1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Steam Account Stolen, Again.

Discussion in 'Games' started by AphexDreamer, Oct 22, 2009.

  1. AphexDreamer

    AphexDreamer

    Joined:
    Jun 17, 2007
    Messages:
    7,134 (2.66/day)
    Thanks Received:
    917
    Location:
    C:\Program Files (x86)\Aphexdreamer\
    I can't believe how frequent and common this seems to be (at least for me). I have another steam account thats been hijacked once before and now a totally different one has been hijacked as well. I was able to get it back before and aim to get it again its just frustrating to see the frequency of this, one was one two many to start with.

    I mean how is this done? I'm not looking for a tutorial here just an explanation. I never give my account info to anyone, not even friends. So is it Keyloggers, malware, hackers, what?

    I'm going to run some scans to see if I have some Trojans or something. :shadedshu
     
  2. Laurijan

    Laurijan

    Joined:
    Feb 10, 2007
    Messages:
    2,251 (0.80/day)
    Thanks Received:
    352
    Location:
    Oulu, Finland
    I would install Avast Antivirus, Spybot S&D and SuperAntiSpyware and scan with all of them... ahh and get a decent firewall like ZoneAlarm or something...
     
    DaedalusHelios says thanks.
  3. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.04/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    Routers are a hardware firewall, so that helps if you don't have one.
     
  4. Kursah

    Kursah

    Joined:
    Oct 15, 2006
    Messages:
    7,863 (2.68/day)
    Thanks Received:
    1,708
    Location:
    Missoula, MT, USA
    I run Avast, Spybot and Malwarebytes, but I have run the OS's built in firewall and the router's firewall for years, and my steam account (the same since 6/2007) has never been hijacked. There's a trend in habit of allowing something in that hijacks ya man, not saying you're completely wrong, but you do open up a predictable hole somewhere, so maybe an improved firewall wouldn't hurt. I actually don't personally know anyone beyond this forum that's had their steam account hijacked. Anything you can think of recently that was even slightly doubtable? I hope you get it back, if you have been successful once, you'll do it again, too bad you have to go through it again though...I wish the best of luck for as painless (as possible) recovery as possible...I'd be uber pissed in your situation. Hopefully you can find out the route they got to hijacking your account to prevent it from happening again.

    :toast:
     
  5. AphexDreamer

    AphexDreamer

    Joined:
    Jun 17, 2007
    Messages:
    7,134 (2.66/day)
    Thanks Received:
    917
    Location:
    C:\Program Files (x86)\Aphexdreamer\
    I feel confident with Malware and I do have a router. If it happens a third time (Which I know I shouldn't let...) I will take some serious actions. I'll just have to go with bad luck for now.

    Malware's Quick Scan has come up with nothing so far, I guess I'll do full tonight.
     
  6. Wile E

    Wile E Power User

    Joined:
    Oct 1, 2006
    Messages:
    24,324 (8.26/day)
    Thanks Received:
    3,778
    Do you have any siblings/friends/cousins/etc that use your Steam account? Maybe somebody else gave away your details.
     
  7. AphexDreamer

    AphexDreamer

    Joined:
    Jun 17, 2007
    Messages:
    7,134 (2.66/day)
    Thanks Received:
    917
    Location:
    C:\Program Files (x86)\Aphexdreamer\
    Nope, thats why I'm really trying to figure this out. I'm scared to, never felt this way. My password for steam is what I use for pretty much everything. If they got to that they can get my email, my bank, my everything. Shame on me for using only one but I'm forgetful.

    I'll just do what I did last time, change my steam pass and email. Waiting for Steam Support to get to me.
     
  8. Apocolypse007

    Apocolypse007 New Member

    Joined:
    Apr 12, 2006
    Messages:
    615 (0.20/day)
    Thanks Received:
    76
    Location:
    New Sewickley, PA
    i wouldnt do anything important on that computer until you are sure that you dont have a keylogger sending info back to someone. The last thing you need is someone getting into your bank account.
     
