Hi,
Wordfence does not do anything about user registration. You’d want to look at a captcha solution or similar.
Thanks,
Brian
That’s the strange thing. Captcha does nothing. In the last 24 hours, over 1,000 spam registration emails have hit my junk mail. However, there are no new users according to the site.
Something may have access to send mail via your site since no users are being created. You could possibly have vulnerability issues with your themes and other plugins. They can leave your site vulnerable to hacking. Make sure these are up-to-date.
Here are a couple links on site cleaning.
https://www.wordfence.com/docs/how-to-clean-a-hacked-wordpress-site-using-wordfence/
http://codex.wordpress.org/Hardening_WordPress
I’ve got Anti-Malware from GOTMLS.NET checking my site now. Hopefully, it’ll find the culprit. Appreciate the replies!
Let us know how it goes, or if you need help if you think you have been hacked — the guides from Brian should also be helpful int hat case.
You can also check the access log for your site, to see if you’re actually seeing registration attempts — it’s possible someone has simply found your admin email address, and is spamming you from outside the site. (Possibly trying to get you to log into a fake site that looks like yours, to steal your login and password.)
