Strange FTP traffic...

[Sean Sosik-Hamor <ssh () SHN NU>]

I had some strange FTP traffic a week or two ago and I'm just now
getting around to remember to post it.  ;)  Is anyone familiar with
this scan?  Just looks like a check for a world writable incoming.  I
need to clear out the WaReZ puppies and VCD couriers every once in a
while on this server, is this how they're finding me?

Sep 18 22:38:39 wind ftpd[19573]: mkdir incoming/. 36122218p
Sep 18 22:39:05 wind ftpd[8498]: mkdir incoming/. 1122218p
Sep 18 22:40:40 wind ftpd[14735]: mkdir incoming/.MaD/
Sep 23 02:46:04 wind ftpd[31482]: mkdir incoming/. MaD
Sep 25 11:14:08 wind ftpd[4647]: mkdir incoming/.000925171453p
Sep 25 11:14:08 wind ftpd[4647]: rmdir incoming/.000925171453p
Sep 25 11:14:08 wind ftpd[8516]: mkdir incoming/.000925171454p
Sep 25 11:14:09 wind ftpd[8516]: rmdir incoming/.000925171454p

There are no other strange log entries...

--

. / s t a n l e y / l o o k e d / q u i t e / b o r e d / a n d / s o
m e w h a t / d e t a c h e d , b u t / t h e n / p e n g u i n s / o
f t e n / d o / . ssh () shn nu . / / . http://projects.shn.nu/sean/ . /