• Software

  • Someone is accessing my friend's WLM account

Two days ago my friend's windows live messenger account was stolen, she just couldn't sign in, "wrong password" thing. We tried to recover it using "reset password" but she couldn't remember the secret question answer so we failed. Then I tried recovering it using "alternative emails", but the alternative email was LOCKED OUT, I don't know why, maybe the hacker entered wrong password so many times so it was locked out so we cant recover it using alternative email (Even resetting password of the alternative email is impossible because of lack of infos)

Anyway, after all, she created a new account. The weird thing that today someone signed in from another PC (she didn't catch the other device name) , and starts sending nudges, she freaked out and told me.

So I guess someone is accessing her PC, i dont know if he is using some keylogger or something (but i dont think so because it's recently formatted), maybe it's the internet cable guy (Yes she's using dial up connection).

So any ideas?
How can I find out who's stealing the password using the network or using a keylogger or any other method?

PS: I guess I posted it in the wrong section, sorry admins.
There is a page to recover your account if it's been hacked. Microsoft support will ask you some questions and give you back your account. Please use the search function as I posted the address once before already.
But before that you should be sure your computer and connection are secure. You pretty much enumerated the possible vulnerable points yourself. Also make sure she's not using the same password then the old hacked account. If she is... well... let's just say it wouldn't be the first time such a thing happens.
Also I think that password are encrypted over the network, so it is probably hard to steal them - but not impossible I guess. A virus on the computer or some malicious extension in the browser can also be the source of the problem.
There is a page to recover your account if it's been hacked. Microsoft support will ask you some questions and give you back your account.
I've already used Microsoft Support but it was useless, 2 hrs after they send me a message saying they couldn't recover the account using the provided infos.
Also make sure she's not using the same password then the old hacked account
It's not the same password

Anyway how can i know how is someone is accessing the wlm account?
Is there any option that stores the list of device that access the account? (Like Facebook)
silverfox wroteAnyway how can i know how is someone is accessing the wlm account?
Is there any option that stores the list of device that access the account? (Like Facebook)
Not any I know of.

I'm not sure I understood what happened. Someone signed on using her account? what makes you think someone has access to her PC? And how is she supposed to get the "device name"?
let her change her password from a secure place , like your computer for example ... then get her pc to be formatted , it's very likely she was infected with a backdoor trojan
Or use liveusb linux, it can be called secure place, enough i think.
I'm not sure I understood what happened. Someone signed on using her account? what makes you think someone has access to her PC? And how is she supposed to get the "device name"?
She created a new account and after 2 days the account was breached, yep someone signed in using her account.
How someone could steal the password without having some access to her PC, the account is recent (3 days ago).
About the device name, when you're signed in and someone else sign in into your account a notifications pops out saying that you're signed in from 2 different places, and the device name is shown (Like SILVERFOX7-PC)
The problem that she didn't catch the name she signed out and went to change the password.
Another thing, in Facebook, you can view all the devices that signed in into your account, i was just wandering if there is such a thing in windows live.

let her change her password from a secure place , like your computer for example ... then get her pc to be formatted , it's very likely she was infected with a backdoor trojan
Her PC was recently formatted.
Is there a way to know if it is infected ?

Or use liveusb linux, it can be called secure place, enough i think.
She is not familiar with linux, thanks for the advice.