[Mdaemon-L] Email dianggap spam oleh MDaemon

Tue, 09 Jan 2024 21:15:01 -0800 

Dear Pak Syafril,
Mohon bantuannya untuk analisa log sebagai berikut, penyebab email dari sender dianggap spam ini apa ya pak ? 


Wed 2024-01-10 10:51:10.393: 01: ----------
Wed 2024-01-10 10:51:15.813: 05: [45941226] Session 45941226; child 0001
Wed 2024-01-10 10:51:15.813: 05: [45941226] Accepting SMTP connection from 40.107.255.92:31041 to 103.150.114.155:25 Wed 2024-01-10 10:51:15.813: 07: [45941226] Location Screen says connection is from South Korea, Asia Wed 2024-01-10 10:51:15.814: 03: [45941226] --> 220 mail.persada.id ESMTP MDaemon 23.5.1; Wed, 10 Jan 2024 10:51:15 +0700 Wed 2024-01-10 10:51:15.911: 02: [45941226] <-- EHLO APC01-PSA-obe.outbound.protection.outlook.com Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-mail.persada.id Hello APC01-PSA-obe.outbound.protection.outlook.com [40.107.255.92], pleased to meet you 
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-ETRN
Wed 2024-01-10 10:51:15.912: 07: [45941226] Location Screening hiding AUTH from country South Korea, Asia 
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-8BITMIME
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-ENHANCEDSTATUSCODES
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-PIPELINING
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-CHUNKING
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-STARTTLS
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250 SIZE
Wed 2024-01-10 10:51:16.009: 02: [45941226] <-- STARTTLS
Wed 2024-01-10 10:51:16.009: 03: [45941226] --> 220 2.7.0 Ready to start TLS
Wed 2024-01-10 10:51:16.218: 01: [45941226] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) Wed 2024-01-10 10:51:16.327: 02: [45941226] <-- EHLO APC01-PSA-obe.outbound.protection.outlook.com Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-mail.persada.id Hello APC01-PSA-obe.outbound.protection.outlook.com [40.107.255.92], pleased to meet you 
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-ETRN
Wed 2024-01-10 10:51:16.327: 07: [45941226] Location Screening hiding AUTH from country South Korea, Asia 
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-8BITMIME
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-ENHANCEDSTATUSCODES
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-PIPELINING
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-CHUNKING
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-REQUIRETLS
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250 SIZE
Wed 2024-01-10 10:51:16.429: 02: [45941226] <-- MAIL FROM:<[email protected]> SIZE=1195522 Wed 2024-01-10 10:51:16.445: 05: [45941226] Performing PTR lookup (92.255.107.40.IN-ADDR.ARPA) Wed 2024-01-10 10:51:16.461: 05: [45941226] * D=92.255.107.40.IN-ADDR.ARPA TTL=(60) PTR=[mail-psaapc01on2092.outbound.protection.outlook.com] Wed 2024-01-10 10:51:16.662: 05: [45941226] * D=mail-psaapc01on2092.outbound.protection.outlook.com TTL=(5) A=[40.107.255.92] 
Wed 2024-01-10 10:51:16.662: 05: [45941226] ---- End PTR results
Wed 2024-01-10 10:51:16.665: 05: [45941226] Performing IP lookup (APC01-PSA-obe.outbound.protection.outlook.com) Wed 2024-01-10 10:51:16.696: 05: [45941226] * D=APC01-PSA-obe.outbound.protection.outlook.com TTL=(3) A=[104.47.26.15] 
Wed 2024-01-10 10:51:16.696: 05: [45941226] ---- End IP lookup results
Wed 2024-01-10 10:51:16.711: 05: [45941226] Performing IP lookup (iforte.co.id) Wed 2024-01-10 10:51:16.745: 05: [45941226] *  D=iforte.co.id TTL=(240) A=[202.51.96.13] Wed 2024-01-10 10:51:16.752: 05: [45941226] *  P=000 S=000 D=iforte.co.id TTL=(60) MX=[iforte-co-id.mail.protection.outlook.com] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.137.2] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.132.28] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.132.30] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.137.0] 
Wed 2024-01-10 10:51:16.787: 05: [45941226] ---- End IP lookup results
