Need help with intruder

[Deekith]

Hi everybody, So I have a issue.. I got a email from Microsoft on the 18th stating that my password was changed and it came from my IP address, well I didn't do anything at all. I need a recommendation for a good program that can keep my IP secure, I'm a noob with these kind of things and I figured I would ask a group that knows what they are talking about. Thank you 

[Electronics Wizardy]

I probalby guess there is something like malware on your system, id probalby check for that first.

 

Do a anti virus scan on your system, and change your password.

 

And enable 2FA, thats the big one.

[Deekith]

3 minutes ago, Electronics Wizardy said:

I probalby guess there is something like malware on your system, id probalby check for that first.

 

Do a anti virus scan on your system, and change your password.

 

And enable 2FA, thats the big one.

I have malwarebytes, and spybot, nothing shows up. for antivirus all I have is windows defender (I know its not that great). How do you enable 2FA? I'm not familiar. Thanks for the reply.

[Electronics Wizardy]

Just now, Deekith said:

I have malwarebytes, and spybot, nothing shows up. for antivirus all I have is windows defender (I know its not that great). How do you enable 2FA? I'm not familiar. Thanks for the reply.

Was this for your Microsoft account?

 

https://support.microsoft.com/en-us/account-billing/how-to-use-two-step-verification-with-your-microsoft-account-c7910146-672f-01e9-50a0-93b4585e7eb4

[Deekith]

Yes I have 2 step verification turned on. Phone number and email. 

[Deekith]

Just now, Deekith said:

Yes I have 2 step verification turned on. Phone number and email. 

The weird thing was I never got a email or phone check when it was changed.

[Electronics Wizardy]

19 minutes ago, Deekith said:

The weird thing was I never got a email or phone check when it was changed.

are ya sure its from microsoft, could be phishing.

 

21 minutes ago, Deekith said:

Yes I have 2 step verification turned on. Phone number and email. 

Use a app like google authentactor if you can, its better than sms or email.

 

 

[Deekith]

5 minutes ago, Electronics Wizardy said:

are ya sure its from microsoft, could be phishing.

 

Use a app like google authentactor if you can, its better than sms or email.

 

Yeah I'm pretty sure its from Microsoft. I attached a image of the email, it says it was done on Microsoft edge also which I don't use ever. And ill definitely check out that google authenticator. 

 

[Electronics Wizardy]

7 minutes ago, Deekith said:

 

Yea that looks legit.

 

Im still guessing keylogger or simmilar, but there isn't too much to look for, if you can access your account, I wouldn't worry too much.

[Deekith]

5 minutes ago, Electronics Wizardy said:

Yea that looks legit.

 

Im still guessing keylogger or simmilar, but there isn't too much to look for, if you can access your account, I wouldn't worry too much.

Is there a program I can get that will secure my ip? Like a VPN or something? (not sure if that would help). I can pay for anything, I just want my PC secure and I really don't trust the recommendations online.

[Electronics Wizardy]

1 minute ago, Deekith said:

Is there a program I can get that will secure my ip? Like a VPN or something? (not sure if that would help). I can pay for anything, I just want my PC secure and I really don't trust the recommendations online.

A VPN really won't help here. All the websites are already encrypted with https for emails now.

 

Id just make sure defender is enabled in defender, and 2fa is enabled for accounts, and id change all your passwords now.

[Deekith]

7 minutes ago, Electronics Wizardy said:

A VPN really won't help here. All the websites are already encrypted with https for emails now.

 

Id just make sure defender is enabled in defender, and 2fa is enabled for accounts, and id change all your passwords now.

Oh yea Is changed all of them fast. If its a keylogger can't they get my passwords?

[Sir Asvald]

6 hours ago, Deekith said:

Oh yea Is changed all of them fast. If its a keylogger can't they get my passwords?

That is correct, if there is a keylogger is installed onto your PC the individual will be able to tell what you're typing

[Deekith]

1 minute ago, Sir Asvald said:

That is correct, if there is a keylogger is installed onto your PC the individual will be able to tell what you're typing

How so I get rid of a possible keylogger?

[Sir Asvald]

3 minutes ago, Deekith said:

How so I get rid of a possible keylogger?

It is sometimes difficult because it can be masked as a legitimate software. I once had a keylogger on my PC and I had to reinstall windows. I formatted the SSD and I my other drives ( I wasn't taking any chances virus can have been on there as well) but I had my files and documents backed up.

[Deekith]

5 hours ago, Sir Asvald said:

It is sometimes difficult because it can be masked as a legitimate software. I once had a keylogger on my PC and I had to reinstall windows. I formatted the SSD and I my other drives ( I wasn't taking any chances virus can have been on there as well) but I had my files and documents backed up.

If you backup all your files, isn't there a chance you can backup the keylogger?

[Sir Asvald]

18 minutes ago, Deekith said:

If you backup all your files, isn't there a chance you can backup the keylogger?

I have more than one location for backups. I 

Have system called the 3-2-1 system. 

 

 

[Alex Atkin UK]

If your password was changed and it wasn't you, how did you log back in?

 

If your password was the same as it was before, I'd be tempted to chalk this down to Microsoft sending you that e-mail incorrectly, because no way anyone could change your password to what it already was (how would they know what it was?), nor would there be any reason to do so if they could.

[Deekith]

2 hours ago, Sir Asvald said:

I have more than one location for backups. I 

Have system called the 3-2-1 system. 

 

 

That's pretty smart, I'm going to have to look into this. Thank you.

[Deekith]

1 hour ago, Alex Atkin UK said:

If your password was changed and it wasn't you, how did you log back in?

 

If your password was the same as it was before, I'd be tempted to chalk this down to Microsoft sending you that e-mail incorrectly, because no way anyone could change your password to what it already was (how would they know what it was?), nor would there be any reason to do so if they could.

If you look at the image I shared earlier, Microsoft told me that my password was changed and gave me the option "If this wasn't you, your account has been compromised. Please follow these steps" which I chose "reset your password". I tried to log back in using my password and it was incorrect. Also if your read the previous comments, a keylogger can get your passwords then log in and change it to whatever they want. The odd thing about this is I have 2 step verification and there was never a notification sent to my phone or alternate email. The same thing happened to me months ago with my Ubisoft account, that time it told me the country of origin which was Egypt. I also had 2 step verification on that account and I never received a notification in my email or phone. As to why it was done on my Microsoft account? I have no idea what they can steal, if its linked to the microsoft store cant they get your payment info? same with Ubisoft, I think they were trying to get my card details (luckily I didn't have any card details on both accounts).