[ANN] [1080 | 1080TI] ETHlargement - The Hashrate Hardener - page 20.

dragonmike

hero member

Activity: 1274

Merit: 556

Quote from: kyovlodik on May 14, 2018, 09:53:07 AM

Quote from: OhGodAGirl on May 13, 2018, 08:59:31 PM

Wow, look, there are actually three addresses! Microsoft's tool is also causing a DNS request to be made to access go.microsoft.com! Wow! Totally hacked! Wow!

Wow! It's also contacting 192.168.56.153 which would create martian packets on the internet that would not get routed. Wow, totally can't be something internal to the analysis service, we are contacting the Russian mafia with silly tricks! Wow! Much hack! So scary!

Thanks for the condescending reply; sorry I analyzed your software before mindlessly running. Also, thanks for dodging my question regarding the callback to 2.21.242.213:80 and 2.21.242.237:80 -- it's clear I pinched a nerve with this one.

Much hostility, totally unfunny response! Hope you don't get any additional donations! Wow!

Be careful, or OHGODAHUSBAND might be unleashed in your general direction! Cheesy

Such husband. Many dangerous. Much wow!

kyovlodik

newbie

Activity: 3

Merit: 0

Quote from: OhGodAGirl on May 13, 2018, 08:59:31 PM

Wow, look, there are actually three addresses! Microsoft's tool is also causing a DNS request to be made to access go.microsoft.com! Wow! Totally hacked! Wow!

Wow! It's also contacting 192.168.56.153 which would create martian packets on the internet that would not get routed. Wow, totally can't be something internal to the analysis service, we are contacting the Russian mafia with silly tricks! Wow! Much hack! So scary!

Thanks for the condescending reply; sorry I analyzed your software before mindlessly running. Also, thanks for dodging my question regarding the callback to 2.21.242.213:80 and 2.21.242.237:80 -- it's clear I pinched a nerve with this one.

Much hostility, totally unfunny response! Hope you don't get any additional donations! Wow!

Kryptowolf512

full member

Activity: 420

Merit: 105

German Translator - Hire me on Bitcointalk!

https://www.virustotal.com/#/file/1261052e34b3205dc04f5dd9e4b76d2649dbcda738dc8e2665b07f56d659e716/detection

Why a community score of -24?

Kryptowolf512

full member

Activity: 420

Merit: 105

German Translator - Hire me on Bitcointalk!

Anyone tried it with following algorithms: Lyra2z, Lyra2v2, NeoScrypt, Xevan, X17, X16R, Keccak, Skein, PHI 1612, TimeTravel10?
Would like to know if there is any boost to this algos

Iamtutut

full member

Activity: 1120

Merit: 131

Quote from: OhGodAGirl on May 13, 2018, 08:59:31 PM

Wow! It's also contacting 192.168.56.153 which would create martian packets on the internet that would not get routed. Wow, totally can't be something internal to the analysis service, we are contacting the Russian mafia with silly tricks! Wow! Much hack! So scary!

Hello, are you working on the same kind of mods for AMD Vega ?

Bimmber

newbie

Activity: 210

Merit: 0

Quote from: OhGodAGirl on May 13, 2018, 08:51:12 PM

Quote from: Bimmber on May 10, 2018, 08:51:31 AM

Quote

unless you are trying to ask @OhGodAGirl out on a date

She is taken already, her BF is here on forum

Considering my husband is pretty clueless about what the hell this crypto thing is, that's a surprise to me!

W..... is already your husband? Tongue

OhGodAGirl

full member

Activity: 199

Merit: 108

Look, I'm really not that interesting. Promise.

Quote from: kyovlodik on May 11, 2018, 05:15:43 PM

Devs, can you please explain the following behavior after the binary is launched?

