Jump to content
Search In
  • More options...
Find results that contain...
Find results in...
Buy OSRS Gold

Sell OSRS Gold
Sign in to follow this  
milkmanlucas

The fuck just happened?

Recommended Posts

3 of my bots were training at rock crabs with full rune/whip. Then all of a sudden they're all logged out at the same time and it says that all 3 were already logged in and for me to wait for 60 seconds.

 

I log into the first one, and it's standing at the edgeville tele/death with just cape, leather boots and gloves, and ring of life on. So i'm like that's weird.. must have died or something? Go to my bank, and everything is gone (didn't have much). So I check the other 2 accounts, and same thing. Everything is gone except for leather boots, gloves, cape, and ring of life.

 

What the fack just happened? I don't really care about the whip/rune and shit, little scared someone got access to my account? And how did they kick my bot out?

Share this post


Link to post
Share on other sites

Sounds like you are ratted to me.

You musts have DLed a malicious program or gotten tricked by a phising website or something (the fact that it happened to THREE accounts makes me believe it's a RAT though)

 

You should go to a clean/safe computer and change all of your important passwords for anything you use.

 

IDEAL thing to do, would be to backup important files and reformat you computer, or you could just runs cans with Avast, Microsoft Security Essentials, MalWareBytes, etc (yes use MULTIPLE scanners) but only way to 100% ensure safety is a reformat.

 

As for kicking out, they could have you IP via the RAT (or other methods) and used a botter to kick you offline, then hack you.

 

If you wish, you can tell us what script you used and we can check it, but all info in the account manager is kept safe and secure and encrypted, so there's little to no chance that this was done by a script.

Share this post


Link to post
Share on other sites

Sounds like you are ratted to me.

You musts have DLed a malicious program or gotten tricked by a phising website or something (the fact that it happened to THREE accounts makes me believe it's a RAT though)

 

You should go to a clean/safe computer and change all of your important passwords for anything you use.

 

IDEAL thing to do, would be to backup important files and reformat you computer, or you could just runs cans with Avast, Microsoft Security Essentials, MalWareBytes, etc (yes use MULTIPLE scanners) but only way to 100% ensure safety is a reformat.

 

As for kicking out, they could have you IP via the RAT (or other methods) and used a botter to kick you offline, then hack you.

 

If you wish, you can tell us what script you used and we can check it, but all info in the account manager is kept safe and secure and encrypted, so there's little to no chance that this was done by a script.

 

Thanks for letting me know. I haven't really downloaded anything on that computer. I just Teamview my main desktop through my Macbook.

 

I was using Runite Waterbirth Rockcrabs.

Share this post


Link to post
Share on other sites

Thanks for letting me know. I haven't really downloaded anything on that computer. I just Teamview my main desktop through my Macbook.

 

I was using Runite Waterbirth Rockcrabs.

Quite curious, no clue how it happened really, someone would need to investigate your computer to find the true cause, but from what you've describe it sounds like a pretty nasty bug :s.

 

Change all PWs on a for sure safe computer, and reformat the one that's bugged to prevent it from happening again, otherwise the hacker could just wait a while and hit you again when he pleases :/.

 

It for sure was not the script, script has a usercount of over 500 people, and no similar cases have been reported.

Share this post


Link to post
Share on other sites

Quite curious, no clue how it happened really, someone would need to investigate your computer to find the true cause, but from what you've describe it sounds like a pretty nasty bug :s.

 

Change all PWs on a for sure safe computer, and reformat the one that's bugged to prevent it from happening again, otherwise the hacker could just wait a while and hit you again when he pleases :/.

 

It for sure was not the script, script has a usercount of over 500 people, and no similar cases have been reported.

Thanks I appreciate it. Do you suggest me reformatting my Macbook as well? Or just the computer I use to bot?

Share this post


Link to post
Share on other sites

I ran Avast, Malwarebyte, other scanners and nothing found..

 

Idk that was random as shit, because i had a total of about 9 bots, and only the 3 that were at water birth rock crabs were fucked with. Tbh I really thought it was Jagex who decided to wipe the bank lol. But shit, now I don't know if I should reformat or not.

Share this post


Link to post
Share on other sites

Sounds like you are ratted to me.

You musts have DLed a malicious program or gotten tricked by a phising website or something (the fact that it happened to THREE accounts makes me believe it's a RAT though)

 

You should go to a clean/safe computer and change all of your important passwords for anything you use.

 

IDEAL thing to do, would be to backup important files and reformat you computer, or you could just runs cans with Avast, Microsoft Security Essentials, MalWareBytes, etc (yes use MULTIPLE scanners) but only way to 100% ensure safety is a reformat.

 

As for kicking out, they could have you IP via the RAT (or other methods) and used a botter to kick you offline, then hack you.

 

If you wish, you can tell us what script you used and we can check it, but all info in the account manager is kept safe and secure and encrypted, so there's little to no chance that this was done by a script.

 

I've had a RAT and Malware Bytes works very well as it tricks the virus as a different program. I use it once a week to scan my computer, been doing it for years. Very free and reliable and you can run the free version or get a 14 day trial of the full protection.

 

1 more thing, if the virus does tected mbam you can rename the shortcut to something else and that's how you get around that :)

 

Heres a link:

https://www.malwarebytes.org/

Edited by FlyingAK47

Share this post


Link to post
Share on other sites

I've had a RAT and Malware Bytes works very well as it tricks the virus as a different program. I use it once a week to scan my computer, been doing it for years. Very free and reliable and you can run the free version or get a 14 day trial of the full protection.

