Do you have an IP address for these registrations? Please post it here so it can be researched.
If you can find it:
1) clear the cache (found on the cache page on the plugin settings.)
2) add the ip to the deny list.
It could be that a registration sneaked through. Since the registration was successful it puts the IP into the good cache and other users from that IP will be allowed in.
Keith
Thread Starter
Bloke
(@bloke)
I don’t have the ip since I have deleted them already. I checked all the countries except US and Canada and added the TLD to the blocked TLD list and cleared the cache.
Thread Starter
Bloke
(@bloke)
I got three more from the same domain pmpmail.org I have it listed in my TLD blocked list but they still came through.
172.245.82.134
23.94.140.169
155.108.4.204
These might even be the same guy, they are using Hosting companies that do not police their service well and spammers use them.
Make sure that you check off USA in the country list. This does not block all USA users, just the known spammers in the US. If you had checked that, these spammers would have been blocked.
Keith
Thread Starter
Bloke
(@bloke)
Ok I have USA and Canadian customers that use my store so I thought it might block them if I checked those. I will do that and see if it works.
If one of your customers is using a proxy server to hide their identity or bypass some kind of filters on their computer they will be blocked, but can use the second chance captcha.
Keith
Thread Starter
Bloke
(@bloke)
The spam registrations have slowed down. I just got this one and the IP is on the BotScout list. 168.1.99.214 hoaq5cte@rambler.ru
You should clear out the allow list and the cache. Once a spammer slips in, he is put in the good cache and once a spammer logs in he is put into the allow list. It could be that a spammer has was able to register and then sent you tons of spam without it being checked.
Uncheck the box to automatically add users to the allow list. Once you put yourself in the allow list there is no longer any reason to have this checked. It is a safety option, but once it is set it should be unchecked.
If your IP changes you may get a Captcha screen, but that is the worst that can happen.
Keith
Hi guys, just got hacked and got about 40 subscribers to my mail chimp account through my ezine registration in wordpress…. i installed a spammer but how can i take my host subscribers away without any damage… just tried to delete them… within the hour they came back ….
keith, I’ve tried following your instructions (below) in my mail chimp account but i cannot seem to find the plugin settings… I’m not such an active user… can you describe smaller steps… do i find them in my wp account or in my mail chimp account????
1) clear the cache (found on the cache page on the plugin settings.)
2) add the ip to the deny list.
It could be that a registration sneaked through. Since the registration was successful it puts the IP into the good cache and other users from that IP will be allowed in.
These steps apply to the Stop Spammer Plugin settings. You can find them under the Stop Spammers settings item on the let of your WordPress admin page.
Keith