Quote

Callback: 2.21.242.213:80
watadminsvc.exe
svchost.exe

Callback: 2.21.242.237:80
watadminsvc.exe
svchost.exe

Callback: 46.226.136.5:53

Quote

POST /6b06490d-f9fd-424c-8b6d-83edc4369e89/
HTTP/1.1
Cache-Control: no-cache
Connection: Close
Pragma: no-cache
Content-Type: application/soap+xml
User-Agent: WSDAPI
Content-Length: 733
Host: 192.168.56.153:5357

Quote

POST /fwlink/?LinkId=151645
HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: WAT
ClientContent-Length: 2500
Host: go.microsoft.com

S\agt;\alt;GROUPPEERNAME\agt;258e2e9f3bd43a297f050566f5788283bd087a85.HomeGroupPeerGroupClassifier\alt;/GROUPPEERNAME\agt;\alt;GROUPFRIENDLYNAME\agt;HomeGroup\sPeer\sGroup\alt;/GROUPFRIENDLYNAME\agt;\alt;/PEERINVITATION\agt;\r\n\l/INVITATION>\lGUIDNAME>{2D866516-217B-4A95-B31D-A9174BBCBE17}\l/GUIDNAME>\lOWNER>HAPUBWS\l/OWNER>\lOWNERID>ffff80eb2050085c6f3dee2f51f0e12ca9592d9b.HomeGroupClassifier\l/OWNERID>\lOWNERMACHINENAME>HAPUBWS-PC\l/OWNERMACHINENAME>\lLASTCHANGED>131567727744841250\l/LASTCHANGED>\lHOMEGROUPSIZE>1\l/HOMEGROUPSIZE>\lADDRESS>[fe80::7007:58d0:7dee:d3e2%11]:3587\l/ADDRESS>\lDIGITALHASH>-----BEGIN\sCERTIFICATE-----\r\n8FkcvuaS5BO6pbSEzPjpH7hORXNBnZZo4tsk3BH8Qt/tNvqIaIXH13t6xb3bcucC\r\nmYXGg9f0t74N7HyeY3ARTfbtSvURq4HJ5RNpyIFJK0SrEfpllxNPOf40tV4hcrQe\r\nEBBn0RIsOiFKIBZb1YscyetmIDy9fbfQeemD02Hl2jRuPr6SmbHiajDkwAh38pSA\r\nk1XQjdcHQTHM438w0wNDNnuwI/JXEYirq0ZwblOnNPrfuc2JLFa7FJCIpc5jrHNN\r\n2dHa3EXhFpS/euOMwWSg+Jot+bXoGlaiSBwbMQrm8JD+UvcVpim2XG42rLztZLOF\r\nhsEzS1cGRUAJ7vqG8Q9lLA==\r\n-----END\sCERTIFICATE-----\r\n\l/DIGITALHASH>\l/HOMEGROUP_RECORD>

Sandbox analysis: https://www.hybrid-analysis.com/sample/1261052e34b3205dc04f5dd9e4b76d2649dbcda738dc8e2665b07f56d659e716/5ae113157ca3e11cac3236dc

You're literally looking at something that is 100% normal and functioning in Windows. You're basically asking us to explain how Windows functions on binary launch. GG.

This just in: OhGodACompany is responsible for all Windows updates.

EDIT:

Wow, look, there are actually three addresses! Microsoft's tool is also causing a DNS request to be made to access go.microsoft.com! Wow! Totally hacked! Wow!

Wow! It's also contacting 192.168.56.153 which would create martian packets on the internet that would not get routed. Wow, totally can't be something internal to the analysis service, we are contacting the Russian mafia with silly tricks! Wow! Much hack! So scary!

OhGodAGirl

full member

Activity: 199

Merit: 108

Look, I'm really not that interesting. Promise.

