YTH Pak Syafril

Pagi Pak,..

Hari ini saya ada teria 2 email "failed authentication" yang berbeda (mohon
cek attachment).

Mohon bantu analisanya Pak, ini perbedaannya apa ya Pak?

Kenapa email yang satu ada log banyak seperti ini ya?

Log tersebut artinya apa ya Pak? mohon bantuan penjelasannya.

 

Terima kasih

 

Best regards, 

Agus 

 

--- Begin Message ---
Account failed at least 3 authentication attempts: "romasta.panjaitan"
romasta.panjai...@os-selnajaya.com

11/20/2017 12:05:39 AM:  IP 112.218.211.227  IMAP
11/20/2017 2:32:37 AM:  IP 222.161.246.150  IMAP
11/20/2017 4:31:05 AM:  IP 125.46.45.214  IMAP

.
+OK 1145 octets
X-MDAV-Processed: mail.os-selnajaya.com, Mon, 20 Nov 2017 04:18:59 +0700
Received: from mail.os-selnajaya.com by mail.os-selnajaya.com (via RAW)
(MDaemon PRO v14.5.3)
        for <administrat...@os-selnajaya.com>; Mon, 20 Nov 2017 04:18:57
+0700
Date: Mon, 20 Nov 2017 04:18:57 +0700
Reply-To: mdae...@os-selnajaya.com
From: "MDaemon at mail.os-selnajaya.com" <mdae...@os-selnajaya.com>
Subject: Account failed authentication numerous times: "valentina.kartika"
valentina.kart...@os-selnajaya.com
To: administrat...@os-selnajaya.com
Message-ID: <mdaemon1663201711200418.aa1857...@mail.os-selnajaya.com>
Mime-Version: 1.0
X-Actual-From: mdae...@os-selnajaya.com
Content-Type: text/plain; charset=iso-8859-1
X-MDRedirect: 1
X-MDRedirect_From: administrat...@os-selnajaya.com
X-Return-Path: <administrat...@os-selnajaya.com>
X-MDaemon-Deliver-To: <agus.tarpi...@os-selnajaya.com>

Account failed at least 3 authentication attempts: "valentina.kartika"
valentina.kart...@os-selnajaya.com

11/20/2017 12:00:33 AM:  IP 119.41.111.216  IMAP
11/20/2017 12:30:36 AM:  IP 31.173.71.190  IMAP
11/20/2017 4:18:54 AM:  IP 124.160.93.172  IMAP

.
+OK 3795 octets
X-MDAV-Processed: mail.os-selnajaya.com, Mon, 20 Nov 2017 03:59:44 +0700
Return-path: <r...@sg04.dewaweb.com>
Authentication-Results: mail.os-selnajaya.com
        spf=none smtp.mailfrom=r...@sg04.dewaweb.com;
        dmarc=none header.from=sg04.dewaweb.com (no DMARC record);
        iprev=pass policy.iprev=46.232.183.142 (PTR
nov-007-i588.relay.mailchannels.net)
Received: from nov-007-i588.relay.mailchannels.net
(nov-007-i588.relay.mailchannels.net [46.232.183.142])
        by mail.os-selnajaya.com (mail.os-selnajaya.com [127.0.0.1])
        (Cipher TLSv1.2:AES-:128) 
        with ESMTPS id md50002664948.msg for
<agus.tarpi...@os-selnajaya.com>;
        Mon, 20 Nov 2017 03:59:43 +0700
X-Spam-Level: 
X-Spam-Status: No, score=0.00 required=5.0
X-Spam-Report:
        *  0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
        *       See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
        *      for more information.
        *      [URIs: os-selnajaya.com]
X-Spam-Processed: mail.os-selnajaya.com, Mon, 20 Nov 2017 03:59:43 +0700
        (processed during SMTP session)
X-MDOP-RefID:
str=0001.0A150207.5A11F0BE.001D,ss=1,re=0.000,recu=0.000,reip=0.000,cl=1,cld
=1,fgs=0 (_st=1 _vt=0 _iwf=0)
X-MDRemoteIP: 46.232.183.142
X-MDHelo: nov-007-i588.relay.mailchannels.net
X-MDArrival-Date: Mon, 20 Nov 2017 03:59:43 +0700
X-Rcpt-To: administrat...@selnajaya.com
X-MDRcpt-To: administrat...@selnajaya.com
X-Return-Path: r...@sg04.dewaweb.com
X-Envelope-From: r...@sg04.dewaweb.com
X-MDaemon-Deliver-To: agus.tarpi...@os-selnajaya.com
X-Sender-Id: p38ruhd5tl|env-sender|r...@sg04.dewaweb.com
Received: from relay.mailchannels.net (localhost [127.0.0.1])
        by relay.mailchannels.net (Postfix) with ESMTP id CA7D32802AA
        for <administrat...@selnajaya.com>; Sun, 19 Nov 2017 20:59:33 +0000
(UTC)
Received: from sg04.dewaweb.com (unknown [100.96.34.11])
        (Authenticated sender: p38ruhd5tl)
        by relay.mailchannels.net (Postfix) with ESMTPA id 2CF73280311
        for <administrat...@selnajaya.com>; Sun, 19 Nov 2017 20:59:32 +0000
(UTC)
X-Sender-Id: p38ruhd5tl|env-sender|r...@sg04.dewaweb.com
Received: from sg04.dewaweb.com (sg04.dewaweb.com [172.17.77.47])
        (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384)
        by 0.0.0.0:2500 (trex/5.10.2);
        Sun, 19 Nov 2017 20:59:33 +0000
X-MC-Relay: Neutral
X-MailChannels-SenderId: p38ruhd5tl|env-sender|r...@sg04.dewaweb.com
X-MailChannels-Auth-Id: p38ruhd5tl
X-Troubled-Supply: 2460b2b456d42454_1511125173650_1464173603
X-MC-Loop-Signature: 1511125173650:2969643903
X-MC-Ingress-Time: 1511125173650
Received: from [103.53.197.234] (port=43359 helo=localhost)
        by sg04.dewaweb.com with esmtps
(TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128)
        (Exim 4.89)
        (envelope-from <r...@sg04.dewaweb.com>)
        id 1eGWgc-0014ZQ-4e
        for administrat...@selnajaya.com; Mon, 20 Nov 2017 04:59:30 +0800
Mime-Version: 1.0
Date: Mon, 20 Nov 2017 04:59:30 +0800
To: administrat...@selnajaya.com
Subject: [Let's Encrypt SSL] FAILURE of renewal of study.os-selnajaya.com
From: r...@sg04.dewaweb.com
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
X-AuthUser: 
Message-Id: <20171119205933.ca7d3280...@relay.mailchannels.net>