  9. Solaris17

    Solaris17 Creator Solaris Utility DVD

    Joined:
    Aug 16, 2005
    Messages:
    17,263 (5.14/day)
    Thanks Received:
    3,600
    Location:
    Florida
    change your passwords and remember use good ones....caps lowers and numbers.
     
  10. AphexDreamer

    AphexDreamer

    Joined:
    Jun 17, 2007
    Messages:
    7,134 (2.66/day)
    Thanks Received:
    917
    Location:
    C:\Program Files (x86)\Aphexdreamer\
    Ok got it. Didn't plan on doing any such things.

    Its amazing really, how they could even know where to apply the password upon obtaining it. I guess it gives a lists of programs too.

    I think I'll be fine. I just really needed to rant and raise the awareness for other steam users. You never know it could be you next.

    With its popularity there should be a "Hijacked Steam Account..." button below the "Retrieve a Lost Account..." button.
     
  11. Marineborn

    Marineborn New Member

    Joined:
    Jan 17, 2009
    Messages:
    2,144 (1.02/day)
    Thanks Received:
    312
    try to make rediculous passwords, random words letters symbolds numbers up and lowercase and a good idea is to keep a peice of paper somewhere safe that has your passwords on it, But not your computer in case your forget, i have a diffrent password for every website im subcribed too, and i forget them sometimes thats why i have that paper, my paswords are no less then 19 Characters a peice
     
  12. <<Onafets>>

    <<Onafets>>

    Joined:
    Nov 8, 2008
    Messages:
    779 (0.36/day)
    Thanks Received:
    77
    Location:
    Sydney, Australia
    Prolly shouldn't of said that you use the same pass for things...if there really was a keylogger or trojan...they woulda got that.
     
  13. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.04/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    LOL thats what I was thinking but I figured he knows to change the passwords for everything on a known safe computer.
     
  14. Jaffakeik

    Jaffakeik

    Joined:
    Dec 6, 2008
    Messages:
    2,601 (1.21/day)
    Thanks Received:
    190
    Location:
    Northampton,UK
    I using one password too,for everything and my accounts have never been hacked or stolen,I dont even use antiviruses or spybots ect,have only windows firewall and router for years now,and had no problems with viruses or something like that.
     
  15. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.04/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    No antivirus programs? Thats like sharing needles. :(
     
  16. AphexDreamer

    AphexDreamer

    Joined:
    Jun 17, 2007
    Messages:
    7,134 (2.66/day)
    Thanks Received:
    917
    Location:
    C:\Program Files (x86)\Aphexdreamer\
    I can't find anything on my PC. Thats why I'm so confused as to how my account got jacked.
     
  17. Marineborn

    Marineborn New Member

    Joined:
    Jan 17, 2009
    Messages:
    2,144 (1.02/day)
    Thanks Received:
    312
    well, this is the thing, you got a secret question, thats allow a password reset without email notification, and if they can do research on your and your community account they can sometimes figure that out, other than that, lucky guess, shit
     
  18. DaedalusHelios

    DaedalusHelios

    Joined:
    Feb 21, 2008
    Messages:
    4,965 (2.04/day)
    Thanks Received:
    826
    Location:
    Greensboro, NC, USA
    I have come across apps that fake wifi hotspots and monitor all network traffic. Also your basic wireless router can get hacked with simple apps in the vicinity.

    Just a few ideas.
     
  19. AphexDreamer

    AphexDreamer

    Joined:
    Jun 17, 2007
    Messages:
    7,134 (2.66/day)
    Thanks Received:
    917
    Location:
    C:\Program Files (x86)\Aphexdreamer\
    Yeah all likely but not sure if they fit my case. Don't use any other internet but my own and I thought WEP Encryption was tough enough, guess not?

    Anyways I'm going to sleep now. Hope to get Email by Steam Tomorrow.