 

1 more thing, if the virus does tected mbam you can rename the shortcut to something else and that's how you get around that :)

 

Heres a link:

https://www.malwarebytes.org/

 

Did that already, and it came up with nothing. Could that possibly mean that maybe it wasn't a RAT and that maybe my computer wasn't infected at all? I don't understand why the hacker would go only for the 3 bots running water birth rock crabs, and not all other 6 bots using a different script.

Share this post


Link to post
Share on other sites

I've had this happen to me twice, went to my bot after it running for 8hrs overnight and it was logged out, logged in and stood in lumby with nothing. Went too the bank, they had taken 'all but one' of my stacks of items then all of my wealthier items. Left my firecape and shit though, as I say. Happened to me twice WHILST botting. I will also add that the second time it happened, I reformatted my computer beforehand and all I had downloaded was TriBot and other BASIC programs that are essentials. I've played RS for 5 years+ and I'm not that stupid to download a keylogger or enter a phishing website.

Share this post


Link to post
Share on other sites

Update on this:

Logged on today and the 5 bots were banned (not sure if a nuke ban was made today) and the other 2 accounts that I had finished botting on a few days ago and haven't logged on, had done the same thing. Both with just the whip and scim taken out of the account and that's it.

Funny thing is, the only account that isn't linked to any botting whatsoever, my mule which I store all my wealth in and only log in through my browser, hasn't been touched.

Just seems a bit weird every one of my bots have been hacked except my mule that I don't use to bot?

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

  • Our picks

    • Hi everyone,

      I'd like to thank everyone for their patience in this transition period. Since last week, we've worked out the remaining bugs with this integration.

      Some users have still been having issues with connecting their forums account to their Auth0 account. To resolve this, we've imported all forums accounts into Auth0.

      Unfortunately, the accounts which were imported today were using an unsupported password hashing algorithm. Hence, random passwords were set during the import.

      What does this mean for me?

      If you've previously linked your forums account to your Auth0 account, you don't have to do anything. Nothing changes for you.


      If you haven't logged in via our new login yet,

      Try logging in with your forums email address and the last password you used


      If you are unable to login, please use the "Forgot password" tool on the login page:
      Follow the instructions to reset your password
       
      • 2 replies
    • Hello everyone,

      Last week we tried to roll out Auth0 Login, but we lost that battle. Now it's time to win the war!

      Important changes

      When logging into the client, you'll now have to enter your Auth0 account credentials instead of your forums credentials

      Note: 2FA is still handled through your forums account (for the time being)



      Changes for existing users

      You'll have to link your Auth0 account to your forums account here: https://tribot.org/forums/settings/login/?service=11


      Auth0 accounts have been created for most existing users. Please use your forums email address and password to login.



      Important notes

      Make sure to verify your email address upon creating a new Auth0 account


      When we mention your Auth0 account, we mean your account used for auth.tribot.org as displayed below
      • 71 replies
    • To better support the upcoming changes (TRiBot X, new repository), we're switching our login handler to Auth0. Instead of logging in with the standard form, you'll now be required to login through our Auth0 application.

      All existing accounts which have been used within approximately the past year have been imported into Auth0 using the same email and password combination which has been stored on the forums.

      What does this mean for users?

      Your account credentials are now even more securely stored


      You'll be able to login via Facebook, Google, and others in the future


      Is there anything users have to do differently now?

      Existing users: You'll have to login with the standard login, open your Account Settings, then link your Auth0 account


      New users: You'll be redirected to our Auth0 app (auth.tribot.org) where you'll be able to create an account


      Why was this change made?

      The new apps we are creating (such as the new repository) aren't able to use the forums to handle user logins


      To centralize all user accounts in one area


      To ensure that the client login doesn't go down when the forums are having problems


      To speed up our development


      Other considerations

      There's no documentation or official support for using Invision Community combined with Auth0, so there are still a few kinks we're working out


      We're in the works of creating an account management panel specifically for Auth0 accounts (ETA August)


      It's not possible to change email addresses for the time being (this will be resolved this August)


      Changing passwords is a weird process for the time being. To change your password, you'll have to use the "Don't remember your password" tool on the Auth0 login page
      • 11 replies
    • Over the past month, we've been working hard on TRiBot's new repository - a much needed update. This change has been deemed necessary for TRiBot X, and will allow us to really speed up development of all aspects of TRiBot.

      Today we are going to share what we've been working on!


      Now you must be wondering what kind of features the new repository will have.... well, you'll have to be patient for a little while longer. We're still figuring out various technical aspects so we can't provide answers to all possible questions. We're also focusing on development rather than writing about it so that everyone can get access to our latest developments at lightning speed. I will however answer a few users' questions.

      We're planning on a release of this early to mid August, giving users some goodies before TRiBot X's release.

      Thank you all for being patient. I hope everyone is excited as much as I am!
        • Like
      • 17 replies
    • Over the past few months, I’ve been working diligently on a new project - TRiBot X. Everything has been written from the ground up, with all of the best practices of software engineering. Every aspect of TRiBot has been re-imagined to support three main goals: flexibility, useability, and reliability.
      • 50 replies
  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...