Automatic Let's Encrypt renewal for study.os-selnajaya.com was attempted an=
d failed.
This certificate expires on 2017-12-11 13:21:00 +0800 +08.

Unable to renew certificate: The Let's Encrypt HTTP challenge failed: acme =
error 'urn:acme:error:unauthorized': Invalid response from http://study.os-=
selnajaya.com/.well-known/acme-challenge/5bZEMiD0UmRTG2S0_tvOV2vztW-cF3YkMl=
_tRnZAzBo: "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" =
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd";>
<html"

Please contact your web host for more information on how to fix this issue.

.
+OK 4150 octets
From: "MDaemon at mail.os-selnajaya.com" <postmas...@mail.os-selnajaya.com>
To: administrat...@os-selnajaya.com
Subject: WARNING: Message delivery failed
Date: Mon, 20 Nov 2017 03:37:20 +0700
Reply-To: nore...@mail.os-selnajaya.com
Message-ID: <mdaemon2860201711200337.aa3720...@mail.os-selnajaya.com>
X-MDDSN-Message: Yes
Content-Type: multipart/report; report-type=delivery-status;
   boundary=23affc184d904454a0aa36242958cf9f
X-MDRedirect: 1
X-MDRedirect_From: administrat...@os-selnajaya.com
X-Return-Path: <postmas...@mail.os-selnajaya.com>
X-MDaemon-Deliver-To: <agus.tarpi...@os-selnajaya.com>

--23affc184d904454a0aa36242958cf9f
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit

=====================================================================
=  Greetings from the MDaemon mail system at mail.os-selnajaya.com  =
=====================================================================

The following message:

     Session-ID: 452379 (specific to this delivery attempt)
       Queue-ID: pd90000004642.msg
     Message-ID:
mdaemon-f201711171904.aa0427841md50003280...@mail.os-selnajaya.com

could not be delivered to the following recipient(s):

     market...@girigahanagolfresort.com (unrecoverable error)

despite one or more unsuccessful attempts to do so.

No further delivery attempts will be made and the message has been removed
from the queue.

The original message headers follow at the end of this report.  For
information on DSN messages see http://www.altn.com/dsn/.

Please quote the Queue-ID, Session-ID, and Message-ID found above in any
inquiries regarding this message.

========================
=  Session Transcript  =
========================

  [452379] Session 452379; child 0001
  [452379] Parsing message
<xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx\pd90000004642.msg>
  [452379] *  From: miyaj...@os-selnajaya.com
  [452379] *  To: market...@girigahanagolfresort.com
  [452379] *  Subject: Golf booking
  [452379] *  Size (bytes): 2100
  [452379] *  Message-ID:
<mdaemon-f201711171904.aa0427841md50003280...@mail.os-selnajaya.com>
  [452379] *  This message is 2 days old; it has 0 days left to get
delivered
  [452379] Creating delivery failure DSN...
  [452379] *  Recipient: miyaj...@os-selnajaya.com
  [452379] *  Session-ID: 452379
  [452379] *  Queue-ID: pd90000004642.msg
  [452379] *  Message-ID:
mdaemon-f201711171904.aa0427841md50003280...@mail.os-selnajaya.com
  [452379] --- End DSN message creation

