Dear Pink Meth
Thank you so much for helping me in my fight against Revenge Porn. You are the nicest Revenge Porn website owner I have ever met. I appreciate the fact that you've moved your server to Somalia in order to protect Revenge Porn victims from their irrational photo removal requests. Somebody has to keep those bitches in line. I have published my response to your Christmas email below.
Hi, I'm Sae and I operate the website called "Pink Meth".
It's nice to meet you, but before we become friends, you must learn to place your periods inside quotation marks. So, it would be "Pink Meth." Of course, I'm no grammar queen. Just one month ago, I, too, was putting my periods outside quotation marks. But now that I'm thinking about it, maybe you should just stick with your grammatical error, because if you start putting your periods within quotation marks, I will know that you have read this letter.
I was introduced to your website ("Women Against Revenge Porn") after reading a thread about our website ("Pink Meth") on the anonymous message board called "Anon News".
I know. I smelled you. Again, that would be "Anon News." But I'll let it slide because you made the effort to capitalize my website name.
First of all, I'd like to say that I have nothing against what you're doing and find it rather ok, and somewhat necessary because of some of the websites you've mentioned.
Thank you for your support. That's very nice of you.
However, it appears that you've failed on information gathering.
I am sorry.
In some cases, where the website modifies the images (ex. applies a watermark or strips out the EXIF data), reverse image search on Google just won't do it. You'd also have to check https://tineye.com - but even that doesn't always work.
Now, PinkMeth, this might be a touchy subject with me. Why? Because I have a friend whose head was photoshopped on someone else's nude torso. At first, I was really pissed off for her because the torso was rather pear-shaped and hairy. But when I ran a Google Reverse Image search on her "modified" photos, I found that this particular torso had been pulled from some obscure website in Amsterdam, so I readjusted my ridiculous American physique standards. So, all this to say that just because a photo has been modified does not mean it cannot be retrieved by Google Image Reverse Search. I already know about Tineye.com. Google Image Reverse Search is better. But I will let Google know that PinkMeth says their product is half-ass. In time, if you keep sending me emails, I may rank higher than you for the keyword "Pinkmeth," so you might want to stay on Google's good side.
Best thing to do is Google your name+hometown.
No shit. Really?
if it's a very common name, then you'd have to add keywords like "nude", "naked", "topless", "selfshot" and such.
So, if my name is "Jane Smith," I should type "Jane Smith nude," "Jane Smith self shot herself," and "Jane Smith just lost her job topless." Okay, I can do that.
If your images originated from your Photobucket account, Googling of the Photobucket username concludes the search in most cases.
If my images originated from my Photobucket account, my search is not going to conclude with a googling. My search is going to conclude with jail time of the asshole who stole my photos.
While you included some of the most popular adult websites, most of them don't fall in the "revenge porn" category, and therefore shouldn't be labeled as such.
This is my site. I'll label them whatever the hell I want to label them. You seem awfully touchy about distinguishing "real" porn sites from "revenge" porn sites. What's up with that?
You should separate them into groups, ex. Revenge Porn, Galleries, Forums (Photobucket account dumps usually end up on forums like DumpsterSluts.com, PlanetSuzy.org, Phun.org and such).
God, don't you have something better to do than categorize porn sites? It's Christmas, for god's sake. And how the hell do you know all of this stuff? And what if it's a forum for Revenge Porn galleries?
If a WHOIS search returns that registrant's information is protected/private, you should most likely try these methods: Go to Google.com and search "domain-name.com" "registrant contact", look through all results and hope to find an older cached result of the WHOIS record. That is, before the site owner turned the WHOIS protection on. If that doesn't work, you can always buy a pricey complete whois report from https://www.domaintools.com/research/whois-history/, if your budget doesn't allow it, you can go to https://who.is/domain-history/ and view the oldest available WHOIS record. Neither of the options will work if the person who registered the domain selected WHOIS privacy upon domain registration or used fake details [if you're planning on suing the registrant].
This is getting really exhausting. Why are you telling me how to do this shit?
View page source and search for "UA-" if it returns a result, ex. "UA-92165-1" (dumparump.com) then copy the [Google Analytics] tracking code and do a reverse search on https://spyonweb.com/ orhttps://reverseinternet.com/. That way, you're going to know if the webmaster owns any other websites and uses the same [Google Analytics] profile ID to track its site's traffic. Proof of concept: https://spyonweb.com/UA-92165/ or https://reverseinternet.com/analytics/92165/.
