in den letzten Wochen erhalte ich täglich 1-2 Mails im folgenden Stil. Erst ging ich davon aus, dass jemand meine Domain als Absenderadresse verwenden würde, und ich somit die Unzustellbar-Mails zurück bekomme. Dann jedoch habe ich gesehen, dass das Script im Header der E-Mail die ucp.php ist. Kann mit jemand kurz Entwarnung oder Bestätigung geben?
Nachfolgend beispielhaft eine der E-Mails:
phpBB ist stets up to date, gab auch keine Konflikte bei den Updates. Danke!Return-path: <>
Delivery-date: Wed, 06 May 2009 22:21:38 +0200
Received: from mi005.mc1.hosteurope.de ([80.237.138.250])
by server999.webpack.hosteurope.de running ExIM using esmtp
id 1M1ncY-0001eh-Q3; Wed, 06 May 2009 22:21:38 +0200
Received: from server999.webpack.hosteurope.de ([80.237.130.37])
by mx0.webpack.hosteurope.de (mi005.mc1.hosteurope.de) using esmtp
id 1M1ncY-0004ip-6r
for info@meinedomain.de; Wed, 06 May 2009 22:21:38 +0200
Received: from her_exim by server999.webpack.hosteurope.de running ExIM using local
id 1M1ncY-0001ee-53; Wed, 06 May 2009 22:21:38 +0200
X-Failed-Recipients: poextsoge@kibermail.com
Auto-Submitted: auto-generated
From: Mail Delivery System <Mailer-Daemon@server999.webpack.hosteurope.de>
To: info@meinedomain.de
Subject: Mail delivery failed: returning message to sender
Message-Id: <E1M1ncY-0001ee-53@server999.webpack.hosteurope.de>
Date: Wed, 06 May 2009 22:21:38 +0200
X-HE-Virus-Scanned: yes
X-HE-Spam-Level: /
X-HE-Spam-Score: 0.3
X-HE-Spam-Report: Content analysis details: (0.3 points)
pts rule name description
---- ---------------------- --------------------------------------------------
0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines
0.2 TW_HP BODY: Odd Letter Triples with HP
0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS
Envelope-to: info@meinedomain.de
=====================================================
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
poextsoge@kibermail.com
SMTP error from remote mail server after RCPT TO:<poextsoge@kibermail.com>:
host mail.mymail-in.net [217.20.163.8]: 550 5.1.1 <poextsoge@kibermail.com>:
Recipient address rejected: User unknown in virtual mailbox table
------ This is a copy of the message's headers. ------
Return-path: <info@meinedomain.de>
Received: from nobody by server999.webpack.hosteurope.de running ExIM using local
id 1M1nc6-0001e7-PG; Wed, 06 May 2009 22:21:10 +0200
To: "=?UTF-8?B?RGlrZXBoZWxl?=" <poextsoge@kibermail.com>
Subject: =?UTF-8?B?V2VsY29tZSB0byAidGlhbW9pdGFsaWEuZGUi?=
X-PHP-Script: forum.meineseite.de/ucp.php for 93.190.142.78
From: <webmaster@meineseite.de>
Reply-To: <webmaster@meineseite.de>
Sender: <webmaster@meineseite.de>
MIME-Version: 1.0
Message-ID: <4cf879b49d0fe8147081b6b55a968485@forum.meineseite.de>
Date: Wed, 06 May 2009 22:21:10 +0200
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: PhpBB3
X-MimeOLE: phpBB3
X-phpBB-Origin:
X-AntiAbuse: Board servername - forum.meineseite.de
X-AntiAbuse: User_id - 1
X-AntiAbuse: Username - Anonymous
X-AntiAbuse: User IP - 93.190.142.78
) - und aus Besorgnis, dass sich dahinter vielleicht doch mehr verstecken könnte.
super-