Best 6 WordPress Plugin To Stop Spam/BOT Registration

WordPress without doubt is the best blogging platform. If you running a multi authored blog, and you set your blog registration to open, there are chances you will be haunted by spammer and BOTS registering on your blog which is very annoying.

As a newbie to WordPress, i had challenges combating with spam registration due to the fact that i set registration open.

I had to go through the stress of deleting 500+ spam users everyday.

If you’re experiencing similar situation, below are Top Six(6) WordPress plugins to help stop spam registration

  1. Sabre
    Sabre is an acronym for Simple Anti Bot Registration Engine. It’s a set of counter measures against spam registration on your blog.
    Your visitors are granted permission to register freely on your blog as a subscriber or as guest authors and now you are plagued by fake users automatically created by spammers?
    Sabre is the solution to stop definitely these robotized visitors.
    List of available features are:
    > Inclusion of a captcha in the registration form,
    > Selection of the captcha’s complexity,
    > Selection of the background colour for the captcha image,
    > Inclusion of a math test in the registration form,
    > Selection of the math test’s complexity,
    > Inclusion of a text test in the registration form,
    > Random or fixed choice of the test to run,
    > Unobstrusive tests to detect if registration is done by humans or not,
    > Registration blocked if Javascript is unsupported by the browser,
    > Registration blocked if visitor’s IP address is found on ban lists,
    > The user can validate his registration by clicking on a link sent by mail,
    > Limited number of days for user confirmation (Without being confirmed within the period of time,
    > the user account is disabled (monosite only),
    > Log on prohibited before user confirmation,
    > User is allowed to choose his password when registering on the site,
    > User must agree with a warning text, disclaimer or general policy note,
    > when registering User must give an invitation code during registration,
    > Main statistics displayed on the site’s dashboard,
    > Custom logo on logon/ registration screen.
  2. Wanguard
    This plugin is very good at stoping spam registration and making your database clean. We at smartactiveblogger use this plugin to stop spammers.
    Upon user registration, WangGuard will check against a centralized database if the user is a Splogger or spam-user.If WangGuard determines that the user is a Splogger, WangGuard won’t allow the registration on your site.
    Wanguard doesn’t use any kind of filter in the user registration page (eg captcha).This is the greatness of WangGuard, not hinder users who wish to register on your site with Captchas and other things that just makes the registration being more difficult and annoying and in many cases do not stop Sploggers. But in case you want to put something WangGuard gives you the ability to add one or more security questions.
  3. Stop Spammers Registration Plugin
    This plugin is like a godfather of all security plugins, it uses 15 different strategies to block spammers. Eliminates 99% of spam registrations and comments and here are some of the features of it.
    > spam against StopForumSpam.com,
    > ProjectHoneypot,
    > BotScout,
    > DNSBL lists such as Spamhaus.org,
    > known spammer hosts such as Ubiquity Servers,
    > disposable email addresses,
    > very long email address and names,
    > and HTTP_ACCEPT header.
    Checks for robots that hit your site too fast, and puts a fake comment and login screen where only spammers will find them.
  4. ProfilePress
    This plugin has a feature that let you modify the registration link of your WordPress website. This will result in greatly reduced spam registrations. The default wordpress registration link is “wp-login.php?action=register” and is heavily targeted by spam- bots. This plugin create a custom registration form for you and redirect the default registration page to the custom page.
  5. Confident Captcha
    Confident CAPTCHA™ is a clickable, picture CAPTCHA that stops spam and malicious bots, while remaining very easy for people to solve. All your website visitors have to do is click a few specific pictures to prove they are human and not a bot. It takes just a few seconds to solve.
  6. Growmap Anti Spambot Plugin
    This plugin will add a client side generated checkbox to your comment form asking users to confirm that they are not a spammer. It is a lot less trouble to click a box than it is to enter a captcha and because the box is genereated via client side javascript that bots cannot see, it should stop 99% of all automated spam bots.

