Selamat Pagi
Pak Syafril mohon di update untuk memblock host apple.proserver.name karena email dari host tersebut adalah spam Berikut log SMPT - (In) Mon 2020-07-06 08:57:31.261: ---------- Mon 2020-07-06 08:57:28.417: [01912339] Session 01912339; child 0002 Mon 2020-07-06 08:57:28.417: [01912339] Accepting SMTP connection from 77.238.123.214:55480 to 172.16.0.6:25 Mon 2020-07-06 08:57:28.417: [01912339] Location Screen says connection is from Iran, Asia Mon 2020-07-06 08:57:28.417: [01912339] --> 220 bb.ptbmi.com ESMTP MDaemon 20.0.0; Mon, 06 Jul 2020 08:57:28 +0700 Mon 2020-07-06 08:57:28.675: [01912339] <-- EHLO apple.proserver.name Mon 2020-07-06 08:57:28.675: [01912339] --> 250-bb.ptbmi.com Hello apple.proserver.name [77.238.123.214], pleased to meet you Mon 2020-07-06 08:57:28.675: [01912339] --> 250-ETRN Mon 2020-07-06 08:57:28.675: [01912339] Location Screening hiding AUTH from country Iran, Asia Mon 2020-07-06 08:57:28.675: [01912339] --> 250-8BITMIME Mon 2020-07-06 08:57:28.675: [01912339] --> 250-ENHANCEDSTATUSCODES Mon 2020-07-06 08:57:28.675: [01912339] --> 250-STARTTLS Mon 2020-07-06 08:57:28.675: [01912339] --> 250 SIZE 36700160 Mon 2020-07-06 08:57:28.933: [01912339] <-- STARTTLS Mon 2020-07-06 08:57:28.933: [01912339] --> 220 2.7.0 Ready to start TLS Mon 2020-07-06 08:57:29.524: [01912339] SSL negotiation successful (TLS 1.2, 521 bit key exchange, 256 bit AES encryption) Mon 2020-07-06 08:57:29.784: [01912339] <-- EHLO apple.proserver.name Mon 2020-07-06 08:57:29.784: [01912339] --> 250-bb.ptbmi.com Hello apple.proserver.name [77.238.123.214], pleased to meet you Mon 2020-07-06 08:57:29.784: [01912339] --> 250-ETRN Mon 2020-07-06 08:57:29.784: [01912339] Location Screening hiding AUTH from country Iran, Asia Mon 2020-07-06 08:57:29.784: [01912339] --> 250-8BITMIME Mon 2020-07-06 08:57:29.784: [01912339] --> 250-ENHANCEDSTATUSCODES Mon 2020-07-06 08:57:29.784: [01912339] --> 250-REQUIRETLS Mon 2020-07-06 08:57:29.784: [01912339] --> 250 SIZE 36700160 Mon 2020-07-06 08:57:30.046: [01912339] <-- MAIL FROM:<[email protected] <mailto:[email protected]> > SIZE=3893 Mon 2020-07-06 08:57:30.050: [01912339] Performing PTR lookup (214.123.238.77.IN-ADDR.ARPA) Mon 2020-07-06 08:57:30.058: [01912339] * D=214.123.238.77.in-addr.arpa TTL=(2854) PTR=[apple.proserver.name] Mon 2020-07-06 08:57:30.072: [01912339] * D=apple.proserver.name TTL=(214) A=[77.238.123.214] Mon 2020-07-06 08:57:30.072: [01912339] ---- End PTR results Mon 2020-07-06 08:57:30.073: [01912339] Performing IP lookup (apple.proserver.name) Mon 2020-07-06 08:57:30.081: [01912339] * D=apple.proserver.name TTL=(214) A=[77.238.123.214] Mon 2020-07-06 08:57:30.081: [01912339] ---- End IP lookup results Mon 2020-07-06 08:57:30.085: [01912339] Performing IP lookup (edalatzadeshiraz.ir) Mon 2020-07-06 08:57:30.093: [01912339] * D=edalatzadeshiraz.ir TTL=(214) A=[77.238.123.214] Mon 2020-07-06 08:57:30.093: [01912339] ---- End IP lookup results Mon 2020-07-06 08:57:30.094: [01912339] Performing SPF lookup (apple.proserver.name / 77.238.123.214) Mon 2020-07-06 08:57:30.094: [01912339] * Policy (cache): v=spf1 include:_spf.google.com +mx +a +ip4:77.238.123.214 ~all Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating include:_spf.google.com: performing lookup Mon 2020-07-06 08:57:30.094: [01912339] * Policy (cache): v=spf1 include:_netblocks.google.com include:_netblocks2.google.com include:_netblocks3.google.com ~all Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating include:_netblocks.google.com: performing lookup Mon 2020-07-06 08:57:30.094: [01912339] * Policy (cache): v=spf1 ip4:35.190.247.0/24 ip4:64.233.160.0/19 ip4:66.102.0.0/20 ip4:66.249.80.0/20 ip4:72.14.192.0/18 ip4:74.125.0.0/16 ip4:108.177.8.0/21 ip4:173.194.0.0/16 ip4:209.85.128.0/17 ip4:216.58.192.0/19 ip4:216.239.32.0/19 ~al Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:35.190.247.0/24: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:64.233.160.0/19: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:66.102.0.0/20: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:66.249.80.0/20: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:72.14.192.0/18: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:74.125.0.0/16: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:108.177.8.0/21: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:173.194.0.0/16: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:209.85.128.0/17: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:216.58.192.0/19: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip4:216.239.32.0/19: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ~all: match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating include:_netblocks.google.com: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating include:_netblocks2.google.com: performing lookup Mon 2020-07-06 08:57:30.094: [01912339] * Policy (cache): v=spf1 ip6:2001:4860:4000::/36 ip6:2404:6800:4000::/36 ip6:2607:f8b0:4000::/36 ip6:2800:3f0:4000::/36 ip6:2a00:1450:4000::/36 ip6:2c0f:fb50:4000::/36 ~all Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip6:2001:4860:4000::/36: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip6:2404:6800:4000::/36: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip6:2607:f8b0:4000::/36: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip6:2800:3f0:4000::/36: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip6:2a00:1450:4000::/36: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ip6:2c0f:fb50:4000::/36: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating ~all: match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating include:_netblocks2.google.com: no match Mon 2020-07-06 08:57:30.094: [01912339] * Evaluating include:_netblocks3.google.com: performing lookup Mon 2020-07-06 08:57:30.095: [01912339] * Policy (cache): v=spf1 ip4:172.217.0.0/19 ip4:172.217.32.0/20 ip4:172.217.128.0/19 ip4:172.217.160.0/20 ip4:172.217.192.0/19 ip4:172.253.56.0/21 ip4:172.253.112.0/20 ip4:108.177.96.0/19 ip4:35.191.0.0/16 ip4:130.211.0.0/22 ~all Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.217.0.0/19: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.217.32.0/20: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.217.128.0/19: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.217.160.0/20: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.217.192.0/19: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.253.56.0/21: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:172.253.112.0/20: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:108.177.96.0/19: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:35.191.0.0/16: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ip4:130.211.0.0/22: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ~all: match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating include:_netblocks3.google.com: no match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating ~all: match Mon 2020-07-06 08:57:30.095: [01912339] * Evaluating include:_spf.google.com: no match Mon 2020-07-06 08:57:30.112: [01912339] * Evaluating +mx: match Mon 2020-07-06 08:57:30.112: [01912339] * Result: pass Mon 2020-07-06 08:57:30.112: [01912339] ---- End SPF results Mon 2020-07-06 08:57:30.112: [01912339] Performing SPF lookup (edalatzadeshiraz.ir / 77.238.123.214) Mon 2020-07-06 08:57:30.112: [01912339] * Policy (cache): v=spf1 +a +mx +ip4:77.238.123.214 ~all Mon 2020-07-06 08:57:30.123: [01912339] * Evaluating +a: match Mon 2020-07-06 08:57:30.123: [01912339] * Result: pass Mon 2020-07-06 08:57:30.123: [01912339] ---- End SPF results Mon 2020-07-06 08:57:30.123: [01912339] --> 250 2.1.0 Sender OK Mon 2020-07-06 08:57:30.389: [01912339] <-- RCPT TO:<[email protected] <mailto:[email protected]> > Mon 2020-07-06 08:57:30.395: [01912339] Performing DNS-BL lookup (77.238.123.214 - connecting IP) Mon 2020-07-06 08:57:30.402: [01912339] * cbl.abuseat.org - passed Mon 2020-07-06 08:57:30.409: [01912339] * b.barracudacentral.org - passed Mon 2020-07-06 08:57:31.131: [01912339] * zen.spamhaus.org - passed Mon 2020-07-06 08:57:31.131: [01912339] ---- End DNS-BL results Mon 2020-07-06 08:57:31.132: [01912339] --> 250 2.1.5 Recipient OK Mon 2020-07-06 08:57:31.389: [01912339] <-- DATA Mon 2020-07-06 08:57:31.390: [01912339] --> 354 Enter mail, end with <CRLF>.