pastebin - collaborative debugging

pastebin is a collaborative debugging tool allowing you to share and modify code snippets while chatting on IRC, IM or a message board.

This site is developed to XHTML and CSS2 W3C standards. If you see this paragraph, your browser does not support those standards and you need to upgrade. Visit WaSP for a variety of options.

n3tBin / Home / Archive

Copyright © 2007-2011, n3t-t3z Team

Posted by Tor Logs Activit on July Thu 24th 6:22 PM - Never Expires
download | new post

  1. Tor Logs Activity but Noone Seems to Care
  2.  
  3.  
  4.  Wipe out these following paths-files out on a regular basis
  5. before and after using Tor,
  6.  
  7. \\Tor Browser\\FirefoxPortable\\App\\Firefox\\|removed-files"
  8. \\Tor Browser\\FirefoxPortable\\App\\Firefox\\|updater.exe"
  9. \\Tor Browser\\FirefoxPortable\\App\\Firefox\\|updater.ini"
  10. \\Tor Browser\\FirefoxPortable\\App\\Firefox\\|update-settings.ini"
  11. \\Tor Browser\\FirefoxPortable\\App\\Firefox\\searchplugins\\|*.*"
  12. \\Tor Browser\\FirefoxPortable\\Data\\profile\\chromeappsstore.sqlite"
  13. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|cookies.sqlite"
  14. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|cookies.sqlite-shm"
  15. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|cookies.sqlite-wal"
  16. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|formhistory.sqlite"
  17. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|mozilla-media-cache\\|*.*"
  18. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|places.sqlite-shm"
  19. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|places.sqlite"
  20. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|places.sqlite-wal"
  21. \\Tor Browser\\FirefoxPortable\\Data\\profile\\bookmarkbackups\\|*.*"
  22. \\Tor Browser\\FirefoxPortable\\Data\\profile\\|signons.sqlite"
  23. \\Tor Browser\\FirefoxPortable\\Data\\profile\\startupCache\\|*.*"
  24.  
  25.  
  26. HERE IS ONE OF THE BLEACH LOGS I�VE SAVED!
  27.  
  28. CLEANING COMPLETE - (24.790 secs)
  29. --------------------------------------------------
  30. 18.1MB removed.
  31. Secure file deletion enabled - Gutmann (35 passes)
  32. --------------------------------------------------
  33.  
  34. Details of files deleted
  35. --------------------------------------------------
  36. IE Temporary Internet Files (2 files) 5.02MB
  37. C:\Documents and Settings\Owner\Local Settings\History\History.IE5\index.dat 16.00KB
  38. C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\????????.default\formhistory.dat 231 bytes
  39. C:\Documents and Settings\Owner\Recent\Desktop.ini 150 bytes
  40. C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\index.dat 16.00KB
  41. C:\Documents and Settings\Owner\Local Settings\Temp\History\History.IE5\desktop.ini 145 bytes
  42. C:\Documents and Settings\Owner\Local Settings\Temp\History\History.IE5\index.dat 16.00KB
  43. C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\0N0N8WJW\desktop.ini 67 bytes
  44. C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\AWBOPSUS\desktop.ini 67 bytes
  45. C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\desktop.ini 67 bytes
  46. C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\DCLCVC6R\desktop.ini 67 bytes
  47. C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat 16.00KB
  48. C:\Documents and Settings\Owner\Local Settings\Temp\Temporary Internet Files\Content.IE5\SYEUN7FZ\desktop.ini 67 bytes
  49. C:\Documents and Settings\Owner\Local Settings\Application Data\Mozilla\Firefox\Profiles\????????.default\XPC.mfl 5.13KB
  50. C:\Documents and Settings\Owner\Cookies\index.dat 16.00KB
  51. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\AEU3LWKW\desktop.ini 67 bytes
  52. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\desktop.ini 67 bytes
  53. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat 16.00KB
  54. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K1DTPJAP\desktop.ini 67 bytes
  55. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\L813DZKE\desktop.ini 67 bytes
  56. C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\MIKM0AVL\desktop.ini 67 bytes
  57. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\cookies.sqlite 0.50MB
  58. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\formhistory.sqlite 0.19MB
  59. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\places.sqlite 10.0MB
  60. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\bookmarkbackups\bookmarks-2014-07-24.json 3.06KB
  61. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\signons.sqlite 0.31MB
  62. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\startupCache\startupCache.4.little 1.87MB
  63. C:\Documents and Settings\Owner\Desktop\TOR\Tor Browser\FirefoxPortable\Data\profile\chromeappsstore.sqlite 96.00KB
  64. C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\????????.default\history.dat 378 bytes
  65. --------------------------------------------------
  66.  
  67.  
  68. Regarding the blackout of  \Firefox\Profiles\????????.default\
  69.  
  70. ????????.default = eight unique numbers that identify each firefox user
  71.  
  72. This is just standard Mozilla Firefox, btw. Not Tor.
  73.  
  74.  
  75. THE TOR CACHE LOGS THAT WERE BLEACHED ARE SEPERATED BELOW!
  76.  
  77. � cookies.sqlite---------------0.50MB
  78. � formhistory.sqlite-----------0.19MB
  79. � places.sqlite----------------10.0MB
  80. � bookmarks-2014-07-24.json----3.06KB
  81. � signons.sqlite---------------0.31MB
  82. � startupCache.4.little--------1.87MB
  83. � chromeappsstore.sqlite-------96.00KB
  84.  
  85.  The point being that Tor Browser still collects history logs and
  86. cookies just like any other web browser. Here is a link to a report
  87. about the dangers of cookie-cache logging,
  88.  
  89. http://news.cnet.com/8301-1009_3-57606178-83/nsa-tracks-google-ads-to-find-tor-users/
  90.  
  91.  �The NSA then cookies that ad, so that every time you go to a
  92. site, the cookie identifies you. Even though your IP address
  93. changed [because of Tor], the cookies gave you away.�
  94.  
  95.  In the NSA document titled �tor stinks� analysists admit one major
  96. way to identify a targeted Tor connection is by tracking the cookies
  97. (and evercookie.sol - which is an Adobe Flashplayer zombie cookie.)
  98.  
  99. �Use cookies to identify Tor users when they are not using Tor.�
  100.  
  101. �Investigate Evercookie persistence.�
  102.  
  103. http://cryptome.org/2013/10/nsa-tor-stinks.pdf
  104.  
  105.  
  106.  My conclusion: most zero-day exploits against Tor still rely on
  107. rather simple exploitation of third-party marketed cache , unless
  108. that is to say those Black Hat hackers found a BACKDOOR implanted
  109. by an insider, or they discovered undercover agencies hosting a
  110. machine-infecting relay. Never-the-less, forward secrecy and offline
  111. storage is still the best way to remain anonymous.

Submit a correction or amendment below. (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.
Syntax Highlighting:
To highlight particular lines, prefix each line with @@
Pressing TAB inserts 3 spaces