All Discussions > Steam Forums > Help and Tips > Topic Details
NayaN Apr 27, 2018 @ 2:41am
All skins in my account just got traded away (steam authen active. De_mirage.zip)
Okay, so i was playing and all yesterday in the evening and then left to go study and come back today morning to see all my csgo skins (worth around 250$) all gone.
scared and worried i checked my profile. poof all gone.

checked the trade history and surprisingly the trade has been sent to some liya kakorina-1991
person yesterday.
Steam authenticator has been active in my phone through out. i did not recieve any notification about it. but somehow all gone.

past few days, steam client has been acting weird, closing itself and keeps saying my login has crashed and would not run the game at all.

i trace back to a memory when one of my old friends on steam asked me to join a server which downloaded a zip called de_mirage.zip .

as i have over 2800 hours on csgo i knew a map wont download any zips. so i scanned my computer immediatly and noticed that there was a .vbs file which is a script(which i suspected to be a trojan) and i removed it from my pc immediatly.

one mistake i did was not change the password because i can only change the password from steam client and that would make no difference since the steam client kept crashing.

i reset all steam guards a week ago since i rooted my phone and had to reinstall steam authenticator. which presumably adds a 7 day trade cooldown.

so today morning i just woke up and bam all the skins are gone as stated above with no clue of what happened.
everything's gone and steam support does not have a request thread to contact them about this.

how? now what do i do?
kindly help
< >
Showing 1-15 of 33 comments
J4MESOX4D Apr 27, 2018 @ 2:44am 
Once your PC is secure, change all passwords. No items lost this way are returned as per usual the Steam Item Restoration Policy. Don't download malware to your device and ensure your accounts and other devices are completely secure at all times.

https://steamcommunity.com/discussions/forum/9/882959527688934488/
Steam Item Restoration Policy
''Steam Support does not restore items that have left accounts for any reason, including trades, market transactions, deletions, or gifting''
#1
NayaN Apr 27, 2018 @ 2:48am 
how can it be my fault if i just joined a CSGO server and whats the point of steam guard if its not going to guard any of my items?

how can i prove it was all done behind my back and i had nothing to do with any of this.

i have a very secure pc with 2 separate antimalware and antivirus guards running parallel.

so i just have to loose so much money without doing anything and i just cant even reclaim anything?

whats the point of changing passwords anymore since my account is useless from now?
#2
NayaN Apr 27, 2018 @ 2:49am 
plus i cant change password anymore as well, client still crashes. from three different PCs
#3
J4MESOX4D Apr 27, 2018 @ 2:54am 
Originally posted by G0kU:
how can it be my fault if i just joined a CSGO server and whats the point of steam guard if its not going to guard any of my items?

how can i prove it was all done behind my back and i had nothing to do with any of this.

i have a very secure pc with 2 separate antimalware and antivirus guards running parallel.

so i just have to loose so much money without doing anything and i just cant even reclaim anything?

whats the point of changing passwords anymore since my account is useless from now?
You don't end up downloading phishing material by joining a CSGO server. Steam Guard only goes so far; it doesn't babysit against everything - users are still expected to apply common sense and use Steam safely. Looking at your name history, you already are a frequent user of scam sites and it's possible you logged into a fake client which was able to insta-log into a real one with the details you entered. That's one possibility but nobody here will be able to decipher how and where you used your Steam account.

You need to work out what went wrong and then learn from it. Somehow you were phished with tailored malware than rinsed your inventory and bypassed your active Steam Guard.
#4
NayaN Apr 27, 2018 @ 2:58am 
i can assure you, the zip was downloaded from a CSGO server cause i saw it in the bottom corner while the game loads and immediatly felt suspicious and the chat history is not stored on steam to show you the message as well. the guy immediatly blocked me on steam as soon as i said, its downloading a malware.

this is really disappointing.
yes i use cs.money to change my skins and have been doing it for over a year and had no issues. since recent 7-day holds i have restricted myself from it.

Steam guard is made to ensure this very thing doesn't happen and if someone can bypass the steam guard i don't understand the point of having one.
2-factor login authentication seems pointless at this point admittedly by all.

this whole thing is nuts.
#5
Black Blade Apr 27, 2018 @ 3:16am 
Originally posted by G0kU:
i can assure you, the zip was downloaded from a CSGO server cause i saw it in the bottom corner while the game loads and immediatly felt suspicious and the chat history is not stored on steam to show you the message as well. the guy immediatly blocked me on steam as soon as i said, its downloading a malware.

this is really disappointing.
yes i use cs.money to change my skins and have been doing it for over a year and had no issues. since recent 7-day holds i have restricted myself from it.