Wed 2024-01-10 10:51:16.813: 09: [45941226] Performing SPF lookup (APC01-PSA-obe.outbound.protection.outlook.com / 40.107.255.92) Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Policy: v=spf1 include:spf.protection.outlook.com -all Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: performing lookup Wed 2024-01-10 10:51:16.819: 09: [45941226] *    Policy (cache): v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all Wed 2024-01-10 10:51:16.819: 09: [45941226] *    Evaluating ip4:40.92.0.0/15: no match Wed 2024-01-10 10:51:16.819: 09: [45941226] *    Evaluating ip4:40.107.0.0/16: match Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: match 
Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Result: pass
Wed 2024-01-10 10:51:16.819: 09: [45941226] ---- End SPF results
Wed 2024-01-10 10:51:16.819: 09: [45941226] Performing SPF lookup (iforte.co.id / 40.107.255.92) Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Policy: v=spf1 ip4:202.51.102.118 ip4:202.51.102.229 ip4:202.51.102.201 ip4:202.51.102.106 ip4:202.51.104.26 ip4:202.51.104.25 ip4:202.51.104.30 include:spf.protection.outlook.com include:amazonses.com -all Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.118: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.229: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.201: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.106: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.104.26: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.104.25: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.104.30: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: performing lookup Wed 2024-01-10 10:51:16.879: 09: [45941226] *    Policy (cache): v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all Wed 2024-01-10 10:51:16.879: 09: [45941226] *    Evaluating ip4:40.92.0.0/15: no match Wed 2024-01-10 10:51:16.879: 09: [45941226] *    Evaluating ip4:40.107.0.0/16: match Wed 2024-01-10 10:51:16.879: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: match 
Wed 2024-01-10 10:51:16.879: 09: [45941226] *  Result: pass
Wed 2024-01-10 10:51:16.879: 09: [45941226] ---- End SPF results
Wed 2024-01-10 10:51:16.879: 03: [45941226] --> 250 2.1.0 Sender OK
Wed 2024-01-10 10:51:16.879: 02: [45941226] <-- RCPT TO:<[email protected]> Wed 2024-01-10 10:51:16.896: 05: [45941226] Performing DNS-BL lookup (40.107.255.92 - connecting IP) 
Wed 2024-01-10 10:51:17.025: 05: [45941226] *  bl.spamcop.net - passed
Wed 2024-01-10 10:51:17.025: 05: [45941226] ---- End DNS-BL results
Wed 2024-01-10 10:51:17.035: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.036: 02: [45941226] <-- RCPT TO:<[email protected]> 
Wed 2024-01-10 10:51:17.087: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.087: 02: [45941226] <-- RCPT TO:<[email protected]> 
Wed 2024-01-10 10:51:17.126: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.126: 02: [45941226] <-- RCPT TO:<[email protected]> 
Wed 2024-01-10 10:51:17.165: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.287: 02: [45941226] <-- BDAT 1161288 LAST
Wed 2024-01-10 10:51:21.864: 01: [45941226] Message size: 1161288 bytes
Wed 2024-01-10 10:51:21.878: 10: [45941226] Performing DKIM verification
Wed 2024-01-10 10:51:21.878: 10: [45941226] *  File: c:\mdaemon\queues\temp\md5001000001126.tmp Wed 2024-01-10 10:51:21.878: 10: [45941226] *  Message-ID: <kl1pr03mb6898f33352b949ad997c486ce4...@kl1pr03mb6898.apcprd03.prod.outlook.com> Wed 2024-01-10 10:51:22.036: 10: [45941226] * DKIM-Signature 1: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iforte.co.id; s=selector2; <some tags are not logged> Wed 2024-01-10 10:51:22.036: 10: [45941226] *    Verification result: good signature 
Wed 2024-01-10 10:51:22.036: 10: [45941226] *  Result: pass
Wed 2024-01-10 10:51:22.036: 10: [45941226] ---- End DKIM results
Wed 2024-01-10 10:51:22.044: 19: [45941226] Performing DMARC processing
Wed 2024-01-10 10:51:22.044: 19: [45941226] *  File: c:\mdaemon\queues\temp\md5001000001126.tmp Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Message-ID: <kl1pr03mb6898f33352b949ad997c486ce4...@kl1pr03mb6898.apcprd03.prod.outlook.com> 
Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Author domain: iforte.co.id
Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Organizational domain: iforte.co.id Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Query domain: _dmarc.iforte.co.id Wed 2024-01-10 10:51:22.077: 19: [45941226] *    Policy record: v=DMARC1; p=quarantine; pct=20; rua=mailto:[email protected] 
Wed 2024Wed 2024-01-10 10:51:10.393: 01: ----------
Wed 2024-01-10 10:51:15.813: 05: [45941226] Session 45941226; child 0001
Wed 2024-01-10 10:51:15.813: 05: [45941226] Accepting SMTP connection from 40.107.255.92:31041 to 103.150.114.155:25 Wed 2024-01-10 10:51:15.813: 07: [45941226] Location Screen says connection is from South Korea, Asia Wed 2024-01-10 10:51:15.814: 03: [45941226] --> 220 mail.persada.id ESMTP MDaemon 23.5.1; Wed, 10 Jan 2024 10:51:15 +0700 Wed 2024-01-10 10:51:15.911: 02: [45941226] <-- EHLO APC01-PSA-obe.outbound.protection.outlook.com Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-mail.persada.id Hello APC01-PSA-obe.outbound.protection.outlook.com [40.107.255.92], pleased to meet you 
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-ETRN
Wed 2024-01-10 10:51:15.912: 07: [45941226] Location Screening hiding AUTH from country South Korea, Asia 
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-8BITMIME
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-ENHANCEDSTATUSCODES
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-PIPELINING
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-CHUNKING
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250-STARTTLS
Wed 2024-01-10 10:51:15.912: 03: [45941226] --> 250 SIZE
Wed 2024-01-10 10:51:16.009: 02: [45941226] <-- STARTTLS
Wed 2024-01-10 10:51:16.009: 03: [45941226] --> 220 2.7.0 Ready to start TLS
Wed 2024-01-10 10:51:16.218: 01: [45941226] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) Wed 2024-01-10 10:51:16.327: 02: [45941226] <-- EHLO APC01-PSA-obe.outbound.protection.outlook.com Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-mail.persada.id Hello APC01-PSA-obe.outbound.protection.outlook.com [40.107.255.92], pleased to meet you 
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-ETRN
Wed 2024-01-10 10:51:16.327: 07: [45941226] Location Screening hiding AUTH from country South Korea, Asia 
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-8BITMIME
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-ENHANCEDSTATUSCODES
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-PIPELINING
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-CHUNKING
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250-REQUIRETLS
Wed 2024-01-10 10:51:16.327: 03: [45941226] --> 250 SIZE
Wed 2024-01-10 10:51:16.429: 02: [45941226] <-- MAIL FROM:<[email protected]> SIZE=1195522 Wed 2024-01-10 10:51:16.445: 05: [45941226] Performing PTR lookup (92.255.107.40.IN-ADDR.ARPA) Wed 2024-01-10 10:51:16.461: 05: [45941226] * D=92.255.107.40.IN-ADDR.ARPA TTL=(60) PTR=[mail-psaapc01on2092.outbound.protection.outlook.com] Wed 2024-01-10 10:51:16.662: 05: [45941226] * D=mail-psaapc01on2092.outbound.protection.outlook.com TTL=(5) A=[40.107.255.92] 
Wed 2024-01-10 10:51:16.662: 05: [45941226] ---- End PTR results
Wed 2024-01-10 10:51:16.665: 05: [45941226] Performing IP lookup (APC01-PSA-obe.outbound.protection.outlook.com) Wed 2024-01-10 10:51:16.696: 05: [45941226] * D=APC01-PSA-obe.outbound.protection.outlook.com TTL=(3) A=[104.47.26.15] 
Wed 2024-01-10 10:51:16.696: 05: [45941226] ---- End IP lookup results
Wed 2024-01-10 10:51:16.711: 05: [45941226] Performing IP lookup (iforte.co.id) Wed 2024-01-10 10:51:16.745: 05: [45941226] *  D=iforte.co.id TTL=(240) A=[202.51.96.13] Wed 2024-01-10 10:51:16.752: 05: [45941226] *  P=000 S=000 D=iforte.co.id TTL=(60) MX=[iforte-co-id.mail.protection.outlook.com] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.137.2] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.132.28] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.132.30] Wed 2024-01-10 10:51:16.787: 05: [45941226] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.137.0] 
