60Web60

Spam Comments and Form Submissions

Troubleshooting3 min read·

This article explains how to stop spam comments and unwanted form submissions on your WordPress website.

Stop Spam Comments

1. Enable Comment Moderation

Log into your WordPress admin dashboard and go to Settings > Discussion. Tick "Comment must be manually approved" to review all comments before they appear on your site.

2. Install Akismet Anti-Spam Plugin

Akismet is a free plugin that automatically filters spam comments. Go to Plugins > Add New in your WordPress dashboard. Search for "Akismet Anti-Spam" and click Install Now, then Activate.

You'll need to create a free WordPress.com account to get an API key. Follow the setup wizard after activation.

3. Adjust Comment Settings

In Settings > Discussion, you can:

  • Require users to fill in name and email
  • Hold comments with multiple links for moderation
  • Block comments from previously flagged IP addresses
  • Close comments on posts older than a certain number of days

Stop Form Spam

4. Add CAPTCHA to Your Forms

If you have a contact form, add CAPTCHA protection. Most form plugins like Contact Form 7 or WPForms include reCAPTCHA options in their settings.

5. Use Honeypot Fields

Honeypot fields are invisible form fields that catch spam bots. Most modern form plugins include this feature automatically, but check your form settings to ensure it's enabled.

6. Install a Security Plugin

Security plugins like Wordfence or Sucuri can block spam submissions at the server level before they reach your forms. Go to Plugins > Add New and search for a security plugin that includes form protection.

Additional Protection Methods

7. Disable Comments Site-Wide

If you don't need comments, disable them entirely. Go to Settings > Discussion and untick "Allow people to submit comments on new posts." For existing posts, you can bulk-edit them to disable comments.

8. Block Specific Countries or IP Ranges

If spam comes from specific regions, some security plugins let you block entire countries or IP ranges. Use this carefully as it might block legitimate visitors.

9. Review Spam Regularly

Check your spam folder weekly. Sometimes legitimate comments get marked as spam. In WordPress, go to Comments > Spam to review flagged content.

If you're still getting excessive spam after following these steps, contact Web60 support for additional server-level protection options.

FAQ

Q: Will Akismet work immediately after installation?

A: Akismet starts working once you activate it with a valid API key. It learns from your site's comment patterns and becomes more effective over time.

Q: Can I recover comments that were marked as spam by mistake?

A: Yes. Go to Comments > Spam in your WordPress dashboard, find the comment, and click "Not Spam" to restore it to your approved comments.

Q: Why am I still getting spam even with plugins installed?

A: Some spam gets through initially while plugins learn your site's patterns. Also check that your plugins are properly configured and up to date.

Q: Will blocking comments hurt my website's SEO?

A: No. Search engines don't require comments for good SEO. Focus on quality content rather than comment volume.

Q: Can I automatically delete spam comments instead of holding them for review?

A: Yes. Most anti-spam plugins have settings to automatically delete obvious spam after a certain period, usually 15-30 days.

Q: Do I need to pay for spam protection?

A: Basic protection is free through plugins like Akismet. Premium versions offer more features, but free tools handle most spam effectively for small business websites.

Last updated: 1 March 2026

← PreviousSocial Media Sharing IssuesNext →SSL Certificate Not Working

Still need help?

Contact our support team for personalised assistance.

Contact Support