hi guys,

I am in need or urgent help some guy joined my site like 8 times today and made one of his accounts admin, he is a member of another forum i'm on and he claims to be a hacker/cracker,
how can i prevent this from happening again, how can i secure my vbulletin, I am running 3.6.9

are you requiring unique emails? Also, require them to confirm their email. Turn off html.

I really like this hack for keeping those users out
https://vborg.vbsupport.ru/showthread.php?t=125871&highlight=detector

yup to all questions m8, somehow the ae detector didn't pick him up, but it has done other users that have been b anned

Read this thread: How To Make My Forums More Secure (http://www.vbulletin.com/forum/showthread.php?t=194701) Make sure your admin cp is password protected.

I tried that but as soon as i visit the site it asks for login credentials, rather than the admincp, modcp

You need to put the htaccess file in your admincp folder, not in your root folder. And then yes, it will ask for htaccess login credentials to get to the admin panel and then the admin panel will ask for your vbulletin login credentials - two separate login/passwords to get into your admin panel.

ahh of course, but now i get 500 error when visiting admincp

ahh of course, but now i get 500 error when visiting admincp
What did you use to create the htaccess file? Do you have cPanel or similar? Did you use that to password protect it?

yes i have cpanel and i followed that tut u linked

I googled "cpanel password protect" and got this link: http://www.cpanel.net/docs/cpanel/Password_Protect_Directories.htm Try following the instructions there. (Sorry, I don't use cPanel so I can't help.)