Hello, my problem is this ... Days ago appeared a new user as administrator Th3H4ck, then actualize to 4.2.1 to solve the problem, a few days my forum was hacked but did not affect database. Hack files:
/ home / **** / public_html / injector.php {PYX}. php.obfuscated-exec.crit
/ home / **** / public_html / DBTech / database.php {HEX}. php.nested.base64.513
/ home / **** / public_html / DBTech / cp.php {PYX}. php.eval.post.crit.1
/ home / **** / public_html / cgi-bin / lsos.php Injected: {HEX}. gzbase64.inject.unclassed.18
+ / home / **** / public_html / lsos.php Injected: {HEX}. gzbase64.inject.unclassed.18

+ Then there have been 2 new users without visible changes in the forum. As I can stop these administrators?
I went to Admin Panel> Statistics and Records> Registration Control Panel and see something strange, if I can explain about these changes ...

Delete them for sure

Follow these guides. Be thorough or don't even bother, honestly you must be thorough no joke this has been with much emphasis these days!

http://www.vbulletin.com/forum/blogs...vbulletin-site (http://www.vbulletin.com/forum/blogs/michael-miller/3934768-recovering-a-hacked-vbulletin-site)
http://www.vbulletin.com/forum/blogs...ve-been-hacked (http://www.vbulletin.com/forum/blogs/zachery/3993888-fixing-your-site-after-you-have-been-hacked)
http://www.vbulletin.com/forum/blogs...vbulletin-site (http://www.vbulletin.com/forum/blogs/zachery/3993849-best-practices-for-securing-your-vbulletin-site)

yes I have the same problem my forum has also been hacked :(
- Hacked by xtr3m3 burn3r -

Follow the post above, and make sure you guys delete the install directory.