Looking (1) at metawiki and commonswiki the past couple of weeks shows that CAPTCHA as our first level defences is again not suitably responsive to the spambot attacks. Can we please again look at our defensive measures.
Noting that IP addresses seem to be from multiple places, and from the one request that I made for a checkuser at Comons, I was told that it was a diverse range of IP addresses. So it is hard to be able to give helpful information about these sources, though my (light) viewing of IP addresses gives a higher focus to Russian and Ukranian IP addresses.
Again it is not fair nor reasonable to think that we should be addressing these measures through volunteers spending multiple hours reactively having to manually block, check, and update filters for what should effectively be managed by a better front door.
(1) Special:Log/spamblacklist Special:Abuselog