<CRLF> Mon 2020-07-06 08:57:31.707: [01912339] Message size: 4251 bytes Mon 2020-07-06 08:57:31.709: [01912339] Performing DKIM verification Mon 2020-07-06 08:57:31.709: [01912339] * File: d:\mdaemon\queues\temp\09\md5001000000974.tmp Mon 2020-07-06 08:57:31.709: [01912339] * Message-ID: <[email protected] <mailto:[email protected]> > Mon 2020-07-06 08:57:31.711: [01912339] * DKIM-Signature 1: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=edalatzadeshiraz.ir; s=default; ; <some tags are not logged> Mon 2020-07-06 08:57:31.711: [01912339] * Verification result: good signature Mon 2020-07-06 08:57:31.713: [01912339] * Result: pass Mon 2020-07-06 08:57:31.713: [01912339] ---- End DKIM results Mon 2020-07-06 08:57:31.718: [01912339] Passing message through AntiVirus (Size: 4251)... Mon 2020-07-06 08:57:31.726: [01912339] * Message is clean (no viruses found) scanned by (Cyren AV) Mon 2020-07-06 08:57:31.726: [01912339] ---- End AntiVirus results Mon 2020-07-06 08:57:31.823: [01912339] Passing message through Outbreak Protection... Mon 2020-07-06 08:57:31.823: [01912339] * Message-ID: <[email protected] <mailto:[email protected]> > Mon 2020-07-06 08:57:31.823: [01912339] * Reference-ID: str=0001.0A150204.5F027F51.007B,ss=4,sh,re=0.000,recu=0.000,reip=0.000,cl=4, cld=1,fgs=8 Mon 2020-07-06 08:57:31.823: [01912339] * Virus result: 0 - Clean Mon 2020-07-06 08:57:31.823: [01912339] * Spam result: 4 - Spam (confirmed) Mon 2020-07-06 08:57:31.823: [01912339] * IWF result: 0 - Clean Mon 2020-07-06 08:57:31.823: [01912339] ---- End Outbreak Protection results Mon 2020-07-06 08:57:31.824: [01912339] Passing message through Spam Filter (Size: 4251)... Mon 2020-07-06 08:57:31.936: [01912339] * 1.6 BAYES_50 BODY: Bayes spam probability is 40 to 60% Mon 2020-07-06 08:57:31.936: [01912339] * [score: 0.4984] Mon 2020-07-06 08:57:31.936: [01912339] * 4.9 MDAEMON_OP_SPAM_HIGH MDaemon: spam/phish Mon 2020-07-06 08:57:31.936: [01912339] * 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts Mon 2020-07-06 08:57:31.936: [01912339] * 0.0 HTML_MESSAGE BODY: HTML included in message Mon 2020-07-06 08:57:31.936: [01912339] * 1.0 PDS_FROM_NAME_TO_DOMAIN From:name looks like To:domain Mon 2020-07-06 08:57:31.936: [01912339] * 1.5 PDS_FRNOM_TODOM_NAKED_TO Naked to From name equals to Domain Mon 2020-07-06 08:57:31.936: [01912339] ---- End SpamAssassin results Mon 2020-07-06 08:57:31.936: [01912339] Spam Filter score/req: 9.20/12.0 Mon 2020-07-06 08:57:32.202: [01912339] Message creation successful: d:\mdaemon\queues\inbound\45\md5001000092674.msg Mon 2020-07-06 08:57:32.202: [01912339] --> 250 2.6.0 Ok, message saved <Message-ID: <[email protected] <mailto:[email protected]> >> Mon 2020-07-06 08:57:32.203: [01912339] <-- QUIT Mon 2020-07-06 08:57:32.203: [01912339] --> 221 2.0.0 See ya in cyberspace Mon 2020-07-06 08:57:32.204: [01912339] SMTP session successful (Bytes in/out: 5496/4362) Mon 2020-07-06 08:57:32.204: ---------- Terima Kasih Rievo -- --[mdaemon-l]---------------------------------------------------------- Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette Arsip: http://mdaemon-l.dutaint.com Dokumentasi : http://mdaemon.dutaint.co.id Berlangganan: Kirim mail ke [email protected] Henti Langgan: Kirim mail ke [email protected] Versi terakhir: MDaemon 20.0.0, SecurityGateway 6.5.2
