spam issues we can usually identify, we also have the scheduled reports to help with that. But the issue seems to be with abuse detection which is not logged at all, so there is no way at all to tell what caused it. The last one for example was caused by too many successive connections in 5 minutes as client had 68 users all connecting every couple of minutes. But there was no way at all to tell this, not a single thing in the logs. All we had was the blocked IP in the block list, but no explanation why.