Wed 2024-01-10 10:51:16.787: 05: [45941226] ---- End IP lookup results
Wed 2024-01-10 10:51:16.813: 09: [45941226] Performing SPF lookup (APC01-PSA-obe.outbound.protection.outlook.com / 40.107.255.92) Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Policy: v=spf1 include:spf.protection.outlook.com -all Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: performing lookup Wed 2024-01-10 10:51:16.819: 09: [45941226] *    Policy (cache): v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all Wed 2024-01-10 10:51:16.819: 09: [45941226] *    Evaluating ip4:40.92.0.0/15: no match Wed 2024-01-10 10:51:16.819: 09: [45941226] *    Evaluating ip4:40.107.0.0/16: match Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: match 
Wed 2024-01-10 10:51:16.819: 09: [45941226] *  Result: pass
Wed 2024-01-10 10:51:16.819: 09: [45941226] ---- End SPF results
Wed 2024-01-10 10:51:16.819: 09: [45941226] Performing SPF lookup (iforte.co.id / 40.107.255.92) Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Policy: v=spf1 ip4:202.51.102.118 ip4:202.51.102.229 ip4:202.51.102.201 ip4:202.51.102.106 ip4:202.51.104.26 ip4:202.51.104.25 ip4:202.51.104.30 include:spf.protection.outlook.com include:amazonses.com -all Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.118: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.229: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.201: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.102.106: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.104.26: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.104.25: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating ip4:202.51.104.30: no match Wed 2024-01-10 10:51:16.878: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: performing lookup Wed 2024-01-10 10:51:16.879: 09: [45941226] *    Policy (cache): v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all Wed 2024-01-10 10:51:16.879: 09: [45941226] *    Evaluating ip4:40.92.0.0/15: no match Wed 2024-01-10 10:51:16.879: 09: [45941226] *    Evaluating ip4:40.107.0.0/16: match Wed 2024-01-10 10:51:16.879: 09: [45941226] *  Evaluating include:spf.protection.outlook.com: match 
Wed 2024-01-10 10:51:16.879: 09: [45941226] *  Result: pass
Wed 2024-01-10 10:51:16.879: 09: [45941226] ---- End SPF results
Wed 2024-01-10 10:51:16.879: 03: [45941226] --> 250 2.1.0 Sender OK
Wed 2024-01-10 10:51:16.879: 02: [45941226] <-- RCPT TO:<[email protected]> Wed 2024-01-10 10:51:16.896: 05: [45941226] Performing DNS-BL lookup (40.107.255.92 - connecting IP) 
Wed 2024-01-10 10:51:17.025: 05: [45941226] *  bl.spamcop.net - passed
Wed 2024-01-10 10:51:17.025: 05: [45941226] ---- End DNS-BL results
Wed 2024-01-10 10:51:17.035: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.036: 02: [45941226] <-- RCPT TO:<[email protected]> 
Wed 2024-01-10 10:51:17.087: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.087: 02: [45941226] <-- RCPT TO:<[email protected]> 
Wed 2024-01-10 10:51:17.126: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.126: 02: [45941226] <-- RCPT TO:<[email protected]> 
Wed 2024-01-10 10:51:17.165: 03: [45941226] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 10:51:17.287: 02: [45941226] <-- BDAT 1161288 LAST
Wed 2024-01-10 10:51:21.864: 01: [45941226] Message size: 1161288 bytes
Wed 2024-01-10 10:51:21.878: 10: [45941226] Performing DKIM verification
Wed 2024-01-10 10:51:21.878: 10: [45941226] *  File: c:\mdaemon\queues\temp\md5001000001126.tmp Wed 2024-01-10 10:51:21.878: 10: [45941226] *  Message-ID: <kl1pr03mb6898f33352b949ad997c486ce4...@kl1pr03mb6898.apcprd03.prod.outlook.com> Wed 2024-01-10 10:51:22.036: 10: [45941226] * DKIM-Signature 1: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iforte.co.id; s=selector2; <some tags are not logged> Wed 2024-01-10 10:51:22.036: 10: [45941226] *    Verification result: good signature 
Wed 2024-01-10 10:51:22.036: 10: [45941226] *  Result: pass
Wed 2024-01-10 10:51:22.036: 10: [45941226] ---- End DKIM results
Wed 2024-01-10 10:51:22.044: 19: [45941226] Performing DMARC processing
