One of the world’s most visited websites that nobody is aware of (2017)

One of the world’s most visited websites that nobody is aware of (2017)(sijmen.ruwhof.net)

321 points by handpickednames 7 years ago | 159 comments

shakna 7 years ago |

> According to another source, a public address book at locatefamily.com, someone under the name Vladimir S. Nesterenko is living at [REDACTED] in Moscow. Vladimir lives according to Google Streetview it’s an apartment complex far away from the Moscow city center...

Really? Someone investigating with journalists, and may be considered a journalists themselves (?), actually publishes the address of someone that they are accusing of running a scam?

There can only be two reasons for doing something like that:

a) You're an idiot, and didn't consider the implications.

b) You're asking for the public to exact a justice that you think you can't.

topoftheforts 7 years ago | |

Yeah it's unacceptable, especially for someone who claims to be "ethical" in his bio:

> About Sijmen Ruwhof Independent IT Security Researcher / Ethical Hacker

antisthenes 7 years ago | | |

Whenever I see someone point out they are "ethical", it's always according to their own code of ethics that they are unwilling to ever discuss.

I used to be absolutist like that as well as a teenager. It's a shame when some adults don't grow out of it.

cf141q5325 7 years ago | | |

Reminds me of a lot Brian Krebs doxing of the pr0gramm staff.

scottlocklin 7 years ago | |

It's extremely likely that this person isn't responsible for the website, or knows anything about it. Criminal or shady activities in Russia (and everywhere else) are often laundered through cutouts.

You can find an example of this in "Magnitsky act: behind the scenes" where Bill Browder allegedly laundered his corporate holdings for tax fraud through various handicapped people, and eventually gangsters who were conveniently murdered.

axus 7 years ago | | |

If this were a criminal enterprise I'd agree with you, but I can imagine any of us putting together a document scraping/resource website and not having any qualms about it. It's pretty cheap to buy the obfuscation service when you register domains, he probably did not have a lot of money when he started.

Fins 7 years ago | | |

Using that piece of rather silly putin's propaganda as a source lowers your credibility greatly.

ender89 7 years ago | | |

""Magnitsky act: behind the scenes" where Bill Browder allegedly laundered his corporate holdings for tax fraud through various handicapped people, and eventually gangsters who were conveniently murdered."

Look, I'm not saying that's a bullshit documentary, but that's literally the kind of smear campaign Putin would execute to try to get talks of the magnitsky act thrown out. I wouldn't take any of that information as factual.

richrichardsson 7 years ago | |

I'd go with a). Very dumb move.

sametmax 7 years ago | | |

“Never ascribe to malice that which is adequately explained by incompetence” said Napoleon.

1024core 7 years ago | |

If it's in a WHOIS record, is it really private?

cmroanirgo 7 years ago | | |

Probably not, but there's a big difference between information being drowned in the midst of other information, and carefully pruned information from that pile and then put into an article whose sole purpose is to draw attention to it.

Regardless, it's a very poor decision made by the author to reveal it in such a way, with maps, etc.

consp 7 years ago | |

The site in question (locatefamily.com) is known for scraping public information. I'm very doubtful anyone did anything wrong here, tough it is questionable data to say the least.

Morally questionable maybe, though I'm going full circle and going to say scamming is as well.

edit: The name was posted in public whois info. That basically means you handed out your data to the public anyway. Everyone on this forum would be able to acquire the location from the information he found.

topoftheforts 7 years ago | | |

That's not a justification at all. Just to give you an example: UK company addresses are open to the public, and easily accessible through the government website. Many UK internet personalities have set up a company, and for many of them it's their house address (cause either they don't know about the register or they don't care enough).

Would it be ok for me to make a blog post with their home address on it, just because it's publicly available? I don't think so, even if they did something scammy.

prepend 7 years ago | | |

It’s amazing how many people don’t know how to use whois. Most doxxing I’ve witnessed comes from public info. The linking together of this info and promoting it is what creates more danger.

Since I assume most swatters are 12 year olds, that means they are less likely to know that Whois exists, therefore more likely to have the info because this author posted it.

aasasd 7 years ago | |

It's also likely that there are a dozen people with that name just in Moscow.

samstave 7 years ago | |

I know it's an unpopular opinion, but I personally do think that people should be exposed.

Sex offenders need to be registered. Heck, I think Panama papers and paradise papers people should be exposed...

robotrout 7 years ago | | |

That's a good attitude comrade. Congratulations on earning an additional 10 points to your social credit score! Now you can enjoy the 2nd class cabin on our country's numerous, punctual, and well maintained trains. Keep up your outstanding and patriotic attitude and you'll be riding in the luxurious and stylish 1st class cabins in no time!

