I use ubuntu 11.10 and ISPConfig 126.96.36.199
I manage DNS records for customers.
there is one remote user for integration, but it is only used by local CMS in server.
Server does not use SSL connection for ISPConfig.
the target IP address does not belong to my servers. I haven't used them before.
I erased all suspicous A records from panel. and changed admin password. However I am not comfortable enough to say that everything is secure.