Wed 2024-01-10 10:51:22.044: 19: [45941226] *  File: c:\mdaemon\queues\temp\md5001000001126.tmp Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Message-ID: <kl1pr03mb6898f33352b949ad997c486ce4...@kl1pr03mb6898.apcprd03.prod.outlook.com> 
Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Author domain: iforte.co.id
Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Organizational domain: iforte.co.id Wed 2024-01-10 10:51:22.044: 19: [45941226] *  Query domain: _dmarc.iforte.co.id Wed 2024-01-10 10:51:22.077: 19: [45941226] *    Policy record: v=DMARC1; p=quarantine; pct=20; rua=mailto:[email protected] Wed 2024-01-10 10:51:22.084: 19: [45941226] *  Checking authentication mechanisms for DMARC alignment Wed 2024-01-10 10:51:22.084: 19: [45941226] *    SPF: domain "iforte.co.id" passed SPF check; and domain is DMARC aligned Wed 2024-01-10 10:51:22.084: 19: [45941226] *    DKIM: domain "iforte.co.id" (from d= of signature #1) verified; and domain is DMARC aligned 
Wed 2024-01-10 10:51:22.084: 19: [45941226] *  Result: pass
Wed 2024-01-10 10:51:22.084: 19: [45941226] ---- End DMARC results
Wed 2024-01-10 10:51:22.100: 06: [45941226] Passing message through AntiVirus (Size: 1161288)... Wed 2024-01-10 10:51:23.153: 06: [45941226] *  Message is clean (no viruses found) scanned by (ClamAV: clean (1.02915s)) 
Wed 2024-01-10 10:51:23.153: 06: [45941226] ---- End AntiVirus results
Wed 2024-01-10 10:51:24.807: 11: [45941226] Passing message through Outbreak Protection... Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Message-ID: <kl1pr03mb6898f33352b949ad997c486ce4...@kl1pr03mb6898.apcprd03.prod.outlook.com> Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Reference-ID: str=0001.0A67341C.659E135F.001C,ss=4,re=0.000,recu=0.000,reip=0.000,cl=4,cld=1,fgs=8 
Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Virus result: 0 - Clean
Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Spam result: 4 - Spam (confirmed) 
Wed 2024-01-10 10:51:24.808: 11: [45941226] *  IWF result: 0 - Clean
Wed 2024-01-10 10:51:24.808: 11: [45941226] ---- End Outbreak Protection results Wed 2024-01-10 10:51:24.823: 03: [45941226] --> 550 5.7.1 Sorry, message looks like spam or phish to me (OP) Wed 2024-01-10 10:51:24.825: 04: [45941226] SMTP session terminated (Bytes in/out: 1164081/4038) 
Wed 2024-01-10 10:51:24.830: 01: ----------
-01-10 10:51:22.084: 19: [45941226] *  Checking authentication mechanisms for DMARC alignment Wed 2024-01-10 10:51:22.084: 19: [45941226] *    SPF: domain "iforte.co.id" passed SPF check; and domain is DMARC aligned Wed 2024-01-10 10:51:22.084: 19: [45941226] *    DKIM: domain "iforte.co.id" (from d= of signature #1) verified; and domain is DMARC aligned 
Wed 2024-01-10 10:51:22.084: 19: [45941226] *  Result: pass
Wed 2024-01-10 10:51:22.084: 19: [45941226] ---- End DMARC results
Wed 2024-01-10 10:51:22.100: 06: [45941226] Passing message through AntiVirus (Size: 1161288)... Wed 2024-01-10 10:51:23.153: 06: [45941226] *  Message is clean (no viruses found) scanned by (ClamAV: clean (1.02915s)) 
Wed 2024-01-10 10:51:23.153: 06: [45941226] ---- End AntiVirus results
Wed 2024-01-10 10:51:24.807: 11: [45941226] Passing message through Outbreak Protection... Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Message-ID: <kl1pr03mb6898f33352b949ad997c486ce4...@kl1pr03mb6898.apcprd03.prod.outlook.com> Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Reference-ID: str=0001.0A67341C.659E135F.001C,ss=4,re=0.000,recu=0.000,reip=0.000,cl=4,cld=1,fgs=8 
Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Virus result: 0 - Clean
Wed 2024-01-10 10:51:24.807: 11: [45941226] *  Spam result: 4 - Spam (confirmed) 
Wed 2024-01-10 10:51:24.808: 11: [45941226] *  IWF result: 0 - Clean
Wed 2024-01-10 10:51:24.808: 11: [45941226] ---- End Outbreak Protection results Wed 2024-01-10 10:51:24.823: 03: [45941226] --> 550 5.7.1 Sorry, message looks like spam or phish to me (OP) Wed 2024-01-10 10:51:24.825: 04: [45941226] SMTP session terminated (Bytes in/out: 1164081/4038) 
Wed 2024-01-10 10:51:24.830: 01: ----------

Dari sender yang sama email tes ini bisa masuk pak.

