If you go to the settings and then security tab, you should be able to see the recent activities and the IP addresses associated with them, assuming that whoever logged in didn't use Tor or VPN, It could help you know who did it.
thanks for the info. its probably means nothing, but thanks anyway.
2fa enabled and someone other than you accessed your account
![Roll Eyes](https://bitcointalk.org/Smileys/default/rolleyes.gif)
I thought 2fa is the most powerful security feature any site can have but it looks like not true, I think either there is fault in how 2fa is set on paxful or you might have shared your 2FA recovery code/pairing code anywhere online unknowingly.
thought so