Steam guard is made to ensure this very thing doesn't happen and if someone can bypass the steam guard i don't understand the point of having one.
2-factor login authentication seems pointless at this point admittedly by all.

this whole thing is nuts.
When you say Steam Guard are you talking about the email one or the mobile one?

overall sounds like a real problem if they found a way to pass it
#6
NayaN Apr 27, 2018 @ 3:19am 
mobile steam guard
#7
NayaN Apr 27, 2018 @ 3:29am 
https://www.youtube.com/watch?v=qdeE2dGGnDU
#8
NayaN Apr 27, 2018 @ 3:51am 
please read it above,
thats exactly my question..

How? and why did i not get a "confirm" request on my steam authenticator app which would have warned me immediatly since im up studying at 5pm my time.

this is a new threat..
im sure this is gonna be a huge problem if not resolved on a larger scale.

my phone number my email are still linked to the account which ensures the mobile steam guard is fully functional but still someone bypassed all these and easily traded.

if someone thinks im just bluffing or trying to lie.
think about it, i have played over 4 years, have well over 2800 hours on csgo and i even run a community called ToXiCz for over 3 years.
i do not have secondary accounts and in what rightful mind will someone do this crap just to earn what? plus steam can track of records and profile login MAC ISPs locations..

disappointing
#9
Radene Apr 27, 2018 @ 3:52am 
Originally posted by Toast:
So here's the million dollar question: how was your mobile steam guard bypassed? To get past it, someone should need access to the device that it's installed on.

Or someone found a way to bypass it. No security software is perfect, after all. Either way, this is something Valve should look at - just in case.
#10
NayaN Apr 27, 2018 @ 3:58am 
i have a mobile phone. which i clearly said "i rooted a week" ago in the OP.
i mention about the vbs script detected in the OP.

anyway aside from an unncessaryargument. i lost 300$ gg, but i clearly dont remember anywhere putting my credentials in other than
1) Steam Client
2) Brower Steam site, (which i know of new scams where people have steamcommunily etc as fake steam websites and try to phish and no i am very careful and have gotten 2 people banned recently who had commented on my profile as well)
3) steam mobile authenticator

and no i did not connect my phone to PC after the script file was in my pc since the root was done days before this happened.
#11
NayaN Apr 27, 2018 @ 4:05am 
its safe to say, if someone can bypass the steam guard. Valve must have something to do with this.
but its agreeable . im affected nonetheless.

this effectively closes my life with steam anyway since im too old to be playing games anymore being a Asian.

hope this doesnt happen to another person the least.
#12
J4MESOX4D Apr 27, 2018 @ 4:09am 
Originally posted by G0kU:
its safe to say, if someone can bypass the steam guard. Valve must have something to do with this
Steam Guard cannot be bypassed unless a) your phone is infected and/or b) you sign into a fake client with an authenticator code which is captured by a bot and your details are then insta-logged into a real one. Two possibilities and both are the users responsibility.

Steam mobile guard when used correctly and safely is totally secure but the burden is on the user to keep it that way externally.
#13
Radene Apr 27, 2018 @ 4:13am 
Originally posted by J4MESOX4D:
Originally posted by G0kU:
its safe to say, if someone can bypass the steam guard. Valve must have something to do with this
Steam Guard cannot be bypassed unless a) your phone is infected and/or b) you sign into a fake client with an authenticator code which is captured by a bot and your details are then insta-logged into a real one. Two possibilities and both are the users responsibility.

Steam mobile guard when used correctly and safely is totally secure but the burden is on the user to keep it that way externally.

Nothing is "totally secure" because the rascals keep inventing new insecurity measures to counter the developed security measures.
#14
NayaN Apr 27, 2018 @ 4:26am 
thanks toast. for much help.

most helpful in closing the account than the topic itself
appreciate it.
sad.
#15
< >
Showing 1-15 of 33 comments
Per page: 1530 50

All Discussions > Steam Forums > Help and Tips > Topic Details
Date Posted: Apr 27, 2018 @ 2:41am
Posts: 33
Start a New Discussion

Discussions Rules and Guidelines