NKosmatos 7 years ago |

Thanks for letting us know about this great "sharing" site :-)

Lot's of garbage in it, but it also has some interesting docs. I'm more interested on the technical details of it. How it works internally for scrapping, text extraction, indexing, random users creation and uploading of stuff and so on.

I understand the privacy and copyright infringement concerns, but it's not like they've hacked into those other sites and uploaded their files. They're using existing and "open for everyone" pages. Also the estimates for revenue are highly exaggerated IMHO. Sure they're making some €€€, but not in the millions range :-)

On a final note, how is this vastly different from, let's say, https://www.scribd.com ?

mtnGoat 7 years ago | |

This is quite easy to replicate. Just need about 5 jobs that run 24/7 harvesting data.

hahla 7 years ago |

I read through the article and I’m baffled. I couldn’t watch the news video or understand what was going on at the bottom of the post... but were news outlets and the government involved for a site that’s skimming PDFs, hosting them and then slapping on ads? This isn’t something new and if I recall correctly SlideShare did the same thing to grow to where they are today. Is it legal, I don’t know, but these types of sites are dime a dozen and nothing new..

ericabiz 7 years ago | |

From the article: "Multiple tax files of Dutch citizens had been published via www.docplayer.nl"

I don't speak or read Dutch, so I couldn't watch the video clip, but my guess is these tax files contained important and sensitive information. They were probably scraped from a government website.

zandjager 7 years ago | | |

They probably did, but someone made the mistake to put them somewhere where they were publicly available. Also the "russian" made tools available for taking down the content, tools which according to the article were working in an effective and timely manner.

aasasd 7 years ago | |

There are hundreds of "sharing" sites for every kind of thing that you'd want to find on the web, all copycats with the exact same idea. MP3s, tech manuals, etc. They're more popular in developing countries, I guess because we're used to piracy from the 2000s.

The figure of 92 K$/mon is pulled out of thin air, and a person earning that probably wouldn't live in a two-room apt on the outskirts. (Not saying that they found the right guy, though.)

roozbeh18 7 years ago | |

I was thinking the same. It was hard to understand the conclusion of what happened at the end.The news video was not playable either.

EMRZ 7 years ago |

Sorry if i don't understand this totally, but why is scraping for pdf and ppt/pptx files and mirroring them illegal?

If you can reach that files just scraping it means they are somehow open to public access.

No joke, i am genuinely asking.

55555 7 years ago |

The ad revenue estimate could be off by as much as an order of magnitude. This is a non-story. There are millions of spam websites on the internet.

desdiv 7 years ago | |

Unlike most spam websites, this one actually provides a useful and helpful function. The next time I 404 on a PDF I'll be sure to search for it on this site.

bcaa7f3a8bbc 7 years ago | | |

Seriously, how long has he been online as an "ethical hacker"? For everyone who has the experience of looking for some texts should know that there are millions of this type of websites out there, the spam farms. Many of these sites don't even have the files (a common tactic is putting the links to your spamsite in a PDF, and name the PDF as some other documents people are looking for but you don't actually have, to disguise your spam as a file, polluting the search result for everyone, bastard!), and are just making the visitors to click ads, or scamming people to enter personal information, to pay for another related service or a premium account, and they can probably make more money. And some other websites are even distributing malicious software.

Meanwhile this website is actually an "honest" one that works for the visitors as advertised! I think it would be great injustice by selectively just enforcing the copyright laws by seizing this individual websites and its income. After all, 30% of the websites on the entire Internet are like this. I don't think the blog post really have a point.

boffinism 7 years ago |

Misleading title. As the article points out, the Alexa ranking puts it outside the top 200k most visited sites.

dmos62 7 years ago | |

Below excerpt sums up the "most visited websites" part. Notice the "s" at the end of "websites". It might be an overstatement, the author didn't back it up, unless I missed it, but it's impressive nontheless:

> 45 domain names are in active use in 19 different countries.

> 42 dedicated servers in Germany run the whole operation.

> 24,3 million PDF and PowerPoint files are hosted on all sites combined.

> These sites have at least 12.843 incoming links.

> 23 to 29 million unique monthly visitors for all the sites combined.

> Estimated 100 million page views per month.

> The sites generate a roughly estimated add revenue of $92,210 each month.

> slideplayer.com is ranked as the 6,047 and myshared.ru is ranked as 11,806 most visited site in the world. 11 other sites are also ranked in the top 100,000 list.

