Scammer: | steamname: Silly | steam3ID: [U:1:64568951] | steamID32: STEAM_0:1:32284475 | steamID64: <a class="postlink" href="http://steamcommunity.com/profiles/76561198024834679" onclick="window.open(this.href);return false;">http://steamcommunity.com/profiles/76561198024834679</a> | customURL: | steamrep: <a class="postlink" href="http://steamrep.com/profiles/76561198024834679" onclick="window.open(this.href);return false;">http://steamrep.com/profiles/76561198024834679</a> Victim: | steamname: |LZ| Tom Reeves | steam3ID: [U:1:123284053] | steamID32: STEAM_0:1:61642026 | steamID64: <a class="postlink" href="http://steamcommunity.com/profiles/76561198083549781" onclick="window.open(this.href);return false;">http://steamcommunity.com/profiles/76561198083549781</a> | customURL: <a class="postlink" href="http://steamcommunity.com/id/TomReeves" onclick="window.open(this.href);return false;">http://steamcommunity.com/id/TomReeves</a> | steamrep: <a class="postlink" href="http://steamrep.com/profiles/76561198083549781" onclick="window.open(this.href);return false;">http://steamrep.com/profiles/76561198083549781</a> Description: Here we have another malware scam. <a class="postlink" href="http://i.imgur.com/BVutbK6.png" onclick="window.open(this.href);return false;">http://i.imgur.com/BVutbK6.png</a> Instead of sending a link to an image, he sent a malware download link that pops up right after klicking it. Even if you cancel the download some data could be saved in the temp folder. Cheers NuMe
Always when/if you test links like that you should do it with Sandboxie or then in a VirtualBox. There's a high chance that the account in question is also just a victim and that steam support is already working on it. Either way sadly phishers don't get tagged anymore however the guy could at least be banned from our servers.