Wed 2024-01-10 11:42:16.541: 01: ----------
Wed 2024-01-10 11:42:16.380: 05: [45942993] Session 45942993; child 0003
Wed 2024-01-10 11:42:16.380: 05: [45942993] Accepting SMTP connection from 40.107.117.103:14408 to 103.150.114.155:25 Wed 2024-01-10 11:42:16.380: 07: [45942993] Location Screen says connection is from Japan, Asia Wed 2024-01-10 11:42:16.381: 03: [45942993] --> 220 mail.persada.id ESMTP MDaemon 23.5.1; Wed, 10 Jan 2024 11:42:16 +0700 Wed 2024-01-10 11:42:16.464: 02: [45942993] <-- EHLO APC01-TYZ-obe.outbound.protection.outlook.com Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-mail.persada.id Hello APC01-TYZ-obe.outbound.protection.outlook.com [40.107.117.103], pleased to meet you 
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-ETRN
Wed 2024-01-10 11:42:16.464: 07: [45942993] Location Screening hiding AUTH from country Japan, Asia 
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-8BITMIME
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-ENHANCEDSTATUSCODES
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-PIPELINING
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-CHUNKING
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250-STARTTLS
Wed 2024-01-10 11:42:16.464: 03: [45942993] --> 250 SIZE
Wed 2024-01-10 11:42:16.547: 02: [45942993] <-- STARTTLS
Wed 2024-01-10 11:42:16.547: 03: [45942993] --> 220 2.7.0 Ready to start TLS
Wed 2024-01-10 11:42:16.729: 01: [45942993] SSL negotiation successful (TLS 1.2, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) Wed 2024-01-10 11:42:16.812: 02: [45942993] <-- EHLO APC01-TYZ-obe.outbound.protection.outlook.com Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-mail.persada.id Hello APC01-TYZ-obe.outbound.protection.outlook.com [40.107.117.103], pleased to meet you 
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-ETRN
Wed 2024-01-10 11:42:16.813: 07: [45942993] Location Screening hiding AUTH from country Japan, Asia 
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-8BITMIME
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-ENHANCEDSTATUSCODES
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-PIPELINING
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-CHUNKING
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250-REQUIRETLS
Wed 2024-01-10 11:42:16.813: 03: [45942993] --> 250 SIZE
Wed 2024-01-10 11:42:16.916: 02: [45942993] <-- MAIL FROM:<[email protected]> SIZE=21433 Wed 2024-01-10 11:42:16.933: 05: [45942993] Performing PTR lookup (103.117.107.40.IN-ADDR.ARPA) Wed 2024-01-10 11:42:16.950: 05: [45942993] * D=103.117.107.40.IN-ADDR.ARPA TTL=(60) PTR=[mail-tyzapc01on2103.outbound.protection.outlook.com] Wed 2024-01-10 11:42:17.004: 05: [45942993] * D=mail-tyzapc01on2103.outbound.protection.outlook.com TTL=(5) A=[40.107.117.103] 
Wed 2024-01-10 11:42:17.004: 05: [45942993] ---- End PTR results
Wed 2024-01-10 11:42:17.006: 05: [45942993] Performing IP lookup (APC01-TYZ-obe.outbound.protection.outlook.com) Wed 2024-01-10 11:42:17.009: 05: [45942993] * D=APC01-TYZ-obe.outbound.protection.outlook.com TTL=(0) A=[104.47.110.40] 
Wed 2024-01-10 11:42:17.009: 05: [45942993] ---- End IP lookup results
Wed 2024-01-10 11:42:17.022: 05: [45942993] Performing IP lookup (iforte.co.id) Wed 2024-01-10 11:42:17.026: 05: [45942993] *  D=iforte.co.id TTL=(189) A=[202.51.96.13] Wed 2024-01-10 11:42:17.031: 05: [45942993] *  P=000 S=000 D=iforte.co.id TTL=(9) MX=[iforte-co-id.mail.protection.outlook.com] Wed 2024-01-10 11:42:17.034: 05: [45942993] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.137.2] Wed 2024-01-10 11:42:17.034: 05: [45942993] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.137.0] Wed 2024-01-10 11:42:17.034: 05: [45942993] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.132.28] Wed 2024-01-10 11:42:17.034: 05: [45942993] * D=iforte-co-id.mail.protection.outlook.com TTL=(0) A=[52.101.132.30] 
