Learn More





Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen

HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Removed over 100,000 Spam Registrations but server still MAXED outRemoved over 100,000 Spam Registrations but server still MAXED out
New Post
7/1/2014 10:28 PM

We had well over 100,000 spam user registrations on our server. One site alone had over 47,000 spam registrations. Here's the steps we've taken to prevent new registrations BUT they are still trying to login and also create other issues that has our server resources MAXED out.

Steps we did on ALL  dnn sites on our server.

1. Set user registration to "None" in Admin-Site Settings-User Accounts
2. Set all user profile pages permissions to "Admin" only in view page permission settings.
3. Hard deleted all users
4. Cleared Admin-Event Viewer (some sites this log file was over 3gb).

 While this has prevented them from making new registrations and also has blocked profile pages so the spam links in the profiles can't be visible, our server is consistently maxed out. We're running twice the ram as most servers, and the total sites on the server should only use about 45% of it's resources, however since the spam registration stuff has begun in the past 2 months or so, our server resources stay maxed at 95-100%, which makes it SUPER slow, especially when trying to work on a site. Just logging into a website can sometimes take over 2 minutes.

When I go to one of the sites that had a ton of spam registrations, then go to Admin -> Event Viewer, I see page after page of login attemps and other errors. Because I deleted all  users, they can't login, but their bots keep trying. So, I clear the event viewer. Wait only 5 seconds, refresh the event viewer page, and within those 5 seconds there's 6 pages of even issues.

Half of these events are login failures, I've tried to block the login ip addresses through Host-Settings, but they're logging in from everywhere, USA, NY, France , Phillipines, etc, etc.

There other half of the events are "General Exceptions" which I don't fully understand. What concerns me is the statement of "Module Injection."

I have copied below this General Exception. Does ANYONE PLEASE have any idea how to fix, or help on this. I've been awake for almost 5 days battling this, and it's ONLY on my DNN sites. Some are running DNN6 and some DNN7. I'm about to lose some hosting clients due to long loading times. PLEASE anyone have any ideas.

Besides the attempted logins into accounts I've deleted, here's the other event that keeps being shown, at least 3 times EVERY SECOND.



PortalName:Honolulu & Oahu Cleaning by Distinctive Homes Hawaii Cleaning Services








UserAgent:Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.72 Safari/537.36

DefaultDataProvider:DotNetNuke.Data.SqlDataProvider, DotNetNuke


InnerException:Unhandled Error Adding Module to ContentPane







DotNetNuke.Services.Exceptions.ModuleLoadException: Unhandled Error Adding Module to ContentPane ---> System.Threading.ThreadAbortException: Thread was being aborted.
   at System.Threading.Thread.AbortInternal()
   at System.Threading.Thread.Abort(Object stateInfo)
   at System.Web.HttpResponse.AbortCurrentThread()
   at DotNetNuke.Modules.Admin.Users.Register.OnInit(EventArgs e)
   at System.Web.UI.Control.InitRecursive(Control namingContainer)
   at System.Web.UI.Control.InitRecursive(Control namingContainer)
   at System.Web.UI.Control.AddedControl(Control control, Int32 index)
   at System.Web.UI.Control.EnsureChildControls()
   at DotNetNuke.UI.Containers.Container.get_ModuleControl()
   at DotNetNuke.UI.Containers.Container.ProcessModule()
   at DotNetNuke.UI.Skins.Pane.InjectModule(ModuleInfo module)
   --- End of inner exception stack trace ---
   at DotNetNuke.UI.Skins.Pane.InjectModule(ModuleInfo module)
   at DotNetNuke.UI.Skins.Skin.InjectModule(Pane pane, ModuleInfo module)


Server Name: onewave



Hawaii Web Design and SEO by One Wave Designs
New Post
7/2/2014 12:28 AM

I had my staff follow this to a tee -

That really did help us. We have not upgraded to the latest version of DNN due to other problems we've found.

We have several hundred installs/builds/sites so we've set up a spreadsheet.

It seems you're being attacked by bots and for a while until there is no luck in creating fake registrations, then it will occur.  When I changed one of our sites, it took a while for the bots to go, but they did.

I'm really sorry that it's like this, and for the record, it's not just DNN - we have some other php projects and they are also affected, but the point is that it's a nuisance.


Nina Meiers
If it's on DNN, we fix, build, deploy, support,skin, host, design, consult, implement, integrate and done so for over a decade.
Nina's New Blogs

Getting information from the internet is like taking a drink from a fire hydrant...
New Post
7/2/2014 5:55 AM
we're working on a number of things to resolve this in 7.3.2, but in the meantime is the best place to get suggestions/workarounds to fix the current issue.

Buy the new Professional DNN7: Open Source .NET CMS Platform book Amazon US
New Post
7/2/2014 2:11 PM
cathal connolly wrote:
we're working on a number of things to resolve this in 7.3.2, but in the meantime is the best place to get suggestions/workarounds to fix the current issue.

 Thanks for the link, but none of the suggestions help with preventing the bots from trying to login with usernames that don't exist anymore. My server memory resources are staying at 100%, when then should be below 50%. I need to stop them from trying to login and also what's that "General Exception" error about?

HOW DO I REMOVE THE page completely????? Even if I setup a custom login page through Site-Settings, all it does is change where the "Login" link points to, but it does NOT remove the /login.aspx page. I MUST delete this page somehow.

Please advise. Thank you.

Hawaii Web Design and SEO by One Wave Designs
New Post
7/2/2014 7:16 PM
The same process to block the login.aspx can be used as works with the register.aspx

You can set up a custom login page. As you noted, the login.aspx then just points to that page.

But you can then add a request filter entry which blocks the login.aspx URL and prevents it from forwarding to your actual login page.

That would be the first thing I would try. Just repeat the instructions for changing and blocking the register url with the login url, testing each step as you go.

The exception you're seeing is an aborted thread. The 'module inject' is nothing to worry about - that's just the name of the method which adds the module to the page when the page is being built. Why is the thread aborting? Not sure. If you are getting overloaded servers, it could be related. I would block the login first and see where that gets you.

You should be seeing better memory consumption with 7.3.1, so once it settles down you can assess properly.
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Removed over 100,000 Spam Registrations but server still MAXED outRemoved over 100,000 Spam Registrations but server still MAXED out

These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
Try Evoq
For Free
Start Free Trial
a Demo
See Evoq Live
Need More Information?