Quote from: xpulse on May 09, 2018, 11:26:27 AM

Quote from: kyovlodik on May 09, 2018, 10:59:06 AM

Quote from: 66mhz on May 08, 2018, 07:32:11 PM

Quote from: cryptoyes on May 08, 2018, 06:39:48 PM

I've read through the thread (though I admit not every bit of it) and I'm very surprised to see nobody has been concerned about whether this executable does any funky things like ever connect to the Internet at any point, read any files off disk, etc? Has anyone monitored it (long enough) for any of those things?

Looks nice, but all of a sudden someone anonymous just deciding to help everyone by providing a closed source executable should normally raise just a healthy dose of suspicion.

Multiple users have confirmed the process is accessing two IPs (2.21.242.213/2.21.242.237) over encrypted connection. Not sure why this is necessary.

Neither do I. The security concerns raised in this thread of using a seemingly random, closed-source binary which calls back to Akamai servers over an encrypted channel are legitimate. Until an explanation is provided by the developers for the usage of these two IPs, you can temporarily block your system(s) from reaching them by using the following:

Windows (as Administrator):

Code:

netsh advfirewall firewall add rule name="ETHlargement Callback" interface=any dir=out action=block remoteip=2.21.242.213
netsh advfirewall firewall add rule name="ETHlargement Callback" interface=any dir=out action=block remoteip=2.21.242.237

Linux (as root):

Code:

iptables -A OUTPUT -d 2.21.242.213 -j DROP
iptables -A OUTPUT -d 2.21.242.237 -j DROP

As far as I can tell, it has zero impact on the efficacy of the application nor the final hash rate.

Quote from: kyovlodik on May 09, 2018, 10:59:06 AM

Quote from: 66mhz on May 08, 2018, 07:32:11 PM

Quote from: cryptoyes on May 08, 2018, 06:39:48 PM

I've read through the thread (though I admit not every bit of it) and I'm very surprised to see nobody has been concerned about whether this executable does any funky things like ever connect to the Internet at any point, read any files off disk, etc? Has anyone monitored it (long enough) for any of those things?

Looks nice, but all of a sudden someone anonymous just deciding to help everyone by providing a closed source executable should normally raise just a healthy dose of suspicion.

Multiple users have confirmed the process is accessing two IPs (2.21.242.213/2.21.242.237) over encrypted connection. Not sure why this is necessary.

Neither do I. The security concerns raised in this thread of using a seemingly random, closed-source binary which calls back to Akamai servers over an encrypted channel are legitimate. Until an explanation is provided by the developers for the usage of these two IPs, you can temporarily block your system(s) from reaching them by using the following:

Windows (as Administrator):

Code:

netsh advfirewall firewall add rule name="ETHlargement Callback" interface=any dir=out action=block remoteip=2.21.242.213
netsh advfirewall firewall add rule name="ETHlargement Callback" interface=any dir=out action=block remoteip=2.21.242.237

Linux (as root):

Code:

iptables -A OUTPUT -d 2.21.242.213 -j DROP
iptables -A OUTPUT -d 2.21.242.237 -j DROP

As far as I can tell, it has zero impact on the efficacy of the application nor the final hash rate.

This will be useless if in code dev is using fdqn as target address, but anyway what kind of concerns might be with traffic? Yes, probably it is good to know what dev sending back to their servers, but I personally don’t care, as I have nothing saved on rigs, execpt OS and miners.

Cool, we have servers. Who knew? If you find their location, let me know, my spare one just slipped under the couch cushions.

If you want to know what those are accessing, go ask Microsoft. We didn't create watadminsvc.exe or svchost.exe. Or use the Linux version.

OhGodAGirl

full member

Activity: 199

Merit: 108

Look, I'm really not that interesting. Promise.

Quote from: Bimmber on May 10, 2018, 08:51:31 AM

Quote

unless you are trying to ask @OhGodAGirl out on a date

She is taken already, her BF is here on forum

Considering my husband is pretty clueless about what the hell this crypto thing is, that's a surprise to me!

kyovlodik

newbie

Activity: 3

Merit: 0

Devs, can you please explain the following behavior after the binary is launched?