Are you sure you don't want to do a workshop on this? We could team up.
You should also always do IP address reverse search to see if the site owner is hosting other websites on the same IP address. You can just hope that he forgot to turn the WHOIS privacy on some of the websites. For example, https://gallery-dump.com owner is using a cheap dedicated server from https://ovh.fr/ and he's hosting all of his websites on the same IP address, in this case the IP is: 176.31.248.210 (you can get it by going to domaintools.com and clicking "Server Stats", simply pinging the website via Command Prompt [Windows] / Terminal [Mac, Unix/Linux], ex. ping domain-name.com OR a browser extension). When we check the IP on https://sameip.org/, we should be able to see all of the domain names pointing to the IP address in question, in some cases like this, a domain or two won't show up, but more on that later. If we go to https://sameip.org/ip/176.31.248.210/ we will see that the owner of https://gallery-dump.com/ is a naughty boy who is interested in Japanese culture and operates Hentai related websites. When we do WHOIS lookups of the domain names, we will notice that all of them have WHOIS privacy enabled excepthttps://paumadou.com/ (https://who.is/domain-history/paumadou.com) which appears to be a portfolio website he created and is managing for a friend of his. So, we see that the domain name is registered in the name of his friend, but the phone number and the address belong to the person of interest. Let's put the phone number in Google.com and see what pops up. In this case, nothing interesting, two expired domains and the aforementioned domain name. Googling of the address however returns quite an intriguing result, https://domainsigma.com/whois/olifiles.net appears to be registered on the same address, and its administrator is "Oliver Johnson" from France who's using a "[email protected]" email address, which can be cross-checked on Facebook, MySpace, Twitter and alike websites for an associated profile.
Somebody is really, really jealous of gallery-dump.com. I like how you educated me and stalked gallery-dump at the same time. That is true talent.
Operators of adult websites usually tend to socialize and conduct business on https://gfy.com/ orhttps://iq69.com/, ex. https://gfy.com/showthread.php?t=1025803.
I was thinking about signing up for Match.com but this sounds more promising.
Furthermore, CloudFlare.com is a CDN (Content Delivery Network) and as such, should NOT be considered a web hosting service. Its mainly used for DDoS protection and covering of the website's true location.
I know, but they have a really great-looking copyright infringement notice form. And I know that they're doing a wonderful job of covering your ass. Go Cloudflare!
But then again, in most cases you can easily find out the true location of websites that are using CloudFlare. For example, IsAnybodyDown.com is actually hosted on a "shared hosting" in Romania on https://webcare360.com/, who are resellers and are NOT in charge of the datacenter itself. Datacenter and the IP block belongs to https://voxility.com/and as such, all complaints should be sent directly to Voxility if website operator refuses to cooperate. Website you can check the DNS of an website is https://intodns.com/, and an example page would be https://www.intodns.com/isanybodydown.com. If you scroll down to MX records, you will see that mail.isanybodydown.com points to 93.114.44.79, which if you check on https://sameip.org/ip/93.114.44.79 can see that the webmaster hosts multiple websites on it.
Stop picking on IsAnybodyDown. What did they ever do to you? Those guys are stellar, and you need to stop being such a big bully.
Now, I hope that this has helped you a little bit, and be sure to perform these steps for just about any website you encounter.
Okay, if I stop eating, limit my bathroom breaks, and ignore my mom when she calls, I think I'll have enough time to follow all of your steps.
Amount of information you can find by doing this beats contacting of law enforcement or your next door geeky friend.
I know. Believe me.
If you're using Firefox, you can always use https://flagfox.net/ and shorten the process by having all the options available by doing a right click on the flag in your address bar, ex. https://i.imgur.com/kAkV5.png. There is also a Chrome alternative called "Chrome Flags", but I prefer Firefox and Flagfox.
Can't you guys just take our shit down?
Merry Christmas!
I would've believed you meant this if you hadn't featured a woman on your website in retaliation of a lawsuit she filed against you.
Sincerely,
Sae
Thank you for my Christmas present, PinkMeth! I almost threw up when I saw an email from PinkMeth in my inbox on Christmas day! I'm glad I finally opened it.
Love,
WomenAgainstRevengePorn.com
Women Against Revenge Porn