Selamat Siang Pak Syafril Salah satu user kami menerima SPAM seperti Log di bawah ini
Tue 2018-11-27 21:33:06.205: 01: ---------- Tue 2018-11-27 21:32:02.024: 05: [118560] Session 118560; child 0001 Tue 2018-11-27 21:32:02.024: 05: [118560] Accepting SMTP connection from 153.149.229.26:54780 to 172.16.0.6:25 Tue 2018-11-27 21:32:02.025: 03: [118560] --> 220 bb.ptbmi.com ESMTP MDaemon 18.5.1; Tue, 27 Nov 2018 21:32:02 +0700 Tue 2018-11-27 21:32:02.126: 02: [118560] <-- EHLO mogw1125.ocn.ad.jp Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250-bb.ptbmi.com Hello mogw1125.ocn.ad.jp [153.149.229.26], pleased to meet you Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250-ETRN Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250-AUTH LOGIN PLAIN Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250-8BITMIME Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250-ENHANCEDSTATUSCODES Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250-STARTTLS Tue 2018-11-27 21:32:02.127: 03: [118560] --> 250 SIZE 35840000 Tue 2018-11-27 21:32:02.228: 02: [118560] <-- MAIL FROM:<qqrm8...@tiara.ocn.ne.jp> SIZE=3421 Tue 2018-11-27 21:32:02.231: 05: [118560] Performing PTR lookup (26.229.149.153.IN-ADDR.ARPA) Tue 2018-11-27 21:32:09.908: 05: [118560] * D=26.229.149.153.IN-ADDR.ARPA TTL=(1439) PTR=[mogw1125.ocn.ad.jp] Tue 2018-11-27 21:32:18.032: 05: [118560] * D=mogw1125.ocn.ad.jp TTL=(1439) A=[153.149.229.26] Tue 2018-11-27 21:32:18.032: 05: [118560] ---- End PTR results Tue 2018-11-27 21:32:18.035: 05: [118560] Performing IP lookup (mogw1125.ocn.ad.jp) Tue 2018-11-27 21:32:18.036: 05: [118560] * D=mogw1125.ocn.ad.jp TTL=(1439) A=[153.149.229.26] Tue 2018-11-27 21:32:18.036: 05: [118560] ---- End IP lookup results Tue 2018-11-27 21:32:18.042: 05: [118560] Performing IP lookup (tiara.ocn.ne.jp) Tue 2018-11-27 21:32:25.282: 05: [118560] * D=tiara.ocn.ne.jp TTL=(4) A=[180.37.199.138] Tue 2018-11-27 21:32:37.874: 05: [118560] * P=100 S=000 D=tiara.ocn.ne.jp TTL=(9) MX=[mfgw2.ocn.ad.jp] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.227] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.231] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.228] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.232] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.229] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.233] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.226] Tue 2018-11-27 21:32:45.219: 05: [118560] * D=mfgw2.ocn.ad.jp TTL=(4) A=[153.153.62.230] Tue 2018-11-27 21:32:45.219: 05: [118560] ---- End IP lookup results Tue 2018-11-27 21:32:45.221: 09: [118560] Performing SPF lookup (mogw1125.ocn.ad.jp / 153.149.229.26) Tue 2018-11-27 21:32:54.023: 09: [118560] * Result: none; no SPF record in DNS Tue 2018-11-27 21:32:54.023: 09: [118560] ---- End SPF results Tue 2018-11-27 21:32:54.023: 09: [118560] Performing SPF lookup (tiara.ocn.ne.jp / 153.149.229.26) Tue 2018-11-27 21:32:58.121: 09: [118560] * Policy: v=spf1 a include:spf.ocn.ne.jp ~all Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating a: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating include:spf.ocn.ne.jp: performing lookup Tue 2018-11-27 21:32:58.121: 09: [118560] * Policy (cache): v=spf1 include:spf1.ocn.ne.jp include:spf2.ocn.ne.jp include:spf3.ocn.ne.jp ~all Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating include:spf1.ocn.ne.jp: performing lookup Tue 2018-11-27 21:32:58.121: 09: [118560] * Policy (cache): v=spf1 ip4:60.37.40.0/24 ip4:60.37.51.0/24 ip4:118.23.100.0/24 ip4:118.23.108.0/23 ip4:118.23.180.0/24 ip4:180.8.110.0/23 ip4:122.28.14.0/23 ip4:122.28.30.0/24 ip4:125.170.92.0/24 ip4:61.118.33.0/26 ip4:211.16.9.0/26 ip4:211 Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:60.37.40.0/24: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:60.37.51.0/24: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:118.23.100.0/24: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:118.23.108.0/23: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:118.23.180.0/24: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:180.8.110.0/23: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:122.28.14.0/23: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:122.28.30.0/24: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:125.170.92.0/24: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:61.118.33.0/26: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:211.16.9.0/26: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:211.16.10.0/26: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:211.16.11.0/26: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:211.16.12.0/26: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ip4:211.16.13.0/26: no match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating ~all: match Tue 2018-11-27 21:32:58.121: 09: [118560] * Evaluating include:spf1.ocn.ne.jp: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating include:spf2.ocn.ne.jp: performing lookup Tue 2018-11-27 21:32:58.122: 09: [118560] * Policy (cache): v=spf1 ip4:125.206.148.0/24 ip4:125.206.187.0/24 ip4:222.146.51.0/24 ip4:180.37.203.0/24 ip4:122.1.235.0/24 ip4:118.23.178.0/24 ip4:114.147.58.0/24 ip4:153.128.50.0/24 ip4:153.149.228.0/26 ip4:153.138.214.64/26 ip4:153.138.2 Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:125.206.148.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:125.206.187.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:222.146.51.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:180.37.203.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:122.1.235.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:118.23.178.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:114.147.58.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.128.50.0/24: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.228.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.138.214.64/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.138.215.64/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:202.234.252.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:202.234.253.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:202.234.254.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:202.234.255.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ~all: match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating include:spf2.ocn.ne.jp: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating include:spf3.ocn.ne.jp: performing lookup Tue 2018-11-27 21:32:58.122: 09: [118560] * Policy (cache): v=spf1 ip4:153.149.230.0/26 ip4:153.149.232.0/26 ip4:153.149.233.0/26 ip4:153.149.234.0/26 ip4:153.149.236.0/26 ip4:153.149.227.0/26 ip4:153.149.229.0/26 ip4:153.149.231.0/26 ip4:153.149.235.0/26 ip4:153.149.143.0/24 ip4:153 Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.230.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.232.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.233.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.234.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.236.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.227.0/26: no match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating ip4:153.149.229.0/26: match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating include:spf3.ocn.ne.jp: match Tue 2018-11-27 21:32:58.122: 09: [118560] * Evaluating include:spf.ocn.ne.jp: match Tue 2018-11-27 21:32:58.122: 09: [118560] * Result: pass Tue 2018-11-27 21:32:58.122: 09: [118560] ---- End SPF results Tue 2018-11-27 21:32:58.122: 03: [118560] --> 250 2.1.0 Sender OK Tue 2018-11-27 21:32:58.222: 02: [118560] <-- RCPT TO:<in...