Hi, once I set $wgSpamRegex="/<div/"; I had no more automated spam attacks. This blocks users from entering '<div', which might be bad, but I had no complaints yet. Patrick