- Jun 30, 2014
- 273
One line summary:
BE WARNED: SteamGuard.exe is NOT from Valve or Steam! Real Steam login doesn't ask you to download something to finish login!
I got a message from a user, saying they want to trade an item. Here's the message:
[unassigned]: Hi dude, my friend wanna trade his DC Hook and keys for some of your items, but he has some error if u interested to trade, add him : =» fake://stemmcommunity.com/id/TheRedPro «=
Though that might look like real link and the user had made a typo, here's the screenshot:
They even used same top bar.
When I tried to log in, this popped up and downloaded SteamGuard.exe:
No matter what you type, same popup will appear.
Here, I typed "MalwareTips" on username and "aaaaaaaaaaa" on password, which doesn't exist, and it still gives same screen.
BE WARNED: SteamGuard.exe is NOT from Valve or Steam!
I can't stress this enough:
Real Steam login doesn't ask you to download something to finish login!
I warned you: It's fake! You should NEVER try to go to link from stranger!
Although Steam URL Filter failed to catch this one, I almost got phished and WOW64 error saved me.
If it was successfully run, my lovely account will be gone forever and my items will be gone too.
Here's a link to its description: http://lmgtfy.com/?q=SteamGuard.exe
If you want, here's the link to the malicious file:
����://mega.co.nz/#!Rg52kaIS!pgFEk8DmZMYnClEQwfQMtqP8jnJdiZoeP5PAvFDdGaM
It will say Valve Corporation made it, but look:
"steamcmd (buildbot_steam-rel-win32-builder_steam_rel_client_win32@steam-rel-win32-builder)"!
You smell something fishy here, right?
Even it says "Steam Client Bootstrapper" and "Copyright(C) 2010 Valve Corporation".
It's fake. Real one should not say anything like that!
BE WARNED: SteamGuard.exe is NOT from Valve or Steam! Real Steam login doesn't ask you to download something to finish login!
I got a message from a user, saying they want to trade an item. Here's the message:
[unassigned]: Hi dude, my friend wanna trade his DC Hook and keys for some of your items, but he has some error if u interested to trade, add him : =» fake://stemmcommunity.com/id/TheRedPro «=
Though that might look like real link and the user had made a typo, here's the screenshot:
They even used same top bar.
When I tried to log in, this popped up and downloaded SteamGuard.exe:
No matter what you type, same popup will appear.
Here, I typed "MalwareTips" on username and "aaaaaaaaaaa" on password, which doesn't exist, and it still gives same screen.
BE WARNED: SteamGuard.exe is NOT from Valve or Steam!
I can't stress this enough:
Real Steam login doesn't ask you to download something to finish login!
I warned you: It's fake! You should NEVER try to go to link from stranger!
Although Steam URL Filter failed to catch this one, I almost got phished and WOW64 error saved me.
If it was successfully run, my lovely account will be gone forever and my items will be gone too.
Here's a link to its description: http://lmgtfy.com/?q=SteamGuard.exe
If you want, here's the link to the malicious file:
����://mega.co.nz/#!Rg52kaIS!pgFEk8DmZMYnClEQwfQMtqP8jnJdiZoeP5PAvFDdGaM
It will say Valve Corporation made it, but look:
"steamcmd (buildbot_steam-rel-win32-builder_steam_rel_client_win32@steam-rel-win32-builder)"!
You smell something fishy here, right?
Even it says "Steam Client Bootstrapper" and "Copyright(C) 2010 Valve Corporation".
It's fake. Real one should not say anything like that!
Last edited by a moderator:
