Most of these skiddies get ahold of FUD malware nowadays no thanks to sites like hackhound, unkn0wn, etc.
@Dj, fuck, you should sniff anything that looks slightly suspicious, most of these kiddie coders add what they call "anti-sniffer" code that only actually kill wireshark if it's run, so if you try sniff and it closes wireshark it's obvious that you've been had and you can change all your passwords before it's too late. If they don't have "anti-sniffer" you can capture the ftp user / pass and fuck the skiddie over.
Also, never save passwords in your web browser, make sure you have a different password for every site you go on with lower case, UPPER case, num3r5 and signs (#;."\?).