Stop Spammers


Stop spam emails, spam comments, spam registration, and spam bots and spammers in general. Run diagnostic tests, view activity, and much more with this well-maintained, mature plugin.

Stop Spammers adds security that should kill off many of your spam worries straight out-of-the-box. Because every website is different (especially if you have integrated a payment gateway), we offer dozens of features you can leverage to meet your website’s specific needs. Our 50+ configuration options make personalization easy.

Get even more options with Stop Spammers Premium.


Extremely granular control, so that any variety of website can create a special custom cocktail just for their particular spam issues:

  • Block suspicious behavior
  • Block IPs found in public blacklists
  • Block spam words
  • Block disposable emails
  • Block URL shortening services
  • Block TLDs
  • Block countries
  • Block/allow IPs, emails, and usernames manually
  • Send email when allow list request is approved
  • Private mode
  • So much more…
  • Server-level firewall protection (Premium Only)
  • Themed registration/login pages and menu links (Premium Only)
  • Brute force login protection (Premium Only)
  • Import/export settings (Premium Only)
  • Export log to Excel (Premium Only)
  • Restore default settings (Premium Only)
  • Contact Form 7 protection (Premium Only)
  • Built-in contact form (Premium Only)



The most powerful spam prevention for WordPress: 50+ spam-blocking settings, dianostic testing, log reports, and much more.

Go to Plugins > Add New from your WP admin menu, search for Stop Spammers, install, and activate.


  1. Download the plugin and unzip it.
  2. Upload the plugin folder to your wp-content/plugins folder.
  3. Activate the plugin from the plugins page in the admin.


What do I do if I lock myself out of my own site?


Can I use Stop Spammers with Cloudflare?

Yes. But, you may need to restore visitor IPs:

Can I use Stop Spammers with WooCommerce (and other ecommerce plugins)?

Yes. But, in some configurations, you may need to go to Stop Spammers > Protection Options > Toggle on the option for “Only Use the Plugin for Standard WordPress Forms” > Save if you’re running into any issues.

Can I use Stop Spammers with Akismet?

Yes. Stop Spammers can even check Akismet for an extra layer of protection.

Can I use Stop Spammers with Jetpack?

Yes and no. You can use all Jetpack features except for Jetpack Protect, as it conflicts with Stop Spammers.

Can I use Stop Spammers with Wordfence (and other spam and security plugins)?

Yes. The two can compliment each other. However, if you have only a small amount of hosting resources (mainly memory) or aren’t even allowing registration on your website, using both might be overkill.

Why is 2FA failing?

Toggle off the “Check Credentials on All Login Attempts” option and try again.

Is Stop Spammers GDPR-compliant?

Yes. See: Stop Spammers does not collect any data for any other purpose (like marketing or tracking). It is purely for legitimate security purposes only. Additionally, if any of your users ever requested it, all data can be deleted.


March 3, 2021
This plugin is certainly effective at stopping spam account registrations and the plugin creators very quick to respond to support requests and issue updates. By its own admission, it inevitably sometimes blocks genuine user registrations but there are various configuration options for site admins to try to get the right balance. For a site with a fairly low number of registrations, I found it manageable to occasionally need to manually override the blocking of genuine users in return for blocking a lot of spam registrations.
February 3, 2021
First I installed Ban Hammer plugin which was absolutely false advertising and did nothing to prevent spam signups. Then I installed Clean Talk plugin and yes that was very good for cleaning up OLD spam emails but not NEW ones. But after doing that, the goal is to prevent NEW / future spam emails from registering, and this plugin so far has verifiably done a great job of that by blocking specific spam emails and TLDs, as I'm seeing old spam emails (that used to get through the supposed filter) now being blocked by this plugin. Perfetto. Thank you to the plugin creator! Has been a big help for getting rid of this headache which is scummy spammers.
November 8, 2020
This plugin blocks a lot of customers who can not buy, so I don't reccomend to install it if you don't want see your sales go down.
Read all 223 reviews

Contributors & Developers

“Stop Spammers” is open source software. The following people have contributed to this plugin.


Translate “Stop Spammers” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • [Fix] Email fix


  • [Fix] SFS report fix


  • [Fix] Error fixes


  • [Fix] Login issue


  • [New] Strings are now translation-ready
  • [Update] UI improvements
  • [Update] Safety checks for WooCommerce
  • [Enhanced] When approving allow requests, the email address is now whitelisted
  • [Enhanced] Code audit and cleanup
  • [Fix] “Clear the Requests” toggles off other settings
  • [Fix] Too many periods feature


  • [Update] Third-party service IP lists


  • [New] Private mode feature
  • [Update] UI improvements
  • [Enhanced] Too many periods feature
  • [Enhanced] Emails are now off by default (to avoid potential issues with server reputation)
  • [Enhanced] Code audit and cleanup
  • [Fix] Shortened URL option only checks for exact matches now


  • [Update] Minor UI improvements
  • [Fix] Duplicate email issue


  • [Fix] PHP notice


  • [New] Send email when allow list request is approved (community request)
  • [New] Approve or Deny action in request email with link to Allow List page (community request)
  • [Update] Update Stop Spammers menu icon to ‘S’ logo
  • [Fix] Conditional fields hidden on page load when option is enabled
  • [Fix] Updates to multisite (community reported)
  • [Fix] Shortcode and HTML support on Spam Message (community reported)
  • [Fix] Wrong key used for the spam reason in the allow request email template sent to the web admin


  • [Fix] Deny if email has too many periods


  • [New] Deny URL shortening service links


  • [New] Notice


  • [Fix] PHP warnings


  • [Enhanced] Code cleanup


  • [Revert] Removed gettext


  • [Fix] Hotfix


  • [New] Force username-only login
  • [New] Force email-only login
  • [New] Disable custom passwords
  • [Enhanced] 2,500+ disposable email domains added to deny list
  • [Update] Support notice


  • [Update] Usability updates


  • [Update] Plugin audit and cleanup


  • [Update] Various hotfixes


  • [New] Check for Tor Exit Nodes
  • [New] Check for too many periods
  • [New] Check for too many hyphens
  • [New] Allow Stripe
  • [New] Allow Authorize.Net
  • [New] Allow Braintree
  • [New] Allow Recurly
  • [Update] Admin UI enhancements