引用自 MrUnclean：

Steam points missing

Hello,

Recently I bought 2 bundles of games around 60 euros and when I completed the transactions it mentioned that I also gained some points for the purchases but I didn't pay it any attention to them. Today when I went to check the steam points shop I only had 111 points when I am pretty sure I should have had more considering I didn't get anything new. Anyone knows what's up?

You can always check your points summary pages.

引用自 cSg|mc-Hotsauce：

引用自 MrUnclean：

Steam points missing

Hello,

Recently I bought 2 bundles of games around 60 euros and when I completed the transactions it mentioned that I also gained some points for the purchases but I didn't pay it any attention to them. Today when I went to check the steam points shop I only had 111 points when I am pretty sure I should have had more considering I didn't get anything new. Anyone knows what's up?

You can always check your points summary pages.

:nkCool:

Didn't even know that existed so thanks. I got around 6k points for the purchases I made but the thing is on 31st of october they all got wasted as profile awards on a random steam profile I don't even know. The user hasn't even finished setting up their profile yet.

引用自 MrUnclean：

引用自 cSg|mc-Hotsauce：

You can always check your points summary pages.

Didn't even know that existed so thanks. I got around 6k points for the purchases I made but the thing is on 31st of october they all got wasted as profile awards on a random steam profile I don't even know. The user hasn't even finished setting up their profile yet.

Secure your account. All steps...

Scan for malware. https://www.malwarebytes.com/ or with whatever.

Deauthorize all devices https://psteamproxy.yuanyoumao.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://psteamproxy.yuanyoumao.com/twofactor/manage

Revoke the api key (this should be empty) https://psteamcommunity.yuanyoumao.com/dev/apikey

The 3rd step should revoke any awards recently given.

引用自 cSg|mc-Hotsauce：

The 3rd step should revoke any awards recently given.

:nkCool:

Only if it was performed through password reset, not through change password

引用自 Ettanin：

引用自 cSg|mc-Hotsauce：

The 3rd step should revoke any awards recently given.

Only if it was performed through password reset, not through change password

Mine were, every time I have changed it.

引用自 cSg|mc-Hotsauce：

引用自 MrUnclean：

Didn't even know that existed so thanks. I got around 6k points for the purchases I made but the thing is on 31st of october they all got wasted as profile awards on a random steam profile I don't even know. The user hasn't even finished setting up their profile yet.

Secure your account. All steps...

Scan for malware. https://www.malwarebytes.com/ or with whatever.

Deauthorize all devices https://psteamproxy.yuanyoumao.com/twofactor/manage

Change your password on a secure device.

Generate new back up codes. https://psteamproxy.yuanyoumao.com/twofactor/manage

Revoke the api key (this should be empty) https://psteamcommunity.yuanyoumao.com/dev/apikey

The 3rd step should revoke any awards recently given.

:nkCool:

Welp did everything except the api key since there wasn't one in the first place. Anti virus and anti malware scans didn't show any threats. Points also got reset although to be fair I didn't really care about them considering my account was probably compromised. Guess im gonna go on a wild goose chase to see how this could have happened in the first place. Thanks for the help <3

引用自 MrUnclean：

Guess im gonna go on a wild goose chase to see how this could have happened in the first place.

• Have you been asked to vote for a team/tournament/pixel art?
  
• Have you been asked to register for a tournament?
  
• Have you used any third-party site for gambling, trading or matchmaking?
  
• Have you logged in on a public device?
  
• Have you entered any giveaways/giveaway groups?
  
• Have you tried to claim any "free 50$ gift cards"?
  
• Have you been contacted by someone (through chat or Discord) about an issue with your account?
  
• Have you been "accidentally reported"?
  
• Have you been invited to a "playtest"?
  
• Does someone else use your PC or your account?
  
• Do you use any browser extensions (like Steam Inventory Helper or CSFloat Market Checker)?

引用自 Lilim：

引用自 MrUnclean：

Guess im gonna go on a wild goose chase to see how this could have happened in the first place.

• Have you been asked to vote for a team/tournament/pixel art?
  
• Have you been asked to register for a tournament?
  
• Have you used any third-party site for gambling, trading or matchmaking?
  
• Have you logged in on a public device?
  
• Have you entered any giveaways/giveaway groups?
  
• Have you tried to claim any "free 50$ gift cards"?
  
• Have you been contacted by someone (through chat or Discord) about an issue with your account?
  
• Have you been "accidentally reported"?
  
• Have you been invited to a "playtest"?
  
• Does someone else use your PC or your account?
  
• Do you use any browser extensions (like Steam Inventory Helper or CSFloat Market Checker)?

I myself no that's why it was so confusing to me. The only 2 things I can think of is 1) I generally haven't messed with steam logins in a long time since it would always auto login except a few days ago when I had to log in steam chat from mobile although I doubt that is related since I only entered the credentials to valve's app.


2) which is probably what happened is my brother tried to install something unrelated to steam which was a virus of some sorts but based on him and windows defender history it got blocked right away. However, the common thing happened where his profile on socials messaged all his contacts with some nonsense and a scam link. I don't even know if these 2 are related but the timing would be way too coincidental if they aren't. The thing though is there wasn't a cookie or a saved password in any of the 2 browsers we use so not entirely sure if that virus/malware could actually gain access to the account that way. No one gained access by manually typing the credentials either cause then 2 factor authenticator would notify me.