How To Stop Spam Comments And Fake User Registration In WordPress

The same old issue of spam comments and bot user registrations has caused bloggers and webmasters to shut down the manual user registration and spam comments section. We also pay more to businesses and hosting service providers to protect their websites from DDoS and brute force attacks and to clean up their databases.

The problem of spam comments and fake user registration has exploded and many top websites have decided to close the comments section. AntiSocialMedia has announced the removal of the comments section in a ferocious way. In their announcement, they said:

It was good, but comments no longer add value to this site.

How To Stop Spam Comments And Fake User Registration In WordPress
Spam Comments

A similar move was recently made by, and a long debate began with Mitch Joel’s Mark Schaefer status update. I’m worried when my blog starts to flow like [the other day] when it’s about to be hacked. I’m looking for a third party commenting tool. I hope to be back online soon. We’re so busy working with our clients that it doesn’t help integrate this, but we get there. That said, it’s getting out of hand.

Mark Schaefer is, ” the bad guys are not? The winning” but also wrote the title of the blog post that will. In this blog post, he emphasized how often WordPress websites were attacked and that they had to spend thousands of dollars to protect them from future attacks. He also did a podcast with Tom Webster, so I encourage you to listen.

Worse is that, one of the largest blogs on the Internet, was also uncommented at the end of March. Sonia Simone, the co-founder of, has informed readers that only 4% of the comments received are genuine and the rest are mostly spam. She also said:

This practice has evolved to the point where it requires considerable mental effort to understand the intent behind comments, which are actually cleverly disguised spam.

This is certainly a concern for blogs and the Internet as a whole. Its major blogs and websites have decided to keep out comments and insist that no comments are better.

In my last post, I showed you how to pagination your comments in WordPress and how to get the right value out of your comments. Constructive comments add value to your website, but the real problem is to exclude spam comments and fake user registrations. If you only want to approve good comments, it can take a lot of time and effort to confirm each one.

There are many effective ways to control, or at least minimize, spam comments and fake user registration.

How to control WordPress spam comments with plugins

First of all, if you already have a reasonable amount of spam comments, you need to remove them. Go to WP Management Dashboard-> Comments. In Screen Options, select the number of comments as 999. Select all and move to the Trash.

Once the cleanup is complete, the next step is to filter and retain new comments that may be spam.

Go to Administration Dashboard-> Settings-> Discussions and under Manage Comments, the statement “If there is more than one comment, keep the comment in the queue” there is. Make sure the value is 1. Spammers usually add links to comments. This is one way to dodge them.

The next step is to identify the keywords or phrases that most spammers use and add them to the “comment blacklist”. For example, keywords such as boots, drugs, poker, software, purchases, rentals, real estate, casinos, insurance and betting are the most spammed words. You can add keywords to the list and mark them as spam.

Comments that contain blacklisted keywords will be sent to spam via Administration Dashboard-> Comments, which will make your work much easier. Clean up with just one click on “Empty Spam”

The easiest way to block bot-generated comments is to add a CAPTCHA mechanism that appears while sending comments. Bots have no way around CAPTCHAs and can also discourage manual spammers. The most popular plugins for this are the “CAPTCHA Anti-Spam” and the “Growmap Anti-Spambot Bot Plugin”.

You also need to configure Akismet, a built-in plugin that comes with all recent WordPress installations. The plugin is free to use on personal websites and blogs but must be purchased for commercial use. Akismet is arguably the most effective way to combat spam. To activate Akismet, go to Administrative Dashboard-> Plugins-> Activate Akismet. Then click Settings to configure your API key.

Control spam using a web-based comment service

Another way to control spam is to use web-based commenting services such as Facebook, Disqus, and LiveFyre. While these services help control spam, they are by no means an effective solution. Some spammers know how to improve their tactics, circumvent these services and automatically approve comments. If you want to spend your time knowing who is commenting, these services are useful because they give you a lot of real comments from someone with a real ID.

If you’re ready to compromise your site’s loading speed a bit, it’s enough to use a third-party commenting system.

In 2012, Pingdom conducted a survey on websites running WordPress with and without these third-party commenting services. As a result, we found that using Disqus, LiveFyre, Facebook, etc., the site load time was slightly shorter.

How to stop bot user registration

If you have a WordPress website that users can register for, you probably have a strange user registration with a strange email address.

These users are nothing but bots. These are very problematic for WordPress websites where registration is open. Fortunately, there are plugins available to control this issue. We recommend that you perform the following steps:

  1. Add the CAPTCHA to the registration form.
  2. Limit login attempts.
  3. Blacklist the IP.
  4. The default registration URL is wp-login.php? Change action = register to something else.

You can use plugins such as Sabre, Vanguard, and Custom Registration Link to take the necessary security measures. My personal favorite is Wordfence. You can limit login attempts, automatically time out logged-in users, block IP by value or country-wide, and more.

If you don’t stop such annoyance, how can it hurt you?

If you don’t manage spam comments and bot users, it can be a big problem and ultimately destroy your website. If you have a lot of spam comments with outbound links, your site may get caught up in Google updates. Similarly, having a large number of bot users will increase the size of the database and slow down your site. You may not know the cause of the problem.

The best way to avoid these problems is to set up security measures and decide on an easy way before they become such a big problem. That is, delete the comment section to disable it.

I'm a BCA student formed an obsession with Blogging, And I Will Provide You With Content Related To Health, Tech, Learning, Gaming, SEO, To Build Amazing Knowledge.

Leave a Comment

Sharing Is Caring: