/r/ - Mass CP Spam and the Admins Who Facilitate It

Name
Email_Lkp#☮+\|h$%Hg⚄`\9QSJ{y2>ND?(Rz5tZGcb[X⚃⚓r04j!⚪^}.=,⛡1ws)7M'
Subject
Comment
Captcha
File	Draw
Embed
Password	(For file deletion.)

Mass CP Spam and the Admins Who Facilitate It Yasuo Iwakura 09/29/25 (Mon) 02:07:21 No.56

I've been on imageboards since 2009. Since then, I've seen a disturbing, consistent, and reoccurring phenomenon which involves board admins and CP distributors. CP spam has been a constant in imageboard history, but it's usually regarded as a natural consequence of running a public board with very little screening ability. That's what I thought when I first came across it on 4chan. I don't believe that anymore, at least not for most boards.

So, getting to the meat of it: most board admins and jannies actively facilitate the CP spam they get. They aren't just complacent, they are actually financially involved with the people posting it.

>board owners are in a conspiracy to get their own boards shut down

No for the board shutdown part, yes for the conspiracy part. I first saw this on /b/ back in 2010, where there was regular CP spam all revolving around the same ring of websites. The spam would be posted at exactly 2AM eastern time, and it wouldn't be removed until at least 8 hours later. Sometimes users would be courteous enough to let the CP threads drift down the pages until it was deleted, but most of the time they would end up getting bumped back to the first page over and over again.

4chan never shut down because of this kind of thing. In fact, very few imageboards have ever shut down because of CP. Obviously the ones made exclusively for it get yanked, but repeated and even hardcore CP spam on imageboards that are supposedly meant for other topics stays under the radar. I truly believed this was an unavoidable problem that the jannies were too slow to prevent all the time, but I didn't think much of it other than to bitch until the shit was removed. The thing is, the jannies were deliberately not doing their jobs.

The post that changed my mind on all of this was on 8chan's /b/ shortly after the site went up. The thread included IRC logs from people who were supposedly 4chan mods talking to another user about accepting payment for delaying action against CP spam. I would have disregarded this, but it actually included Bitcoin transaction hashes that showed the transfers on the same dates shown in the chatlogs. It implicated staff from several imageboards, including 4chan and 420chan, as well as several 8chan BOs. A lot of saged posters came out of the woodwork to call the post fake and gay. It gave off the stench of a cointelpro style campaign against it. Knowing 8chan's audience, none of them bothered calling it a "conspiracy theory" but you can bet your ass they wanted to use that thought stopper.

I'm not saying that boards are being paid off by feds to host CP. In fact, I actually believe this is purely private and nongovernmental. These CP websites are businesses after all, just really fucked up evil ones, usually run by southeast asians. The best explanation I can offer for WHY they're using imageboards is that they are used to dealing with spam and know how to play it off and avoid responsibility. The imageboards aren't reliable distribution networks, but they ARE resilient hubs for discovering the sites that actually host the paid CP and groups. And when one of the CP sites is taken down, the new one can be posted on an imageboard that won't be taken down. It's very similar to how a command and control server works for malware.

The patterns here are extremely common, and I've started to recognize the rings of sites that are posted on compromised imageboards. I will offer a caveat that the site owner usually isn't complicit with this or being paid off, but at least one of the jannies is actively receiving money from CP site operators through cryptocurrency and allowing the site to be used as a sort of CP C&C server or discovery hub. With enough sites as C&C, these sites have reliable redistribution methods when their sites are taken down, sites that cannot be held legally liable for the CP spam and links.

If you are a board or site owner, please audit your jannies and interrogate them about the CP spam. If you're seeing regular CP spam all of a sudden and jannies are too slow, there's a very high chance that one or more of them are compromised.

To the jannies and staff who let this happen and accept money from these fucked up people: you WILL burn in hell and you are culpable for the ruined childhoods and rapes of thousands of children. You will face judgement.

f0ur0ne!admin 09/29/25 (Mon) 04:51:53 No.57

File: 1759121513343.jpeg ( 33.97 KB , 736x987 , lainz.jpeg ) ImgOps

>>56
this is actually very interesting and ive expressed similar thoughts to many people over the past year or so

i even briefly touched on this in a post on lainchan from early this year:
https://www.lainchan.org/r/res/42499.html#q43903

to summarize my post:
>one thing i think is always strange about the anti-cloudflare and similar discourse is that, the 2 biggest technological methods to stop imageboards from going to soykaf are:
> - Web Application Firewalls
> - captchas

> its odd to me that imageboard users often have strong feelings against technologies that specifically address issues that most often kill smaller/new chans (bots posting spam/CP, DDoS attacks, exploiting underlying infra)

> if i were a more paranoid individual, i might go so far as to say that type of discourse may even be manufactured and propagated intentionally to shrink the availability of actively maintained imageboards

to add -

during the summer this year there was a user who was posting CP on arisuchan, because of the way our captcha and other technical things work, its pretty unlikely that a bot can create post on this website

i was surprised this was a real human doing this so i ended up fingerprinting that user and wrote an IP leaking exploit for his browser, the exploits payload was set to be injected into their browser based on its fingerprint when visiting the site and i found out a few things about them:

- they were on a residential ISP in Samara Oblast, Russia (ISP was Pjsc Vimpelcom / beeline.ru)
- their computer was configured for the languages Russian, English, and Polish (in that order)
- they came here from a very weird forum
- they specifically used open web proxies (not VPN's) to hide their IP

the forum in question had a thread that was just a list of websites that allowed anonymous posting on (which included us). anything from an imageboard to a personal blog that allowed comments was listed, there were hundreds of sites in the list. from what i could tell, it was some coordinated effort for their forum users to go to all of the sites in that list and post CP on them. the forum itself seemed to be CP focused but wasnt actually hosting that content. the term you used "command and control" makes a LOT of sense to me in this context. i honestly may have even thought of that same phrase when i saw what was going on there.

there are evil forces in the world. i dont think its a coincidence that imageboards and generally many other niche parts of the internet are shrinking in volume/disappearing (in part due to CP and the affect it has on admin/moderation overheard). as to what you said about admins/jannies getting paid to allow this - i wouldnt doubt it. the team here is extremely small and we all know eachother very personally and for many years, but i appreciate your warning and bringing this to light - you are not the only person that has noticed this

Shogo Yahagi 01/17/26 (Sat) 07:09:39 No.116

>The post that changed my mind on all of this was on 8chan's /b/ shortly after the site went up. The thread included IRC logs from people who were supposedly 4chan mods talking to another user about accepting payment for delaying action against CP spam.

i know it has been months, but can someone share the chat logs op's talking about? if it is real it is damning

Batou 01/18/26 (Sun) 10:01:36 No.118

>>57
Archive the forum page if it's still up.
>>116
Seconding this. There were a lot of conspiracy theories about 8chan board owners.

f0ur0ne!admin 01/18/26 (Sun) 10:09:32 No.119

>>118
>Archive the forum page if it's still up.
i dont remember the full URL anymore, my WAF rules still contain a setting i added to block inlinks from their site but i used the root domain instead of the forums URL to block them (the forum was on a subdomain)
<the root domain was "xobor.de"

f0ur0ne!admin 01/18/26 (Sun) 10:20:55 No.120

>>118
>>119
found it
proceed at your own risk:
http:// avtodinozavr (dot) xobor (dot) de

they likely have hidden pages somewhere on there, the public posts dont have a link to our site, its guaranteed there is one somewhere on their site because of the traffic we got from there (which is why i can pretty much guarantee there are hidden pages with more things going on there)

one of the only public posts on that site DOES have exactly the type of list i was talking about though

Batou 01/18/26 (Sun) 11:00:54 No.121

>>119
>>120
Thanks, I'll look at it later.

Max Cohen 01/18/26 (Sun) 14:21:18 No.122

>>119
>>120
The only post I can find with links was already archived.
https://archive.is/6Z0so

f0ur0ne!admin 01/18/26 (Sun) 14:51:58 No.123

File: 1768747918714.txt ( 24.32 KB , arisu_cp_logs.txt )

>>122
at the time this specific one was happening here (June-July 2025) there were more posts publicly available on that site
<see attached server logs (first block is nginx access.log, second block is from the ip leaking exploit i wrote for that user)
>the access.log format is:


        log_format custom_format '$remote_addr - $remote_user [$time_local] '
                '"$request" $status $body_bytes_sent '
                '"$http_referer" "$http_user_agent" '
                '"$http_x_forwarded_for" "$http_cf_connecting_ip" '
                '"Headers: $http_host $http_accept $http_accept_language $http_cf_ipcountry"';

tyt4real 01/20/26 (Tue) 08:13:16 No.124

>>56
Those "people" need to be mechanically castrated with dull scissors.

Re-L Mayer 01/21/26 (Wed) 11:10:58 No.125

saw a mod post this on lainchan
>>It's a reach to say the CSAM is done by feds
>I mean… We have gotten requests, from feds, to share IP addresses for "those who clicked it" – and when I say "we" I'm not admitting to anything here.

Zero Cool 01/31/26 (Sat) 07:55:11 No.146

File: 1769846111083.png ( 449.9 KB , 1424x815 , 1766885004638.png ) ImgOps

>>56
OP is probably wrong. Here's some more accurate information:
https://trashchan.xyz/meta/thread/374.html

Basically it's commerical spammers.

Ivan Johnson 02/01/26 (Sun) 08:26:03 No.147

Solution: have a designated *chan for central processors on the darknet so nobody has to advertise this shit on the clearnet
Banned text? Can't mention a certain former imageboard?

Naomi Armitage 02/01/26 (Sun) 18:20:12 No.148

>>147
>have a designated *chan for central processors on the darknet
>assuming there aren't hundreds of thone already
also they're scammers anon, they're gonna do whatever gets them money

Rachael 02/02/26 (Mon) 10:36:12 No.149

>>147
>>148
There's probably more money in blackmailing people who accidentally went to the CP site through a link shortener or downloaded it for "free" with an account than actually selling it.

Re-L Mayer 02/04/26 (Wed) 19:07:42 No.151

>>149
I can see that kind of thing happening but isn't there more efficient ways ?