Nope, you cannot find out who did it nor can you get it back.

Account security is ALWAYS the users responsiblity, just like with bank accounts and most every other service contract.

You've been phished and should secure your account because you've given your details away. That's how someone got access. Read the official Valve posts on here about securing your account.

The way this normally happens is you either clicked on some malicious link in game chat, or you visited one of those dodgy steam inventory websites for gambling or trading.

So all you can do is this - secure your account, clean your computer, change your passwrods afterwards, and then learn how to not click on dodgy links or visit dodgy sites in future.

Originally posted by crunchyfrog:

Nope, you cannot find out who did it nor can you get it back.

Account security is ALWAYS the users responsiblity, just like with bank accounts and most every other service contract.

You've been phished and should secure your account because you've given your details away. That's how someone got access. Read the official Valve posts on here about securing your account.

The way this normally happens is you either clicked on some malicious link in game chat, or you visited one of those dodgy steam inventory websites for gambling or trading.

So all you can do is this - secure your account, clean your computer, change your passwrods afterwards, and then learn how to not click on dodgy links or visit dodgy sites in future.

What do you in-game chat? like link from friends? I have never visit dodgy steam sites. This is what also is scary, steam support have said the same things, but i have never done any of this, so i don't know how they have gotten access. Could you help me, where can i find the Valve post? and what do you mean by cleaning my computer? system restore?

Thank you

It is 100% that someone else is on your account, can't happen otherwise.

Follow all these instructions, otherwise you can't be sure that no one is still on your account:

1. Scan for malware https://www.malwarebytes.com/
2. Check that the email and phone number on the Steam account are still yours.
3. Deauthorize all other devices https://store.steampowered.com/twofactor/manage
4. Change passwords from a trusted/clean device.
5. Generate new backup codes for your Mobile App https://store.steampowered.com/twofactor/manage
6. Revoke the API key https://steamcommunity.com/dev/apikey (there should be nothing in the APIKEY)

There are only 3 ways for others to get into your account:

1. You either got infected and had malware steal your active session, which means steam thinks it is your own doing. (Or you logged in on another infected machine)

2. You entered your login + Steam Guard code somewhere you were not supposed to. (Scanning the QR code to login does the same)

3. Someone else has/had physical access to your devices. (Or you forgot to logout after being in an internet café etc.)

You can't deny all 3 of these, it's impossible to get into your account otherwise.

Stolen wallet or items that way will not be refunded, as it is the users responsibility to make sure their accounts are safe.

Follow what Dan says above to the letter. And ONLY change your passwords after you've done thiss all correctly. Never before.

And you absolutely DID give your account details away as stated. The thing to rmember is that these scammers are good at this. They nknow how to set these things up so you clcikc on it and simply won't remember. It's MEANT to look innocuous.

That's why I said don't concern yourself with how it happened - accept you DID.

Concentrate on learning what not to do in future so you can spot it. Personally I never click on ANY Links even if a friend. That's a start.

I will do the steps, thank you guys for all the help 🫡