Unam Sanctam

With an obfuscator (if you disable "Shellcode Loader") or crypter (if you leave "Shellcode Loader" enabled), but never upload it to VirusTotal since then in the future the detections will...

Just create both an Ethash and RandomX miner in the builder, and input those pool addresses into the "Pool" field and input the wallet addresses (BTC:YourWallet.Worker) into the "Wallet Address"...

Yes they will all connect to the pool and work, you can start it on as many computers as you want without issue.

Try logging the requests (your log there doesn't show the POST data), add `file_put_contents('request.log', file_get_contents('php://input'), FILE_APPEND);` into line 4 inside endpoint.php. Also could be that it's inside the panel but...

The panel checks both POST and GET requests, that's not what that line is for. Now all requests will be written out into the `/api/request.log` file, check for the request...

The line you have added (line 4) will cause all requests to the web panel to be written out into the request.log file inside the api folder, post your request.log...

Just got home and have downloaded it, you can remove the replies.

Following that wiki page will fully remove the miner, if you also had the rootkit then run https://github.com/UnamSanctam/SilentCryptoMiner/raw/master/SilentCryptoMiner/Resources/rootkit-u.zip.

1. You just need to first find the conhost.exe with the short random string after it and kill that one. Then find the injected miner processes (by default explorer.exe but...

Technically yes, but you'd still have to kill the watchdog and the miners yourself since the hidden key for them will be different in the new version.