Quote

Callback: 2.21.242.213:80
watadminsvc.exe
svchost.exe

Callback: 2.21.242.237:80
watadminsvc.exe
svchost.exe

Callback: 46.226.136.5:53

Quote

POST /6b06490d-f9fd-424c-8b6d-83edc4369e89/
HTTP/1.1
Cache-Control: no-cache
Connection: Close
Pragma: no-cache
Content-Type: application/soap+xml
User-Agent: WSDAPI
Content-Length: 733
Host: 192.168.56.153:5357

Quote

POST /fwlink/?LinkId=151645
HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: WAT
ClientContent-Length: 2500
Host: go.microsoft.com

S\agt;\alt;GROUPPEERNAME\agt;258e2e9f3bd43a297f050566f5788283bd087a85.HomeGroupPeerGroupClassifier\alt;/GROUPPEERNAME\agt;\alt;GROUPFRIENDLYNAME\agt;HomeGroup\sPeer\sGroup\alt;/GROUPFRIENDLYNAME\agt;\alt;/PEERINVITATION\agt;\r\n\l/INVITATION>\lGUIDNAME>{2D866516-217B-4A95-B31D-A9174BBCBE17}\l/GUIDNAME>\lOWNER>HAPUBWS\l/OWNER>\lOWNERID>ffff80eb2050085c6f3dee2f51f0e12ca9592d9b.HomeGroupClassifier\l/OWNERID>\lOWNERMACHINENAME>HAPUBWS-PC\l/OWNERMACHINENAME>\lLASTCHANGED>131567727744841250\l/LASTCHANGED>\lHOMEGROUPSIZE>1\l/HOMEGROUPSIZE>\lADDRESS>[fe80::7007:58d0:7dee:d3e2%11]:3587\l/ADDRESS>\lDIGITALHASH>-----BEGIN\sCERTIFICATE-----\r\n8FkcvuaS5BO6pbSEzPjpH7hORXNBnZZo4tsk3BH8Qt/tNvqIaIXH13t6xb3bcucC\r\nmYXGg9f0t74N7HyeY3ARTfbtSvURq4HJ5RNpyIFJK0SrEfpllxNPOf40tV4hcrQe\r\nEBBn0RIsOiFKIBZb1YscyetmIDy9fbfQeemD02Hl2jRuPr6SmbHiajDkwAh38pSA\r\nk1XQjdcHQTHM438w0wNDNnuwI/JXEYirq0ZwblOnNPrfuc2JLFa7FJCIpc5jrHNN\r\n2dHa3EXhFpS/euOMwWSg+Jot+bXoGlaiSBwbMQrm8JD+UvcVpim2XG42rLztZLOF\r\nhsEzS1cGRUAJ7vqG8Q9lLA==\r\n-----END\sCERTIFICATE-----\r\n\l/DIGITALHASH>\l/HOMEGROUP_RECORD>

Sandbox analysis: https://www.hybrid-analysis.com/sample/1261052e34b3205dc04f5dd9e4b76d2649dbcda738dc8e2665b07f56d659e716/5ae113157ca3e11cac3236dc

wharmus

newbie

Activity: 50

Merit: 0

thanks for the help , i hope its not fried.
i will try it tomorrow on my pc Sad

Walrusbonzo

hero member

Activity: 682

Merit: 500

Quote from: wharmus on May 11, 2018, 03:09:19 PM

Just a stupid question , can this cause hardware damage?
I had a rig 11 x 1080ti I was using this on , I had a power down , power back up after 5 min situation and now one of the cards doesnt work anymore.
It gives error 43 , this device has encountered problems ( in device manager ).
I was mining eth with the bill... im just asking I know it seems stupid.

Technically, it is possible as using this tool increases the hashrate, it does this by increasing memory bandwidth and lowering latency which in turn allows the GPU to operate more efficiently. This in turn increases ETH mining power consumption, maybe beyond the point the GFX card and/or system is stable.

