Quote from: sourman on February 17, 2012, 01:51 pmLet's see.. where to start? If they actually manage to get a CIPAV on your machine, I doubt it would be possible to find it without either analyzing the OS offline or sniffing network traffic on the wire for any unauthorized connections. IIRC, CIPAV is just a really good rootkit deployed by federal law enforcement's version of an exploit kit. Your best bet is not to get infected in the first place. If you run SR from within a virtual machine or sandbox while using the latest version of TBB with all scripting disabled and a solid, non-US made security software suite with HIPS capabilities running and set NOT to automatically trust digitally signed/popular executables, I doubt they would have an easy way in. To really minimize the risks, just boot the OS into RAM on a roaming laptop without a hard drive and don't use an internet connection tied to you. Even if they get a CIPAV to install, they won't be able to verify anything but the IP of, say, the open wifi you're using. As soon as you turn off the computer, everything saved to RAM is gone. Unless they have some super duper secret method of embedding complex trojans in your CMOS, the CIPAV won't automatically come back. If CIPAV (or a similar trojan) has keylogging abilities that can hide from all known HIPS and "anti-logger" type software, then you have another problem on your hands: they may not be able to track you down, but they can steal some of your login info and any files you had sitting around instead. This is even worse, which is why everyone should change very sensitive passwords literally as often as possible. Two factor authentication, anyone?This is why I think the Silk Road should allow you to use OTP or one time passwords. Like you get with using a bank online. A little calculator like widget that allows you to have a different password every single time you access the site. That way LEO impersonating sellers or buyers is impractical.