    I was just thinking. I've been leaving my PC on to fold lately and maybes thats a contributing factor. Like I said, I'll get some better protection if shit like this continues to persist.

    Good Night.
     
  20. R-T-B

    R-T-B

    Joined:
    Aug 20, 2007
    Messages:
    530 (0.20/day)
    Thanks Received:
    110
    Sorry to say it man, but if you don't have WPA or higher, you might as well not be bothering implementing wireless encryption at all.
     
  21. Paintface

    Paintface New Member

    Joined:
    Jul 3, 2008
    Messages:
    389 (0.17/day)
    Thanks Received:
    73
    install a fresh OS, only way you can be sure about having no mallware on your computer.

    The way its stolen these days is not by keyloggers, thats so 2003. But rather through "stealers", they are specificly programmed to read the clientbob.reg or whatever its called file in your steam folder, which has the login info stored in encrypted form, this encryption has been broken and spread in open source code for a little while now. Which means any kid can attach that code to an open source stealer which will bypass your firewall, and upload it to a php script or use ftp/email, after that the stealer unloads itself which means it doesnt leave any traces behind.
    Very often these are undetected to ANY anti virus, as these things are open source, meaning any kid , and anyone with some coding knowledge even more can keep these undetected on the fly.

    So my advice to you , no AV or firewall will stop good malware, since good malware is undetected and bypasses firewalls.
    Which means as i said above only a format and fresh OS install will make sure nothing is left behind.

    These stealers are binded into all kinds of stuff, warez like downloaded programs , keygens , cheats, mappacks..... the most innocent sounding stuff that has nothing to do with games or steam, cause these stealers are downloaded by the thousands of not more daily , not only stealing steam info but also IE/firefox logins , IM program logins.... name it.

    Best thing to prevent this from happening again is to stick with the basic drivers/programs other ppl use , downloaded by the millions , programs distributed by big companies. Im not telling you to be paranoid about every executable, but ask yourself if a mappack really has to be a self extracting archive , or if they couldnt have just put it in a simple rar file?

    Also you can verify the email addy in you steam account settings now , which means after verifying it no one can change the email or password unless they have access to your actual email account. Since you have same password for everything , i advice you to use 4 or so layers of passwords

    1. bank account/ work related logins
    2. Email / instant messanger
    3. gaming / steam etc
    4. forum logins
    5. random crap password for everything else

    i hope this is of any help
     
  22. Mussels

    Mussels Moderprator Staff Member

    Joined:
    Oct 6, 2004
    Messages:
    42,379 (11.55/day)
    Thanks Received:
    9,683
    its not malware, spyware, or viruses.

    its fake links sent via steam chat - theres an exploit they can use which steals your login details with just clicking the link.


    Other than that, people like sending you to fake steam pages - they LOOK like steam websites, but they arent and they ask you to login...


    its all social networking/scamming, no software you install can make a user smarter, to avoid them.
     
  23. Wile E

    Wile E Power User

    Joined:
    Oct 1, 2006
    Messages:
    24,324 (8.26/day)
    Thanks Received:
    3,778
    I don't use them 24/7 either. I only run one every once in a while to do an on demand scan. I use no real time protection, and haven't had an infectin in I don't know how long. Then again, I'm not delving into the dark reaches of the web either.
     
  24. Mussels

    Mussels Moderprator Staff Member

    Joined:
    Oct 6, 2004
    Messages:
    42,379 (11.55/day)
    Thanks Received:
    9,683
    i turn mine off all the time.
    i just turn it back on when web browsing or downloading.

    but thats not what this topic is about :)
     
  25. lemonadesoda

    lemonadesoda

    Joined:
    Aug 30, 2006
    Messages:
    6,260 (2.10/day)
    Thanks Received:
    967
    LESSON
    Never, never, never use the same password for bank accounts as you do for other online stuff :slap:
     

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Share This Page