Wed 2024-01-10 11:42:17.034: 05: [45942993] ---- End IP lookup results
Wed 2024-01-10 11:42:17.038: 09: [45942993] Performing SPF lookup (APC01-TYZ-obe.outbound.protection.outlook.com / 40.107.117.103) Wed 2024-01-10 11:42:17.040: 09: [45942993] *  Policy: v=spf1 include:spf.protection.outlook.com -all Wed 2024-01-10 11:42:17.040: 09: [45942993] *  Evaluating include:spf.protection.outlook.com: performing lookup Wed 2024-01-10 11:42:17.043: 09: [45942993] *    Policy: v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all Wed 2024-01-10 11:42:17.043: 09: [45942993] *    Evaluating ip4:40.92.0.0/15: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *    Evaluating ip4:40.107.0.0/16: match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating include:spf.protection.outlook.com: match 
Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Result: pass
Wed 2024-01-10 11:42:17.043: 09: [45942993] ---- End SPF results
Wed 2024-01-10 11:42:17.043: 09: [45942993] Performing SPF lookup (iforte.co.id / 40.107.117.103) Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Policy (cache): v=spf1 ip4:202.51.102.118 ip4:202.51.102.229 ip4:202.51.102.201 ip4:202.51.102.106 ip4:202.51.104.26 ip4:202.51.104.25 ip4:202.51.104.30 include:spf.protection.outlook.com include:amazonses.com -all Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.102.118: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.102.229: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.102.201: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.102.106: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.104.26: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.104.25: no match Wed 2024-01-10 11:42:17.043: 09: [45942993] *  Evaluating ip4:202.51.104.30: no match Wed 2024-01-10 11:42:17.044: 09: [45942993] *  Evaluating include:spf.protection.outlook.com: performing lookup Wed 2024-01-10 11:42:17.044: 09: [45942993] *    Policy (cache): v=spf1 ip4:40.92.0.0/15 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip6:2a01:111:f400::/48 ip6:2a01:111:f403::/49 ip6:2a01:111:f403:8000::/50 ip6:2a01:111:f403:c000::/51 ip6:2a01:111:f403:f000::/52 -all Wed 2024-01-10 11:42:17.044: 09: [45942993] *    Evaluating ip4:40.92.0.0/15: no match Wed 2024-01-10 11:42:17.044: 09: [45942993] *    Evaluating ip4:40.107.0.0/16: match Wed 2024-01-10 11:42:17.044: 09: [45942993] *  Evaluating include:spf.protection.outlook.com: match 
Wed 2024-01-10 11:42:17.044: 09: [45942993] *  Result: pass
Wed 2024-01-10 11:42:17.044: 09: [45942993] ---- End SPF results
Wed 2024-01-10 11:42:17.044: 03: [45942993] --> 250 2.1.0 Sender OK
Wed 2024-01-10 11:42:17.044: 02: [45942993] <-- RCPT TO:<[email protected]> Wed 2024-01-10 11:42:17.060: 05: [45942993] Performing DNS-BL lookup (40.107.117.103 - connecting IP) 
Wed 2024-01-10 11:42:17.153: 05: [45942993] *  bl.spamcop.net - passed
Wed 2024-01-10 11:42:17.153: 05: [45942993] ---- End DNS-BL results
Wed 2024-01-10 11:42:17.154: 03: [45942993] --> 250 2.1.5 Recipient OK
Wed 2024-01-10 11:42:17.256: 02: [45942993] <-- BDAT 9264 LAST
Wed 2024-01-10 11:42:17.258: 01: [45942993] Message size: 9264 bytes
Wed 2024-01-10 11:42:17.263: 10: [45942993] Performing DKIM verification
Wed 2024-01-10 11:42:17.263: 10: [45942993] *  File: c:\mdaemon\queues\temp\md5001000002584.tmp Wed 2024-01-10 11:42:17.263: 10: [45942993] *  Message-ID: <kl1pr03mb68987ad801c9969c7c60a12be4...@kl1pr03mb6898.apcprd03.prod.outlook.com> Wed 2024-01-10 11:42:17.265: 10: [45942993] * DKIM-Signature 1: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iforte.co.id; s=selector2; <some tags are not logged> Wed 2024-01-10 11:42:17.265: 10: [45942993] *    Verification result: good signature 
