Sorry to hear about the bots hitting your site. The unfortunate fact is that many spammers/hackers look for open registration sites. This happens with many of the popular blog/cms programs like Drupal, Wordpress, Joomla, etc. The best you can do to stop it is to simply NOT allow open registration. You can also implement a RECAPTCHA system to make it so that robots can't simply autologin to your site. I'll give you a way to block outside IPs, if you wish to use it, and also the link to Drupal's module of RECPATCHA that you can implement - to stop the robtos.
The email issue is also related to this. They've created users that are on your site that won't verify. I myself have a test Wordpress site that received over 500 anonymous logins when I set open registration, so I do understand what you're seeing. Close open registration (or remove the link) for now until you can implement verification procedures (using recaptcha or other system) to stop the bots. This will help with the both issues you're seeing.
How to block an IP from website
Recaptcha Drupal Module
If you have any further questions, please contact technical support or leave a comment at the bottom of the page.
|Email:||support@WebHostingHub.com||Ticket:||Submit a Support Ticket|
|Chat:||Click To Chat Now|