.

Quote from: Mate2237 on November 30, 2023, 09:27:16 PM

Now that we have another mixer down in the forum, you will add to the list.

The mixer was down and seized by government authorities, not down in the forum. A service can be lively even their team abandon an announcement thread in Bitcointalk.

I know what mixer you meant but your information is not really accurate and I know their announcement thread was archived, that service representative account was banned by the admin too.

Quote from: Mate2237 on November 30, 2023, 09:27:16 PM

This came as a surprise to many in the forum because immediately after Royse777 announced the escrow address has been refilled and it was not up to 3 or hours when the seizure announcement came in to the forum.

It is coincidence.

Quote

And I don't know why mixers are used for this act.

Mixers are like other services and products which all can be used by criminals. You can not block all criminals to use any service.

Quote

But I still believed that there are still good mixers exist.

Mixers are good if they have good mixing process for their users but if criminal money comes to mixers, governments will consider these mixers are illegal and will seize those service websites.

So the scammer owned several domain names to copy the real mixer.
Hes's probably doing it with other tumblers, there's no reason why they shouldn't, it's part of their routine
It's cheap to buy a domain, it's cheap to host it.

a sample of the list:
mixersinbad.io
simbad.io
slnbad.io
sinbadmixer.com
sinbadmixer.net

He's redirecting the google traffic to 1sinbadgo.com

Something interesting: Google is blacklisting (some) phishing domains related to Sinbad.
Does it started when the mixer was seized: Yes
Does it happened when it was about another mixer: No

--------
Added
sinbad.bio

Quote from: LeGaulois on December 09, 2023, 11:23:33 PM

Something interesting: Google is blacklisting (some) phishing domains related to Sinbad.
Does it started when the mixer was seized: Yes
Does it happened when it was about another mixer: No

How I wish they would use the same energy to promptly blacklist phishing domains of genuine services that have not been seized by the Government. Sometimes they won't bother to do anything even when you report a phishing domain to them.

Adding a few names to the list:

xbtc.so
bestmix.live
CryptoMixer.net
CryptoMixer.hk
cryptomixerbtc.io
cryptomixer0.com
cryptomixer.cx
cryptomixer-io.xyz
CryptoMixer.ws
cryptmixer.net

more coming...

Since you adding closed services, you can add [banned mixer] also. They are out of business and their website is offline. Everything was preceded by some bad decisions here, which resulted in negative feedback on the forum.
You can find more https://bitcointalk.org/index.php?topic=5479766.0

Hey Man

Clone ThorMixer

Code:

https://tormixer.io/
http://63tcv27jp5hkcckk3mkhftxoohywrzpq6n74txsxgmggw73ma43y3vad.onion/

Quote from: icopress on June 24, 2024, 04:38:02 PM

Hey Man

Clone ThorMixer

Code:

https://tormixer.io/
http://63tcv27jp5hkcckk3mkhftxoohywrzpq6n74txsxgmggw73ma43y3vad.onion/

Thanks added.

BTW, do you have a way to verify that the domain name

Quote

thormixer.net

belongs too to the same owner domanename.io.
I guess yes it does but just to be sure

Do you think I should compile this list into a searchable database that people can copy and paste the domain name into to see if it's a scam? (Or legit? Or unknown even.)

I'm asking because I'm not sure if anyone actually checks this list before they go to a website.

Quote from: NotATether on July 13, 2024, 11:55:26 AM

a searchable database that people can copy and paste the domain name into

You mean like CTRL-F? I'd say the list works fine as-is.

Quote from: LoyceV on July 13, 2024, 12:16:00 PM

Quote from: NotATether on July 13, 2024, 11:55:26 AM

a searchable database that people can copy and paste the domain name into

You mean like CTRL-F? I'd say the list works fine as-is.

No, more like a "Have I been pwned" type service but with URLs instead of e-mails.

And it could search for a lot more than mixers.

*Of course the list of malicious domains will be embedded in a local JS file to avoid network requests.

Quote from: NotATether on July 13, 2024, 11:55:26 AM

I think it's a good idea

Well, if you are to have a list of trustworthy services, it's an added bonus if there is a list of services that are scam where people who try to do extra research can look to. It would also help identify services that were previously legitimate and have gone defunct or have turned into scam

Quote from: logfiles on July 13, 2024, 10:50:05 PM

I'm thinking of using color codes like this:

- Green: Safe, legit
- Red: Phishing link
- Yellow: Previously legit service that has turned rogue
- Grey: Unknown, link not in the database, should be treated same as red for all intents and purposes.

That would make it easier for people to tell which is which.

Edit: Closed services would be red too.

Quote from: NotATether on July 14, 2024, 05:59:31 AM

Quote from: logfiles on July 13, 2024, 10:50:05 PM

I'm thinking of using color codes like this:

I am more in favour of the option "if the mixer is not on this list, then it is unreliable". It is too much work to find all the fake, phishig, scam sites, and it is never possible to list them all. There is always a new one.
Such a list must have a log on the regularity of updates so that the reader can be sure that he has fresh information.

Quote from: NotATether on July 14, 2024, 05:59:31 AM

Not a bad idea, depending on the UI, I wanted to do the same (a bit like scamadviser.com) but I think you should make no difference between yellow and red.
Keep it simple:
- Red: Not safe because <phishing link, proven scam, turned rogue...> (and why not a link source)
- Green: Safe service
- Grey: unknow service

Another thing that can be done to fill the database:
If the legit service is 1234.com, you can consider all others TLDs not safe to use, and add them directly to the DB. It can save some time in the long run Grin

Quote from: LeGaulois on July 18, 2024, 04:19:00 PM

Another thing that can be done to fill the database:
If the legit service is 1234.com, you can consider all others TLDs not safe to use, and add them directly to the DB. It can save some time in the long run Grin

Now I need to figure out how to get a list of all the registered TLDs.

Quote from: NotATether on July 18, 2024, 05:43:59 PM

Now I need to figure out how to get a list of all the registered TLDs.

I can only think is to search it on domain registrar sites and check if the domain extensions (TLD) is taken already or not. Example of bitcointalk on crombell for faster viewing of available domain extensions.

Code:

https://www.combell.com/en/order-domain-names?domainname=bitcointalk

Quote from: PX-Z on July 19, 2024, 05:53:14 PM

Quote from: NotATether on July 18, 2024, 05:43:59 PM

Now I need to figure out how to get a list of all the registered TLDs.

Code:

https://www.combell.com/en/order-domain-names?domainname=bitcointalk

Coinimize mixer uses more than one domain. I think .biz, .co and .is extensions.

Otherwise, what you propose is a centralized database, which will give a negative result in a search on all domains except for the 12-15 currently known active mixers. All other domains belong to the not mixer service group, and it is too much work that will not bring much benefit to users.
A valid list with active and non-scam services is perfectly fine.