- I just took some random parts from the mail logs, it just happens to not contain any hotmail/outlook mail addresses.
- I do find those email addresses inside the users list.
So maybe the spam issue and the mail logs are different issues?
22.214.171.124 - - [24/Jun/2016:09:46:02 +0200] "POST /Register/? HTTP/1.1" 200 10413 "https://www.domain.com/Register/?l=2" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0"
126.96.36.199 - - [24/Jun/2016:10:17:36 +0200] "POST /Register/? HTTP/1.1" 200 10420 "https://www.domain.com/Register/?l=2" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Firefox/38.0"
And a bit later they visit the RegisterActivation page.
So looks like this is not the issue then, it's just registration bots.
Strange, reCaptcha clearly isn't enough then...
- The reported spam is real spam, with images and actual sales messages.
Not a registration mail.
So probably need to dig a bit deeper.
Tx for the help!