Return-Path: <>
X-Original-To: www-data@webserver
Delivered-To: www-data@webserver
Received: by webserver.centroenergia.cl (Postfix)
	id 26020201D26; Sat, 23 Mar 2024 07:58:21 -0300 (-03)
Date: Sat, 23 Mar 2024 07:58:21 -0300 (-03)
From: MAILER-DAEMON@webserver (Mail Delivery System)
Subject: Undelivered Mail Returned to Sender
To: www-data@webserver
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
	boundary="78C22201C66.1711191501/webserver.centroenergia.cl"
Content-Transfer-Encoding: 8bit
Message-Id: <20240323105821.26020201D26@webserver.centroenergia.cl>

This is a MIME-encapsulated message.

--78C22201C66.1711191501/webserver.centroenergia.cl
Content-Description: Notification
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit

This is the mail system at host webserver.centroenergia.cl.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<-i@webserver> (expanded from <-i>): bad address syntax

</usr/sbin/sendmail@webserver> (expanded from </usr/sbin/sendmail>): unknown
    user: "/usr/sbin/sendmail"

<-t@webserver> (expanded from <-t>): bad address syntax

<oscarnunezmata@gmail.com>: host gmail-smtp-in.l.google.com[142.251.0.27] said:
    550-5.7.26 This mail has been blocked because the sender is
    unauthenticated. 550-5.7.26 Gmail requires all senders to authenticate with
    either SPF or DKIM. 550-5.7.26  550-5.7.26  Authentication results:
    550-5.7.26  DKIM = did not pass 550-5.7.26  SPF [webserver] with ip:
    [200.9.100.182] = did not pass 550-5.7.26  550-5.7.26  For instructions on
    setting up authentication, go to 550 5.7.26
    https://support.google.com/mail/answer/81126#authentication
    b185-20020a6334c2000000b005dc7e782167si3963653pga.462 - gsmtp (in reply to
    end of DATA command)

--78C22201C66.1711191501/webserver.centroenergia.cl
Content-Description: Delivery report
Content-Type: message/delivery-status
Content-Transfer-Encoding: 8bit

Reporting-MTA: dns; webserver.centroenergia.cl
X-Postfix-Queue-ID: 78C22201C66
X-Postfix-Sender: rfc822; www-data@webserver
Arrival-Date: Sat, 23 Mar 2024 07:58:18 -0300 (-03)

Final-Recipient: rfc822; -i@webserver
Original-Recipient: rfc822;-i@webserver
Action: failed
Status: 5.1.3
Diagnostic-Code: X-Postfix; bad address syntax

Final-Recipient: rfc822; /usr/sbin/sendmail@webserver
Original-Recipient: rfc822;/usr/sbin/sendmail@webserver
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user: "/usr/sbin/sendmail"

Final-Recipient: rfc822; -t@webserver
Original-Recipient: rfc822;-t@webserver
Action: failed
Status: 5.1.3
Diagnostic-Code: X-Postfix; bad address syntax

Final-Recipient: rfc822; oscarnunezmata@gmail.com
Original-Recipient: rfc822;oscarnunezmata@gmail.com
Action: failed
Status: 5.7.26
Remote-MTA: dns; gmail-smtp-in.l.google.com
Diagnostic-Code: smtp; 550-5.7.26 This mail has been blocked because the sender
    is unauthenticated. 550-5.7.26 Gmail requires all senders to authenticate
    with either SPF or DKIM. 550-5.7.26  550-5.7.26  Authentication results:
    550-5.7.26  DKIM = did not pass 550-5.7.26  SPF [webserver] with ip:
    [200.9.100.182] = did not pass 550-5.7.26  550-5.7.26  For instructions on
    setting up authentication, go to 550 5.7.26
    https://support.google.com/mail/answer/81126#authentication
    b185-20020a6334c2000000b005dc7e782167si3963653pga.462 - gsmtp

--78C22201C66.1711191501/webserver.centroenergia.cl
Content-Description: Undelivered Message
Content-Type: message/rfc822
Content-Transfer-Encoding: 8bit

Return-Path: <www-data@webserver>
Received: by webserver.centroenergia.cl (Postfix, from userid 33)
	id 78C22201C66; Sat, 23 Mar 2024 07:58:18 -0300 (-03)
To: oscarnunezmata@gmail.com
Subject: ::: Comunidad Solar :: "Your WebSite Has Been Compromised"
X-PHP-Originating-Script: 5000:class-phpmailer.php
Date: Sat, 23 Mar 2024 10:58:18 +0000
From: Bert Lahey <wordpress@comunidadsolar.centroenergia.cl>
Reply-To: hacked@comunidadsolar.cl
Message-ID: <1f54c385a8a4ae78439643501a692749@www.comunidadsolar.cl>
X-Mailer: PHPMailer 5.2.22 (https://github.com/PHPMailer/PHPMailer)
X-WPCF7-Content-Type: text/plain
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8

De: Bert Lahey <hacked@comunidadsolar.cl>
Asunto: Your WebSite Has Been Compromised

Cuerpo del Mensaje
We have hacked your website https://comunidadsolar.cl and extracted your databases.

How did this happen?

Our team has found a vulnerability within your site that we were able to exploit. After finding the vulnerability we were able to get your database credentials and extract your entire database and move the information to an offshore server.

What does this mean?

We will systematically go through a series of steps of totally damaging your reputation. First your database will be leaked or sold to the highest bidder which they will use with whatever their intentions are. Next if there are e-mails found they will be e-mailed that their information has been sold or leaked and your site https://comunidadsolar.cl was at fault thusly damaging your reputation and having angry customers/associates with whatever angry customers/associates do. Lastly any links that you have indexed in the search engines will be de-indexed based off of blackhat techniques that we used in the past to de-index Our targets.

How do i stop this?

We are willing to refrain from destroying your site's reputation for a small fee. The current fee is $3000 in bitcoins (0.044 BTC).

Send the bitcoin to the following Bitcoin address (Make sure to copy and paste):

3AFZe8TWrFmCxKaquRceHf9qfUuRStt5nF 

Once you have paid we will automatically get informed that it was your payment. Please note that you have to make payment within 5 days after receiving this e-mail or the database leak, e-mails dispatched, and de-index of your site WiLL start!

How do i get Bitcoins?

You can easily buy bitcoins via several websites or even offline from a Bitcoin-ATM.

What if i don't pay?

We will start the attack at the indicated date and uphold it until you do, there's no counter measure to this, you will Only end up wasting more money trying to find a solution. We will completely destroy your reputation amongst google and your customers.

This is not a hoax, do not reply to this email, don't try to reason or negotiate, we will not read any replies. Once you have paid we will stop what we were doing and you will never hear from us again!

Please note that Bitcoin is anonymous and no one will find out that you have complied.

--
Este correo fue enviado utilizando contact form en ::: Comunidad Solar :: (http://comunidadsolar.centroenergia.cl)


--78C22201C66.1711191501/webserver.centroenergia.cl--