I've been running on-line services for 15 years and in my experience the best way to combat 95% of spam bots is to simply block the /24 ip range at the firewall.
Another idea, check the referring url, if the person is signing up for an account, but the referring url is not from the wiki, it's a bot. A few lines of php can do this.