Wed 2024-01-10 11:42:17.266: 10: [45942993] *  Result: pass
Wed 2024-01-10 11:42:17.266: 10: [45942993] ---- End DKIM results
Wed 2024-01-10 11:42:17.273: 19: [45942993] Performing DMARC processing
Wed 2024-01-10 11:42:17.273: 19: [45942993] *  File: c:\mdaemon\queues\temp\md5001000002584.tmp Wed 2024-01-10 11:42:17.273: 19: [45942993] *  Message-ID: <kl1pr03mb68987ad801c9969c7c60a12be4...@kl1pr03mb6898.apcprd03.prod.outlook.com> 
Wed 2024-01-10 11:42:17.273: 19: [45942993] *  Author domain: iforte.co.id
Wed 2024-01-10 11:42:17.273: 19: [45942993] *  Organizational domain: iforte.co.id Wed 2024-01-10 11:42:17.273: 19: [45942993] *  Query domain: _dmarc.iforte.co.id Wed 2024-01-10 11:42:17.278: 19: [45942993] *    Policy record: v=DMARC1; p=quarantine; pct=20; rua=mailto:[email protected] Wed 2024-01-10 11:42:17.285: 19: [45942993] *  Checking authentication mechanisms for DMARC alignment Wed 2024-01-10 11:42:17.285: 19: [45942993] *    SPF: domain "iforte.co.id" passed SPF check; and domain is DMARC aligned Wed 2024-01-10 11:42:17.286: 19: [45942993] *    DKIM: domain "iforte.co.id" (from d= of signature #1) verified; and domain is DMARC aligned 
Wed 2024-01-10 11:42:17.286: 19: [45942993] *  Result: pass
Wed 2024-01-10 11:42:17.286: 19: [45942993] ---- End DMARC results
Wed 2024-01-10 11:42:17.294: 06: [45942993] Passing message through AntiVirus (Size: 9264)... Wed 2024-01-10 11:42:17.358: 06: [45942993] *  Message is clean (no viruses found) scanned by (ClamAV: clean (0.03898s)) 
Wed 2024-01-10 11:42:17.358: 06: [45942993] ---- End AntiVirus results
Wed 2024-01-10 11:42:17.622: 11: [45942993] Passing message through Outbreak Protection... Wed 2024-01-10 11:42:17.623: 11: [45942993] *  Message-ID: <kl1pr03mb68987ad801c9969c7c60a12be4...@kl1pr03mb6898.apcprd03.prod.outlook.com> Wed 2024-01-10 11:42:17.623: 11: [45942993] *  Reference-ID: str=0001.0A67342F.659E1F4C.001A:SCFSTAT98368960,ss=1,re=-4.000,recu=0.000,reip=0.000,cl=1,cld=1,fgs=0 
Wed 2024-01-10 11:42:17.623: 11: [45942993] *  Virus result: 0 - Clean
Wed 2024-01-10 11:42:17.623: 11: [45942993] *  Spam result: 1 - Clean
Wed 2024-01-10 11:42:17.623: 11: [45942993] *  IWF result: 0 - Clean
Wed 2024-01-10 11:42:17.623: 11: [45942993] ---- End Outbreak Protection results Wed 2024-01-10 11:42:17.626: 07: [45942993] Passing message through Spam Filter (Size: 9264)... Wed 2024-01-10 11:42:17.777: 07: [45942993] *  0.0 HTML_MESSAGE BODY: HTML included in message Wed 2024-01-10 11:42:17.777: 07: [45942993] *  0.1 MIME_HTML_MOSTLY BODY: Multipart message mostly text/html MIME Wed 2024-01-10 11:42:17.777: 07: [45942993] * -0.0 T_SCC_BODY_TEXT_LINE No description available. Wed 2024-01-10 11:42:17.778: 07: [45942993] *  0.1 BODY_SINGLE_WORD Message body is only one word (no spaces) Wed 2024-01-10 11:42:17.778: 07: [45942993] *  0.0 KHOP_HELO_FCRDNS Relay HELO differs from its IP's reverse DNS 
Wed 2024-01-10 11:42:17.778: 07: [45942993] ---- End SpamAssassin results
Wed 2024-01-10 11:42:17.778: 07: [45942993] Spam Filter score/req: 0.20/12.0
Wed 2024-01-10 11:42:17.909: 01: [45942993] Message creation successful: c:\mdaemon\queues\inbound\md5001007481703.msg Wed 2024-01-10 11:42:17.909: 03: [45942993] --> 250 2.6.0 Ok, message saved <Message-ID: <kl1pr03mb68987ad801c9969c7c60a12be4...@kl1pr03mb6898.apcprd03.prod.outlook.com>> 
Wed 2024-01-10 11:42:19.102: 02: [45942993] <-- QUIT
Wed 2024-01-10 11:42:19.102: 04: [45942993] *  Socket error 10054 - Connection was reset by the other side! Wed 2024-01-10 11:42:19.103: 01: [45942993] SMTP session successful (Bytes in/out: 9948/3912) 
Wed 2024-01-10 11:42:19.103: 01: ----------

Terima kasih.

--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke [email protected]
Henti Langgan: Kirim mail ke [email protected]
Versi terakhir: MDaemon 23.5.1, SecurityGateway 9.5.2

Kirim email ke