devtrackers.gg
I've seen quite a few comments in this thread (and the last one) from people who are both confused as to what happened with this account and concerned that they might find themselves in a similar situation in the future. I'd like to hopefully ease some of those concerns by providing a timeline of what happened with the account and some limited details that will hopefully explain why I came to the conclusion that the account was not hijacked.
At the start of the month, we granted a password recovery for the account. This recovery contained very strong information, such as passwords, contact information and a good geo-location match with the account creation.
After reading OP's first post, I looked at the account and noticed that, on the day that OP first appeared on the account:
I then checked the user that we had returned the account to and found that they linked to other accounts that had a full IP match to the creation of this account. The decision was therefore made that OP wasn't the creator and the account was left with the user that we had granted it back to.
A week ago we received another password recovery, which was denied. This recovery was submitted from a proxy IP, was attempting to register OP's email on the account and had no matching account information.
Yesterday we received an appeal from the same IP address that we had granted the account to at the start of the month. This appeal again contained good information so we granted it.
The account has now traveled 5,000 miles back to OP's location.
So what happened with the account? My guess would be that OP was given it by a friend a while ago and that friend decided it would be funny to take the account back but has now been convinced not to keep it. As the account is no longer in the correct location, I have re-secured it for the creator to recover and have sent an inbox message advising that further abuse of our recovery system will result in the account being permanently banned. If the creator of the account wishes to continue sharing it with you then that should be done with this risk in mind.
It was never the intention of Mod Acorn or I to deliver a "JMod Smackdown" in your original post and I do apologise if it came across this way. It's very difficult to tell someone you don't believe them on Reddit without it coming across as a smackdown. I have historically gone out of my way to inbox players the result of an investigation, with the hopes of avoiding coming across this way.
So you've locked it again? Why didn't you just do that in the first place so OP or the accounts creator wouldn't have lost their bank?
Because the account creator was in control of the account
It's good that you've provided the information the decision is based off of this time, looks better than just a plain doubling-down.
but has now been convinced not to keep it
So before handing it over to OP, the friend recovered the account from themself? Why would they need to do that?
I'm still concerned that you might have just given the account back to a hacker, given OP's story from the first post seems more consistent with the given information than your guess (supposed-owner/hacker went to Uni with OP, so will have a close geolocation match, whereas OP moved to America. OP claimed they'd be in UK where the account was created from Sat to Tue, so the 5000 mile movements were already completely expected in advance)
Obviously only OP and/or the creator would know the answer as to why they recovered it again, rather than just registering OP's email back on the account. I can only speculate that it was an attempt to make it appear as though the OP was the one recovering the account from the original location.
The IP address for both this recovery and the first one that started this chain of events are identical and the OP is the last one to log into the account. If we had indeed given it to a hijacker, I'm not sure how the OP would have managed to regain access to the account.
So, for a second time, you're going to lock an account just for me to unlock it?
This is all really interesting though, thank you for being more transparent on what information you were given in the initial recovery appeal, because it sounds to me like my information was entirely compromised, more than I even thought. The hacker's geo-location or whatever, whether it's spoofed or not, he was not the account creator. Because that is me. This is not a case of an account seller then recovering the account.
A for the whole 5000 mile thing, I have been upfront with this the entire time. For all intents and purposes, I live in two different countries and travel back frequently. And I live for the most parts, in the US with my brother, who I pk with on occasion. After sending in the recovery appeal from the UK, and seeing in my email that it was successful, I immediately hit up my brother and told him to get on my account and let me know if the untradeables were dropped. We talked for an hour and I had him take a screenshot we could use to post for reddit. Why did I not just do this myself? The computer I trekked halfway across the world to get to, the very computer that I knew would prove I was the account creator, is obviously my father's fifteen year old windows xp piece of junk. I did not want to even go about installing runelite on that. None of this matters anyway. I'm not sure what you're trying to say. That me moving, or traveling is somehow indicative of something. Do you want some proof of me being who I am? If you're making accusations, I'll gladly bust out my laptop and log in to the account in the UK.
I am the account creator. I made that recovery appeal that was granted. You just locked it, for some reason (like you locked the other account). Now I am going to unlock it. Whatever. What I want to know is what happened to the wealth that was taken off the account? Did you punish the hacker who RWTed my bank? Or are you just busy locking people's accounts for them to unlock in some hilarious game
I followed all the wealth that left the account and none of it has been sold.
But don't you find it strange how according to your own words, the OP is not the original owner and that the original owner now ( or did ) have the account back. If it was in the hands of the owner in your eyes, why would wealth be moved? Because the recovery system is flawed or because there is something more going on?
Possibly because the original owner wanted the wealth but had no interest in keeping the account.
Sincere question, would a VPN explain certain drastic location changes or can you guys see through that? I have been curious of that since I started using one due to my work and new geographic location.
It could make it appear as though you have drastically changed locations but we wouldn't use that alone to conclude that you're not the account owner.