========================
=    End Transcript    =
========================

--23affc184d904454a0aa36242958cf9f
Content-Type: message/delivery-status

Reporting-MTA: dns; mail.os-selnajaya.com
Arrival-Date: Fri, 17 Nov 2017 19:04:30 +0700
X-MDaemon-Version: 14.5.3

Final-Recpient: rfc822; market...@girigahanagolfresort.com
Last-Attempt-Date: Mon, 20 Nov 2017 03:37:20 +0700
Status: 5.0.0
Action: failed


--23affc184d904454a0aa36242958cf9f
Content-Type: text/rfc822-headers; charset=7bit

X-MDAV-Processed: mail.os-selnajaya.com, Fri, 17 Nov 2017 19:04:31 +0700
Received: from [x.x.x.x] by mail.os-selnajaya.com 
        with ESMTPA id md50002663705.msg for
<market...@girigahanagolfresort.com>;
        Fri, 17 Nov 2017 19:04:30 +0700
X-Spam-Processed: mail.os-selnajaya.com, Fri, 17 Nov 2017 19:04:30 +0700
        (not processed: message from trusted or authenticated source)
X-MDRemoteIP: 114.124.210.175
X-MDArrival-Date: Fri, 17 Nov 2017 19:04:30 +0700
X-Authenticated-Sender: miyaj...@os-selnajaya.com
X-Return-Path: miyaj...@os-selnajaya.com
X-Envelope-From: miyaj...@os-selnajaya.com
X-MDaemon-Deliver-To: market...@girigahanagolfresort.com
SavedFromEmail: miyaj...@os-selnajaya.com
Date: Fri, 17 Nov 2017 19:04:29 +0700
Subject: Golf booking
Importance: normal
From: "Satoshi Miyajima (OS Selnajaya)" <miyaj...@os-selnajaya.com>
To: market...@girigahanagolfresort.com
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="--_com.samsung.android.email_753395069147920"
Message-ID:
<mdaemon-f201711171904.aa0427841md50003280...@mail.os-selnajaya.com>

--23affc184d904454a0aa36242958cf9f--

.
+OK 1997 octets
Return-path: <al...@os-selnajaya.com>
Authentication-Results: mail.os-selnajaya.com
        auth=pass (cram-md5) smtp.auth=al...@os-selnajaya.com
Received: from FX-D71C45 by mail.os-selnajaya.com (Cipher TLSv1.2:AES-:128) 
        with ESMTPSA id pd50002664936.msg for
<agus.tarpi...@os-selnajaya.com>;
        Mon, 20 Nov 2017 01:02:36 +0700
X-Spam-Processed: mail.os-selnajaya.com, Mon, 20 Nov 2017 01:02:36 +0700
        (not processed: message from trusted or authenticated source)
X-MDRemoteIP: 182.253.176.105
X-MDHelo: FX-D71C45
X-MDArrival-Date: Mon, 20 Nov 2017 01:02:36 +0700
X-Authenticated-Sender: al...@os-selnajaya.com
X-Rcpt-To: it-supp...@os-selnajaya.com
X-MDRcpt-To: it-supp...@os-selnajaya.com
X-Envelope-From: al...@os-selnajaya.com
X-MDaemon-Deliver-To: agus.tarpi...@os-selnajaya.com
X-MDMailing-List: it-supp...@os-selnajaya.com
Precedence: bulk
Sender: it-supp...@os-selnajaya.com
X-MDAV-Processed: mail.os-selnajaya.com, Mon, 20 Nov 2017 01:02:36 +0700
Message-Id: <d1904e0f-cd53-11e7-8000-080037d71c45@080037d71c45>
Subject: Regular Status Report <Attention>
Date: Mon, 20 Nov 2017 01:02:34 +0700
From: al...@os-selnajaya.com
To: it-supp...@os-selnajaya.com
X-Mailer: DocuCentre-V C3375 T2
MIME-Version: 1.0
Content-Type: text/plain;
        charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
List-ID: <it-support.os-selnajaya.com>
List-Post: <mailto:it-supp...@os-selnajaya.com>

==============================================================
This e-mail was sent to you by the E-mail Notification Service.
Product Name
    DocuCentre-V C3375 T2
Host Name
    FX-D71C45
Location
    
IPv4 Address
    192.168.0.205
Serial Number
    718910
==============================================================

[Consumables]
The following errors have occurred.
Toner Cartridge Black
     < Replace Soon >

[Billing Meter]
Billing Meter[1]    147293
Billing Meter[2]    490424
Billing Meter[3]    2494
Billing Meter[4]    637717
Billing Meter[5]    0


.
+OK 1427 octet

--- End Message ---
--- Begin Message ---
Account failed at least 3 authentication attempts: "gita.fardiana"
gita.fardi...@os-selnajaya.com

11/20/2017 12:18:07 AM:  IP 218.108.16.154  IMAP
11/20/2017 4:07:15 AM:  IP 58.53.146.60  IMAP
11/20/2017 4:53:31 AM:  IP 221.4.137.85  IMAP

.
+OK 1104 octet

--- End Message ---

Kirim email ke