Plugin Directory

Anti-Spam by CleanTalk - No Captcha, no comments & registrations spam

Max power spam protection, all-in-one, premium anti-spam. No comments spam & registrations spam, no email spam, protects any forms. Forget spam.

Does the plugin protects against brute force, DoS attacks as well as against spam attacks?

No, it doesn't. Anti-spam by CleanTalk is only anti-spam solution for comments, registrations and other other forms on a website. Plugin saves your time against manage spam problem, but doesn't protect against any security issues.

Does anti spam protection safe for mobile visitors?

Yes, it does. Plugin doesn't block mobile visitors as well as desktop websites visitors. Because this plugin uses several anti-spam tests to detect spam bots and lower false/positive rate. Multiple anti-spam tests helps avoid false/positive blocks for real website visitors even if one of tests failed.

How does the plugin work with spam comments?

Spam comments moves to SPAM folder or you can set option to silent ban spam comments.

How does the plugin stop spam?

Plugin uses several simple tests to stop spammers.

  1. JavaScript anti-spam test. 99% spam bots doesn't have all JavaScript functions support. So, the plugin has code which can run normal visitor and can't run the spam bot.
  2. Checks by Email, IP, domains at spam activities list. The plugin online use spam activity database at cleantalk.org, which are consist more then 1 billion records about spam activity IPs, Email, Domains and ASN. If the senders IP or Email matches with database, the sender gets some spam scores. To reduce false/positive rate the plugin doesn't use only blacklist test to ban spammers. The sender will be banned only if multiple spam test failed.
  3. Comment submit time. Spam bots usually send post immediately after page load, because spam bots not really fill the web form, they are only send $_POST data to the blog. The normal visitor sends the data within several seconds or minutes.

Will anti-spam protects my theme?

Yes, it will. The Anti-spam by CleanTalk compatible with any WordPress themes.

How can I test anti-spam protection?

Please use email stop_email@example.com for comments, contacts or signups to see how the anti-spam protection works. Also you can see logs for last 7 days at Control panel or look at folder "Spam" for banned comments.

Is the plugin effective against spam bots?

Plugin Anti-spam by CleanTalk stops up to 99.998% of spam comments, spam signups (registrations), spam contact emails, spam subscriptions, spam bookings or spam orders.

What about pingback, trackback spam?

Plugin by default pass pingbacks without any checks. All trackbacks will be blocked if the sender had spam activity.

Can I use CleanTalk with Akismet?

Sure, you can use CleanTalk with Akismet. In this case probably you will have bigger false/positive rate (when legitimate comments/signups denies), but you will have stronger antispam protection at website.

Can I use CleanTalk to remove pending spam comments?

Yes, you can. The plugin has option to test all pending comments via database of spam active IP/Email, finded spam comments plugin moves to Trash folder.

How the plugin finds spam in pending comments or registered accounts?

Plugin checks all not spam comments against blacklists database and show you senders that have spam activity on other websites. There is some differencies between blacklists database and API to protect against spam bots registrations/comments online. Blacklists show all history of spam activity, but our API (that used in spam tests) used another parameters, too: last day of activity, number of spam attacks during last days etc. This mechanisms help us to reduce number of false positivitie. So, there is nothing strange, if some emails/IPs will be not found by bulk comments/accounts test.

To check comments please click this,

WordPress console -> Comments -> Find spam comments

To check users please click this,

WordPress console -> Users -> Find spam users

Should I use another anti-spam tools (Captcha, reCaptcha and etc.)?

CleanTalk stops up to 99.998% of spam bots, so you can disable other anti-spam plugins (especially CAPTCHA like anti-spam plugins). In some cases several anti-spam plugins can conflict, so it will be better use just one plugin.

Is the plugin WordPress MultiUser (WPMU or WordPress network) compatible?

The plugin is WordPress MultiUser (WPMU or WordPress network) compatible. Each blog in multisite environment has individual anti-spam options for spam bots protection.

After installation I noticed in the statistics that the number of spam attacks increased

There are a few reasons for this:

  • With the indexing of your web-site by the search systems, appearance of external links and better search results position, your web-site attracts more and more spambots.
  • Non-transparent protection systems like CAPTCHA or question/answer, that don't have spam attacks statistics, don't let you see the whole picture, or the picture is incomplete.
  • Counting methods for spam attacks and spam bots are different for different systems, which explains the diversity. We seek to provide detailed statistics.

Why my dummy "spam" comment passed to the WordPress?

The plugin has several options to detect spam bots and humans. If you just post spammy text like this,

"I want to sell something", "Buy something here.." and etc

The comments will be passed, becuase the plugin detect sender as a human. So, use special email stop_email@example.com to test anti-spam or wait a few days to see how the plugin works.

Is it free or paid?

The plugin is free. But the plugin uses CleanTalk cloud service to filter spam bots. You have to register an account and you have free trial to test anti-spam for comments, registrations, bookings, contacts or orders. When the trial (on CleanTalk account) is finished, you can renew the subscription for 1 year or deactivate anti-spam plugin.

Can I use CleanTalk with cache plugins?

Anti-spam by CleanTalk doesn't use static HTML code into templates, so all anti-spam functions works correctly with any WordPress cache plugins.

Does the plugin protects against spam bots at forms with third-party services?

Yes, it does. Plugin protects web-forms on your websites which are send data to third-party servers (like MailChimp). To enable this protection set option 'Protect external forms' in plugin settings.

Compatible with Cloudflare?

CleanTalk is fully compatible with CloudFlare. Service doesn't filter CloudFlares IP's (AS13335) over blacklists database, so in this way plugin/service filters spam bots uses other anti spam tests.

Can I use CleanTalk functionality in my plugins?