SmkyMt 7 years ago | |

Article's author explains: "Unfortunately Alexa doesn’t have intelligence on the amount of visitors for this site." He goes on to describe additional data from informer.com, similarweb.com, etc - and to explain that the site actually strives not to be ranked well - as part of their business model.

furicane 7 years ago | |

You do realize that if it's in top 10 million, out of estimated ~640 million websites, it's right at the top? It's not misleading at all, it's quite down to the point, just like the article itself.

hahla 7 years ago | | |

Alexa is generally a poor metric. In my experience directly comparing Google Analytics to Alexa for hundreds of sites, anything above 50k rank is not pushing meaningful traffic.

dreamache 7 years ago | | |

Yeah, but that's not like a huge badge of honor. I can build a site and make it hit beyond a 200k alexa within a few months with minimal effort.

jrobn 7 years ago |

Here is the real question everybody should ask themselves: In today’s world, Why do I try to work honestly for a dollar?

mikestew 7 years ago | |

It's a great question, and the true answer isn't necessarily the default the (somewhat) rhetorical question assumes. Personally, an honest life is more important to me than money. OTOH, that's easy to say living on/with a software engineer's salary and job prospects.

arbuge 7 years ago |

The upload buttons of those sites seem to be there mainly to create plausible deniability. If any content creates trouble which cannot be made to easily go away just by taking it down, the site owners can claim they did not upload it themselves and that they don't have any records of who did. Or they could also create fake upload records if they want to stretch things a bit further. In practice, I think it's a very safe bet that 99.999999% of the documents on those sites have been obtained through scraping other sites, and are not user-submitted content.

Traubenfuchs 7 years ago |

Who in their right mind puts their real whois information online? On my urls, all that's real is the email address.

I applaud Vladimir Nesterenko for making money like this.

whatshisface 7 years ago | |

There's no telling whether or not that's his real name.

Edit: as a commenter below pointed out, just because a person with a name lives at an address, they may not run a website that they're listed as running. After all you probably live at an address, and if I was a fraudster I could list you.

SOLAR_FIELDS 7 years ago | | |

Except that if you read the article the reporters confirmed that a guy by that name lived at that apartment complex by asking the neighbors. There’s no guarantee that the person who registered is actually the person who lives there but someone answers to that name at the address provided apparently.

RoryH 7 years ago | |

How much time did this guy save people by providing the content quickly and easily to users? I say fair game to Vladimir for his innovation.

jerrre 7 years ago | | |

Did you read the description of the downloading process? If content discovery was the goal he could've just linked to the source

dTal 7 years ago |

Wow, the title doesn't do this justice. "Google makes millions from Russian organized crime" might be better.

jerf 7 years ago | |

"Organized" usually implies a, well, organization. This seems like it may be just one guy. I don't see anything about this site that would particularly require an "organization".

zandjager 7 years ago | | |

"Seems like it may be just one guy." One cannot make this statement weaker. We don't know and we cannot know now whether it is just one guy.

bitcoinmoney 7 years ago | |

Did the Russian make money too??

jrobn 7 years ago | | |

In taxes maybe?

freeflight 7 years ago |

Why would a Russian individual host his, rather shady, operation in the smack dab middle of Germany, and not somewhere in eastern Europe?

Why would an individual like that, who goes through the effort of obfuscating Google analytics code, leave the domain registry information out in the open like that?

Imho none of this really adds up, the whole setup seems to be quite complex and sophisticated, I have a hard time believing that anybody who's as clever as that, would screw it all up over the domain registry information.

Illniyar 7 years ago | |

That's easy to answer, people are not as smart and/or professional as you think they should be. They can even do some smart things but be completely ignorant in others.

zandjager 7 years ago | |

Mules are a possible answer. I don't buy it either.

holtalanm 7 years ago |

the internet is full of these types of download sites.

meh.

dude really shouldn't have doxxed him though. we dont even know if the guy in the whois is really the guy behind the site, since you can put anything in there.

rukshn 7 years ago |

Whoever doing the slideplayer website is doing a damn good SEO.

I see more slideplayer links on my Google search everyday than I see SlideShare.

I always wondered why slideplayer which is a crappy ad galore website has more content than SlideShare. Very interesting post.

zhte415 7 years ago |

From the article

> an empire that makes a million dollar a year by illegally hosting 24.3 million files copied from other sites

That's quite an interesting stat: that 24.3 carrots can be thrown on the web, made hard to download, and a dollar can be earned.

intralizee 7 years ago |

The site is nice. I can search "psychology" view 400 pdfs. Click on one, view the pdf at the top of the browser and with the transcription below. All text of the transcription is google translated when using chrome. It makes me think about how it must be when obtaining financial freedom and just dumping money on viewing whatever you want to read. Except I haven't found a good translator for pdfs, so this transcription is nice on the site. Also most if not all of the Pdfs are not complete and makes me think this site is beneficial to the source publishers.

empath75 7 years ago |

YouTube was full of pirated content when it started too. I don’t really see what he’s doing wrong.

justin66 7 years ago | |

YouTube was full of pirated content when I looked at it this morning...