@ptbmi.com> Tue 2018-11-27 21:32:58.227: 05: [118560] Performing DNS-BL lookup (153.149.229.26 - connecting IP) Tue 2018-11-27 21:33:07.084: 05: [118560] * cbl.abuseat.org - passed Tue 2018-11-27 21:33:14.397: 05: [118560] * b.barracudacentral.org - passed Tue 2018-11-27 21:33:22.482: 05: [118560] * zen.spamhaus.org - passed Tue 2018-11-27 21:33:22.482: 05: [118560] ---- End DNS-BL results Tue 2018-11-27 21:33:22.483: 03: [118560] --> 250 2.1.5 Recipient OK Tue 2018-11-27 21:33:22.584: 02: [118560] <-- DATA Tue 2018-11-27 21:33:22.584: 01: [118560] Creating temp file (SMTP): d:\mdaemon\queues\temp\08\md50000000176.tmp Tue 2018-11-27 21:33:22.584: 03: [118560] --> 354 Enter mail, end with <CRLF>.<CRLF> Tue 2018-11-27 21:33:22.689: 01: [118560] Message size: 3420 bytes Tue 2018-11-27 21:33:22.690: 10: [118560] Performing DKIM lookup Tue 2018-11-27 21:33:22.690: 10: [118560] * File: d:\mdaemon\queues\temp\08\md50000000176.tmp Tue 2018-11-27 21:33:22.690: 10: [118560] * Message-ID: <a3a4a921-db53-4b2d-b343-7633bb0a0...@tiara.ocn.ne.jp> Tue 2018-11-27 21:33:22.690: 10: [118560] * Result: neutral Tue 2018-11-27 21:33:22.690: 10: [118560] ---- End DKIM results Tue 2018-11-27 21:33:22.693: 19: [118560] Performing DMARC processing Tue 2018-11-27 21:33:22.693: 19: [118560] * File: d:\mdaemon\queues\temp\08\md50000000176.tmp Tue 2018-11-27 21:33:22.693: 19: [118560] * Message-ID: <a3a4a921-db53-4b2d-b343-7633bb0a0...@tiara.ocn.ne.jp> Tue 2018-11-27 21:33:22.693: 19: [118560] * Author domain: tiara.ocn.ne.jp Tue 2018-11-27 21:33:22.693: 19: [118560] * Organizational domain: ocn.ne.jp Tue 2018-11-27 21:33:22.693: 19: [118560] * Query domain: _dmarc.tiara.ocn.ne.jp Tue 2018-11-27 21:33:30.883: 19: [118560] * No DMARC policy record found Tue 2018-11-27 21:33:30.883: 19: [118560] * Query domain: _dmarc.ocn.ne.jp Tue 2018-11-27 21:33:30.883: 19: [118560] * No DMARC policy record found Tue 2018-11-27 21:33:30.883: 19: [118560] * Action taken: none Tue 2018-11-27 21:33:30.883: 19: [118560] * Result: none Tue 2018-11-27 21:33:30.883: 19: [118560] ---- End DMARC results Tue 2018-11-27 21:33:30.886: 11: [118560] Passing message through ClamAV Plugin (d:\mdaemon\queues\temp\08\md50000000176.tmp)... Tue 2018-11-27 21:33:30.886: 11: [118560] * Message-ID: <a3a4a921-db53-4b2d-b343-7633bb0a0...@tiara.ocn.ne.jp> Tue 2018-11-27 21:33:30.902: 11: [118560] * Virus result: 0 - clean Tue 2018-11-27 21:33:30.903: 07: [118560] Passing message through Spam Filter (Size: 3441)... Tue 2018-11-27 21:33:30.990: 07: [118560] * 1.6 BAYES_50 BODY: Bayes spam probability is 40 to 60% Tue 2018-11-27 21:33:30.990: 07: [118560] * [score: 0.5134] Tue 2018-11-27 21:33:30.990: 07: [118560] * -100 USER_IN_WHITELIST_TO address is listed in 'whitelist_to' Tue 2018-11-27 21:33:30.990: 07: [118560] * 0.0 HTML_MESSAGE BODY: HTML included in message Tue 2018-11-27 21:33:30.990: 07: [118560] * 0.0 MIME_QP_LONG_LINE RAW: Quoted-printable line longer than 76 chars Tue 2018-11-27 21:33:30.990: 07: [118560] ---- End SpamAssassin results Tue 2018-11-27 21:33:30.990: 07: [118560] Spam Filter score/req: -98.30/12.0 Tue 2018-11-27 21:33:31.093: 01: [118560] Message creation successful: d:\mdaemon\queues\inbound\07\md50000064508.msg Tue 2018-11-27 21:33:31.093: 03: [118560] --> 250 2.6.0 Ok, message saved <Message-ID: <a3a4a921-db53-4b2d-b343-7633bb0a0...@tiara.ocn.ne.jp>> Tue 2018-11-27 21:33:31.093: 02: [118560] <-- QUIT Tue 2018-11-27 21:33:31.093: 03: [118560] --> 221 2.0.0 See ya in cyberspace Tue 2018-11-27 21:33:31.093: 01: [118560] SMTP session successful (Bytes in/out: 3535/472) Tue 2018-11-27 21:33:31.094: 01: ---------- User meminta untuk blok email SPAM tersebut, untuk melakukan block bagaimana caranya Pak ? apakah yang di block alamat emailnya ? Action : masukan qqrm8...@tiara.ocn.ne.jp ke sender blacklist, apakah benar ? Mohon bantuannya Pak Terimakasih Rievo -- --[mdaemon-l]---------------------------------------------------------- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com Versi terakhir MD 18.5.1, SG 5.5.0
