All Discussions > Steam Forums > Help and Tips > Topic Details
The Ever Brilliant Gold Face May 7, 2017 @ 3:10am
100's of repeated log in attempts despite multiple password changes.
Ive recieved and continue to recieve log on attempts generating out of the Ukraine. Ive changed my password multiple times on my computer, phone and even my work computer (it has its own vpn and network) to no avail. The emails are verified as well through google so these are legitmate attempts and they all say they are using correct log information.

Steam Guard is blocking access to my account thank god but all my scans came up clean for malware on my primary machine. Either ive been completely owned by this dude as he knows all my password changes or Steam has been comprimised in a big way? Additionally, am i safe with steam guard in the way until i hear from Valve?
Last edited by The Ever Brilliant Gold Face; Jul 12, 2017 @ 11:57pm
< >
Showing 1-11 of 11 comments
Tito Shivan May 7, 2017 @ 3:18am 
Just because malware scans turn clean it doesn't mean it's nothing there.

For starters I'd make any future password changes on a different computer. You might want to consider moving from the mail 2FA to the mobile app one. That way your auth codes would always be on a different device.
#1
The Ever Brilliant Gold Face May 7, 2017 @ 3:20am 
Originally posted by Tito Shivan:
Just because malware scans turn clean it doesn't mean it's nothing there.

For starters I'd make any future password changes on a different computer. You might want to consider moving from the mail 2FA to the mobile app one. That way your auth codes would always be on a different device.
I do have the mobile app authentication set up. The last three changes to my password were done on my personal phone then my work laptop on different networks as well. Im at a loss of what to do til I hear back from Valve.
#2
mimizukari May 7, 2017 @ 3:21am 
Originally posted by Jet Fuel Can't Melt Dank Memes:
Originally posted by Tito Shivan:
Just because malware scans turn clean it doesn't mean it's nothing there.

For starters I'd make any future password changes on a different computer. You might want to consider moving from the mail 2FA to the mobile app one. That way your auth codes would always be on a different device.
I do have the mobile app authentication set up. The last three changes to my password were done on my personal phone then my work laptop on different networks as well. Im at a loss of what to do til I hear back from Valve.
Your entire wifi connection could be over a honeypot, is it secure? do you monitor the connections and disallow any unauthorized/suspicious connections? also phones aren't free of viruses either. a lot rarer, sure, but nowhere near free of them.
Last edited by mimizukari; May 7, 2017 @ 3:22am
#3
The Ever Brilliant Gold Face May 7, 2017 @ 3:24am 
Originally posted by Shiki Ryougi:
Originally posted by Jet Fuel Can't Melt Dank Memes:
I do have the mobile app authentication set up. The last three changes to my password were done on my personal phone then my work laptop on different networks as well. Im at a loss of what to do til I hear back from Valve.
Your entire wifi connection could be over a honeypot, is it secure? do you monitor the connections and disallow any unauthorized/suspicious connections? also phones aren't free of viruses either. a lot rarer, sure, but nowhere near free of them.
Ive done changes completely removed from my wifi and my work laptop has a vpn'd connection to a private network and im atill seeing these issues. Ive monitored traffic on my router as well and see nothing unusual.
#4
punk Jul 2, 2017 @ 4:28am 
Interested to hear if there is any update here. I've received a couple attempts over the past day. Changed my steam password using my phone over cell network and had another attempt. I have two factor auth on my account and my email account with no unknown activity on my email account.

Both times they had the right ID and password but no access to my auth codes. PC is clean, it's scanned regularly...
#5
Takaki Tōno Jul 2, 2017 @ 4:34am 
me too :steamsalty:
#6
The Ever Brilliant Gold Face Jul 12, 2017 @ 11:57pm 
@ punk, it did stop after a day. Steam support apprently looked at the attempts and found no reason to believe my account was comprimised. I think they were somehow spoofing the emails and the attempts may be a lot less aggresive then they seem.
#7
Muppet among Puppets Jul 13, 2017 @ 12:52am 
Originally posted by punk:
Interested to hear if there is any update here. I've received a couple attempts over the past day. Changed my steam password using my phone over cell network and had another attempt. I have two factor auth on my account and my email account with no unknown activity on my email account.

Both times they had the right ID and password but no access to my auth codes. PC is clean, it's scanned regularly...
If you use auth, i guess if you saw log in attempts they were shown by email?
Thats a fake email then. Because you use auth. No email involved.

And for op, if you use email for log in, change email in steam to see fake emails still get received by the old email.
#8
closB Jul 13, 2017 @ 12:55am 
:)
#9
Smokie-Coyote Jul 13, 2017 @ 1:11am 
Stealers and RATs are FUD for a while. FUD means FULL UNDETECTED. You will need to use multiple resources to truely remove them from your system OP. A Anti-Virus can't get rid of something it doesn't know of after all!

This is intended for people landing on this thread from searching to learn as well.
Last edited by Smokie-Coyote; Jul 13, 2017 @ 1:12am
#10
Muppet among Puppets Jul 13, 2017 @ 1:17am 
Originally posted by Smokie-Coyote:
Stealers and RATs are FUD for a while. FUD means FULL UNDETECTED. You will need to use multiple resources to truely remove them from your system OP. A Anti-Virus can't get rid of something it doesn't know of after all!

This is intended for people landing on this thread from searching to learn as well.
What tells you its an infection?
You dont even know if the email they got was real.

Do you think hijackers remote access a computer and as soon as they get the password for steam, they try like brainless all day to log in while they lack a code? Ringing all bells that there is a rat on the computer?
#11
< >
Showing 1-11 of 11 comments
Per page: 1530 50

All Discussions > Steam Forums > Help and Tips > Topic Details
Date Posted: May 7, 2017 @ 3:10am
Posts: 11
Start a New Discussion

Discussions Rules and Guidelines