Yes, you can. Just use following snippet:

    include_once( ABSPATH . '/wp-content/plugins/cleantalk-spam-protect/cleantalk.php' );
//for registration test:
$res=ct_test_registration("nickname", "stop_email@example.com", "");
//or for some other messages (contact forms, comments etc.)
$res=ct_test_message("nickname", "stop_email@example.com", "", "test message");

$res now contents array with two parameters: * $res['allow'] - is request allowed (1) or not (0) * $res['comment'] - comment for our server's decision.

I see two loads of script cleantalk_nocache.js. Why are you use it?

This scrupt is using for AJAX JavaScript checking. Different themes use different mechanisms of loading, so we use two method for loading our script. If you absolutely knows what are you doing, you can switch one of methods off be defining constants in your wp-config.php file:

define('CLEANTALK_AJAX_USE_BUFFER', false); //false - don't use output buffering to include AJAX script, true - use it


define('CLEANTALK_AJAX_USE_FOOTER_HEADER', false); //false - don't use wp_footer() and wp_header() for including AJAX script, true - use it

Can I add exclusions for some pages of my site?

Yes, you can. Add in your wp-config.php file, before defining database constants, this string:

$cleantalk_url_exclusions = Array('url1', 'url2', 'url3');

Now, all pages containing strings 'url1', 'url2', or 'url3' will be excluded from anti-spam checking. Remember, that this option will be not applied in registrations and comment checking - they are always protected from spam.

Can I exclude personal data from sending to CleanTalk servers?

Yes, you can. Add in your wp-config.php file, before defining database constants, this string:

$cleantalk_key_exclusions = Array('key1', 'key2', 'key3'); 

Now all fields in your submissions with keys named 'key1', 'key2' or 'key3' will be excluded from spam checking.

How to test Spam FireWall?

Use special IP in URL to test Spam FireWall. For example,


How can I enter access key in WPMU version?

To set up global CleanTalk access key for all websites in WPMU, define constant in your wp-config.php file before defining database constants:

define('CLEANTALK_ACCESS_KEY', 'place your key here');

Now, all subsites will have this access key.

Why CleanTalk is faster and more reliable than stand-alone solutions?

All anti-spam checks are held in the cloud and aren't loading the web server. The cloud solutions have a huge advantage since the parameters are compared with information from more 100,000 websites.

I see in logs a lot of blocked messages with reason "Forbidden. Please enable JavaScript. Spam sender name."

A lot of spam bots can't perform JavaScript code, so it is one of the important checks and most of the spam bots will be blocked with reason "Forbidden. Please enable JavaScript. Spam sender name." All browsers can perform JS code, so real visitors won't be blocked.

If you think that message was blocked wrong, let us know about it.

If you or someone from your visitors have error "Forbidden. Enable JavaScript." please check JavaScript support in your browser and do JavaScript test at this page Check out JavaScript support.

Requires: 3.0 or higher
Compatible up to: 4.4
Last Updated: 1 day ago
Active Installs: 30,000+


4.9 out of 5 stars
5 stars 1,018


10 of 10 support threads in the last two months have been resolved.

Got something to say? Need help?


Not enough data

4 people say it works.
0 people say it's broken.

100,3,3 100,1,1
100,1,1 100,1,1 100,1,1 100,1,1
100,1,1 100,2,2 100,1,1 100,1,1 100,1,1 100,1,1 100,1,1
100,3,3 100,2,2 100,2,2 100,3,3 100,4,4 100,4,4 100,4,4 100,1,1 100,3,3 100,1,1
100,6,6 100,4,4 100,4,4 100,3,3
100,2,2 100,7,7 100,4,4 100,6,6 100,1,1
100,7,7 100,4,4
83,6,5 100,7,7 100,7,7 100,6,6 100,8,8 100,4,4 100,1,1 100,5,5 100,5,5
100,5,5 100,7,7 100,5,5 100,5,5
100,1,1 100,6,6 100,5,5 100,7,7 100,4,4 100,4,4 100,5,5
100,4,4 100,4,4 100,4,4 100,3,3 100,1,1
100,2,2 100,6,6 100,4,4 100,5,5 100,4,4 100,4,4 80,5,4 100,1,1 100,4,4 100,4,4 100,4,4 100,4,4 100,3,3 100,1,1
100,1,1 100,3,3 100,4,4 100,4,4 100,4,4 100,4,4 100,1,1
100,4,4 100,4,4 100,4,4 100,5,5 100,5,5 100,6,6 100,4,4 100,4,4 100,4,4 100,5,5 100,5,5 100,5,5
100,4,4 100,3,3 100,3,3 100,4,4 71,7,5 100,5,5
100,1,1 100,2,2 100,1,1 100,5,5 100,4,4 100,4,4 100,4,4 80,5,4 100,4,4
100,4,4 100,4,4 100,5,5 100,4,4 100,4,4 100,4,4 100,5,5 100,7,7 100,4,4 100,4,4 100,3,3
100,1,1 100,1,1
100,2,2 100,3,3
100,1,1 100,5,5 100,3,3
100,4,4 100,5,5 80,5,4 100,4,4 100,2,2 100,3,3 100,4,4 100,2,2 100,1,1 100,1,1 100,1,1 100,2,2 100,3,3 100,3,3 100,3,3 100,4,4
100,4,4 100,4,4
100,4,4 100,4,4 100,4,4
100,5,5 100,4,4 100,4,4 100,5,5 100,4,4 100,4,4 100,4,4 100,5,5 100,1,1 100,1,1 100,2,2 100,1,1 100,1,1 100,2,2 100,2,2 100,2,2 100,2,2 100,2,2
100,4,4 100,3,3 100,4,4 100,4,4 100,4,4 100,5,5 100,4,4 100,5,5 100,4,4 100,4,4 100,5,5 100,4,4 100,2,2