 

 

How to Stop Spam User Registration in WordPress

WordPress without doubt is the best blogging platform as it has tons of Plugins for your needs and themes as your choice.

But it can also turn into nightmare if you running a multi authored blog, and you set your blog registration to open, there are chances you will be haunted by spammer and BOTS registering on your blog which is very annoying.

I have gone through this headache when I got started with wordpress and by that time I didn’t have this many choice of plugins.

I had to go through the stress of deleting 500+ spam users everyday.

And it was not that easy as marking all and deleting them, as I have a multi author blog where other authors guest post.

So if you’re experiencing similar situation then below are the Best WordPress plugins to help stop spam registration.

1. Wanguard 

  • Cost: Free
  • Ease of Use: Yes
  • Is Effective: Yes
  • Popularity: 4.5 out of 5

This plugin is very good at stopping spam registration and making your database clean. I’ve used this plugin for a very long time and many of my niche sites are still using this plugin.

WangGuard-Settings-smartactiveblogger

As this plugin is free and does it work very effectively.

How it Works?

When an user try to register on your site, WangGuard will check in its database if the user is a Splogger or spam-user.

If WangGuard determines that the user is a Splogger, WangGuard won’t allow the user to register on your site.

The best thing about it is you dont need to put any kind of filter in the user registration page (eg captcha). Which I hate.

READ: How To Use WangGuard To Stop Spam Registration

Hey YOU! Are you serious about blogging? Then you should use .

 

2. Stop Spammers Registration Plugin

  • Cost: Free
  • Ease of Use: Normal
  • Is Effective: Yes
  • Popularity: 3.7 out of 5

This plugin is also effective with spammers, and does a great job handling spam registrations. It is a powerful WordPress plugin which aggressively monitors your website for suspicious spam activity.

How to Stop Spam User Registration in WordPress

How it Works?

This plugin uses 15 different strategies to block spammers as mentioned in the plugin description.

The plugin continuously monitors your website using a combination of anti-spam techniques. It uses Stop Forum Spam’s database to check IP addresses of users on your site.

Stop Forum Spam’s database is a huge database which is actively maintained by collecting data from thousands of sites from around the globe. This is a quick way to catch a spamming IP or email address.

It Eliminates 99% of spam registrations and comments by using the 15 different strategies.

If a spam is detected, the user is offered a second chance to post their comments or login. Denied requests are presented with a captcha screen in order to prevent users from being blocked in case if the user is a real person and is in good faith.

It provides 3 types of captcha 1. OpenCaptcha, 2. Google reCaptcha, 3. SolveMedia Captcha. The Captcha will only appear when a user is denied access as a spammer.

It also Checks for robots that hit your site too fast, and puts a fake comment and and puts a security check at login screen where only spammers can’t bypass it.

3. Sabre

  • Cost: Free
  • Ease of Use: Normal
  • Is Effective: Yes
  • Popularity: 3.0 out of 5

Sabre is an acronym(Shortform) for Simple Anti Bot Registration Engine. It uses a set of methods against spam registration on your blog.

sabre-stop-spam-registration-smartactiveblogger

This plugin gives you the option to choose what kind of security you would like to use to prevent spam registration.

 

How it Works?

It has a List of available features :

  1. Inclusion of a captcha in the registration form,
  2. Inclusion of a math test in the registration form,
  3. Random questions on registration form
  4. Unobstrusive tests to detect if registration is done by humans or not
  5. Browser compatibility check,
  6. IP address scan,
  7. Email validation
  8. checkbox to agree to disclaimer or general policy note
  9. invitation code during registration

HELP!! False Malware Alert had Deactivated Bluehost Account

You are definitely in trouble and seeking for a good solution, if you came to read this post. And the pretty awful reason is your bluehost account has been deactivated or you got some issues with your account stating malware has been found.

Well its not just you facing this trouble, there are tons of people who faces this types of problem, and here is the Solution for it.

Firstly don’t panic. It’s likely your site has been hacked and your files infected. Here’s what you need to do:

 

Email From Bluehost

Your web hosting account for yourdomain.com has been deactivated, as of date. (reason: terms of service violation – malware/virus)

This deactivation was due to a Terms of Service violation associated with your account. At sign-up, all users state that they have read through, understand, and agree to our terms. These terms are legal and binding.

Although your web site has been suspended, your data may still be available for up to 15 days from the date of deactivation; if you do not contact us during that 15 day period, your account and all of its files, databases, and emails may be deleted.

If you feel this deactivation was made in error, or in order to gain access to your account, please call our customer service line as soon as possible at (888) 401-4678.

 

Where Did the Malware come from?

Well malware comes mostly from nulled plugins and themes and you must be definitely thinking that if that the reason then we are probably using nulled items in out website. Then you are definitely wrong! we don’t use any nulled plugins, themes or any other items.

Our Themes/Skin is designed by GloriousThemes, running professional Genesis Framework by StudioPress , and all the plugins are purchased or are from the wordpress repository.

malware warning - hosting account deactivated due to malware

Then the question arises, where did the malware come from. User registration account is turned off, Akismet is on and running, No user or author has any right to upload files. Someone has to do something with it.

Well bluehost support provided me with a malware.txt. The malware.txt is a text file that contains the list of all possible file in your hosting account that may possess as a threat or pretend as a malware or be a true malware.

 

Here is the list of malware.txt. I have edited some the files, because i don’t want to reveal my home directory structure for security reasons.


Pretty amazing isn’t it, because all of the files are either from wordpress repository or either purchased from codecanyon.net or so.

 

I found the Malware

So to get rid of it I spent $39 for site doctor, which was not to great and not worthy and next i spent $39 on sitelock professional. Surprisingly sitelock found out the malware location and alerted me within 10 minutes of activating the plugin.

sitelock bluehost account deactivated

Well I could say that my $39 on sitelock which is billed yearly was fruitful. Even as soon as I purchased the service, I got a call from their support team who helped me on setting up and running sitelock.

 

As after the research and purchasing different services, the Sitelock worked for me and it did it job within 20 minutes. The sitelock indicated where the malware is and when I manually removed the link containing malware, the sitelock indicated that my account is clean.

So the next thing I did after removing the malware was to get in touch with a bluehost support team and ask them to activate my account as I have removed all such malwares from my hosting.

hosting account deactivated due to malware

And yes, they did activated my account. So in my case Sitelock did play a great role and it was an affordable service which got my hosting account back. I would suggest others that without wasting your time on doing all such useless things go purchase the service of sitelock.

 

The interesting part of Malware in Bluehost

The interesting part was that the entire list provided by bluehost as malware.txt was 99% rubbish, well it was about 100% rubbish on my case. Going over to Sitelock dashboard, i found that my website still has 7 malwares even after deleting about 3 websites and many plugins from my home directory. Going in depth of the reports provided by sitelock, i found the malware on a post as a link to a backlinking website which has turned out

Going in depth of the reports provided by sitelock, i found the malware on a post as a link to a backlinking website which has turned out as a spammy website in the matter of time.

For additional security i have added rel=nofollow on all that external links, but bluehost script took them as a real malware stating in my website/server directory and deactivated my account.

So I went further and completely removed all the link from that post – “How to build backlinks with social bookmarking sites?” and my site is normal again.

Point to note is my website didn’t had any malware, it was a link in my one of the post that had malware on their website. Luckily i got my website back.

 

Always use some type of security plugin or use some security services to monitor your websites health. Have you encountered with like this problem before, then leave a comment below, on how you got rid of it.

Do the following to get the account.

  • Contact the Bluehost support and address the problem
  • Request them to help you remove the malware from the server
  • Be calm and polite
  • purchase sitelock professional
  • The sitelock professional will call and assist you
  • remove the malware by following the steps provided by them
  • Enjoy your account back

If this methods helps you, leave a comment about your problem…

Got a Problem/Question, need some solution – Ask Niraj anything about. Head over to AskNiraj.com