It's possible that while your system was stable without, that it's unstable with.

Not saying you did, but it's the sort of tool to test with zero overclocking first.

So many factors, and although technically possible, I'd find it very very hard to actually blame the tool for killing any hardware.

xpulse

newbie

Activity: 141

Merit: 0

Quote from: wharmus on May 11, 2018, 03:40:11 PM

I tried , psu , riser , drivers , windows , even moved it on another rig.
the same error.

very strange. I have 0 issues with 25 1080TI in my rigs.

wharmus

newbie

Activity: 50

Merit: 0

I tried , psu , riser , drivers , windows , even moved it on another rig.
the same error.

Dr_Victor

sr. member

Activity: 954

Merit: 250

Quote from: wharmus on May 11, 2018, 03:09:19 PM

Just a stupid question , can this cause hardware damage?
I had a rig 11 x 1080ti I was using this on , I had a power down , power back up after 5 min situation and now one of the cards doesnt work anymore.
It gives error 43 , this device has encountered problems ( in device manager ).
I was mining eth with the bill... im just asking I know it seems stupid.

Reset the riser, and reinstall drivers.

wharmus

newbie

Activity: 50

Merit: 0

Just a stupid question , can this cause hardware damage?
I had a rig 11 x 1080ti I was using this on , I had a power down , power back up after 5 min situation and now one of the cards doesnt work anymore.
It gives error 43 , this device has encountered problems ( in device manager ).
I was mining eth with the bill... im just asking I know it seems stupid.

Walrusbonzo

hero member

Activity: 682

Merit: 500

Quote from: snd22 on May 10, 2018, 08:22:23 PM

hi, anybody has use it for GTX1080??

Seriously? Read the thread, loads have used it for GTX1080s Roll Eyes

OhYeesh

newbie

Activity: 1

Merit: 0

Quote from: OhGodAGirl on April 29, 2018, 12:51:18 PM

Sure, it would, but sometimes people do stuff just to be nice. SGMiner-GM was released with our optimized Ethereum kernel, and we didn't slap a devfee in that.

Not everyone in the world is out to fuck you over.

Thank you for restoring my faith in humanity. This boosted my only 1080 from 26MH/s to 37Mh/s with Max mem OC in MSI Afterburner. My Linux machines with more than 1 GPU have 1070s on them so this obviously doesn't apply.

Details for everyone with similar GPU:
Core Voltage: Default
Power limit: 60% (can be lower without affecting hash rate)
Temp (gets adjusted with Power limit): 67
Core: -100 (could be lower but I use the machine also while mining)
Mem: +1000
Fan: Auto (sits on 41% when temp is 60 deg C)

Like my voluntary donation to CHFAST for ethminer at Github... I made donations here too - the donation is not for the tool but for the gesture and the fact that it wasn't embedded as a dev fee. Thank you for making this an option rather than a dev fee that runs inside the application (which is just pure evil BTW and yes... there is a BIG difference between taking fee and accepting donations). I am looking at you Claymore and EWBF. Yeah... you know it.

snd22

newbie

Activity: 3

Merit: 0

hi, anybody has use it for GTX1080??
i already trying but it not works, and make my rig restarting every i click the pill.exe

i already trying with revA one by one, and still not work because freezing.

thewhitezebra

newbie

Activity: 1

Merit: 0

This works great!

I went ahead and created a forum username just thank you and tell you how appreciated work like this is. And btw, I definitely don't mind at all paying a dev fee for the next enlarger release if it works like the ethlargement. Keep up the amazing work!

Thanks again,

thewhitezebra

edit: currently working for 8x 1080ti, every brand has different oc limits, no need to oc core clock

Topic: [ANN] [1080 | 1080TI] ETHlargement - The Hashrate Hardener - page 20. (Read 59500 times)