dangero 7 years ago |

I wonder if this article ended up improving search ranking and revenues for the creator. Another form of automated seo generation I see is youtube users that scrape images and 3rd party news articles then convert them into a video with a slide show and overlayed text to speech. Curious what their ad revenue looks like. I assume a bot does all the work and creates thousands of videos using that approach per day.

listic 7 years ago |

> His platform is full of PDF files that are copied from other sites and re-hosted. This is illegal

Isn't 'illegal' a bit strong term for that?

aaronmdjones 7 years ago | |

No. An action can be (civilly) illegal without being a crime (i.e. criminally illegal), but it's still illegal nonetheless.

aidenn0 7 years ago | | |

Also, in the US at least, commercial copyright infringement can be criminally illegal.

myro 7 years ago |

But wait, earning this money and storing on AdSense account is tricky and there's no such thing like buy bitcoin with adsense balance, right? To be able to withdraw that amount the owner is expected to provide tax information and so on..

zandjager 7 years ago | |

This is the real question. He could do it legitimately, as google doesn't really care where your income comes from. Hence the implication of google in this story as a party.

phkahler 7 years ago |

IANAL but it seem a good idea to put a copyright notice on all documents. One can hope a site like this doesn't scrape docs with copyright notices, but if they do it anyway wouldn't you have a better case to sue for damages.

7j 7 years ago |

The most annoying thing is traffic is comming from google.

Lately google search results are full of such low quality results, computer generated text, etc.

Same applies also to YT - videos with 2x speed, inverted colors etc.

vidyesh 7 years ago | |

>Same applies also to YT - videos with 2x speed, inverted colors etc.

What is this? Can you provide some links to these kind of videos. Thank you.

Sujan 7 years ago |

All the visitor data is based on faulty data - there is no connection between the numbers his sources report and reality. If you have your own modestly popular website, go check and see what those sites report for you. Those numbers are totally made up.

That of course also means, that the revenue estimate is absolute speculation.

Even better: The original question "where did these files come from?" is not even answered.

jabberthemutt 7 years ago |

Clickbait garbage: According to Alexa the site is ranked as the 209,334 most visited site in the world, and the 3,945 most popular site in The Netherlands.

JeanMarcS 7 years ago | |

I was asking myself if the intention is to state that it's one of the website nobody knows most visited one (in the list of website nobody knows) or just pure clickbait.

As the first possibility is impossible to nkow (if nobody knows about them...), I agree with you and vote clickbait !

radus 7 years ago | |

Yes, but the article makes clear that the content is spread across many different .TLDs (possible reasons for this are offered in the article) which combine for 100 million monthly page-views.

intea 7 years ago |

Mirror (March '18): https://web.archive.org/web/20180328023025/https://sijmen.ru...

woogiewonka 7 years ago |

Ready, set, go! Let's see how many scrapers HN readers will build now to try to copy this "business" model.

mgamache 7 years ago | |

There's more to it then scraping. I would love a deep dive on how he/she was able to get page rank for the sites. Usually these people employ black hat SEO that works for while, but eventually fails when Google updates their ranking algorithm. I always wondered if there are sites that could game the system indefinably. Exactly the kind of info you don't announce on black hat SEO forums.

jdhawk 7 years ago | | |

Change your UserAgent to one of Google Bots, and start hitting the pages hosting a PDF. Probably some hints there.

alanlamm 7 years ago |

The article does not provide evidence that the users are fake (may well be true, but presumption of innocence applies). If they are not fake, and reports of copyright violation to the platform are duly considered, then it would appear to comply with DMCA in much the same way as Youtube or Facebook do - am I wrong?

dumbfounder 7 years ago | |

If it walks like a duck, talks like a duck, and acts like a duck, then it's probably a duck. But you still need an ornithologist to put that duck in jail. Or something like that.

wyqydsyq 7 years ago |

> one of the world's most visited sites

> According to Alexa the site is ranked as the 209,334 most visited site in the world

Clickbait much? I think to be considered "one of the world's most visited" it should at least be in the top 1,000

sheeshkebab 7 years ago |

Is this some kind of political prep piece for passing legislation in Europe against google, internet archive, and other search engines indexing public content?

pjc50 7 years ago | |

No, it's a takedown of an ad farm site posing as a document hosting service.

zandjager 7 years ago | | |

So what are two essential differences from google?

samstave 7 years ago |

I love how we are kvetching about the legality of rehosting/profiteering/copyright etc and not a single concern for the cancer that ads truly are...

I understand the economic lubricant that ads provide to keep many things connected and operating, but its such a one way flow that ads are a syphon more that they are a grout.

cosmic_quanta 7 years ago |

This is a fascinating investigation!

rcdwealth 7 years ago |

The guy would do the same, but he cannot even dream of that income.

Report loaded with envy have no place on my list.

Let the Russian live.