Anyway, I am currently trying to sift thru these and find if I try to delete them via XOOPS admin I get:
"Admin user cannot be deleted. (User:
Looking thru the user database table I see that the suspicious registration all have admin rights.
Now, there is no way known that the users were given admin rights by me, the only legitimate administrator for these sites.
I'm worried.
The sites are generally updated with the latest XOOPS on release.