It appears that my WooCommerce site is infected with Malware that I am working on cleaning up but there are spam/Junk users showing up on the site, A lot of them, over 5,000. I can tell they are not real registrations because their names are usually just a string of numbers and letters plus there are many that have the same TLD, .eu, .de, .au, etc it also appears that many of the new entries are done with a cell phone # like vtext.com, vzwpix.com, txt.att.net . I have used Securi cleanup tool, installed Wordfence Premium, and Google reCaptcha on the forms. I am going to add 2 step verification to all users too. Does anyone have experience or advice on how to clean this up or other steps to take?