10/16-03:33:14.715026  [**] [1:2002750:10] ET POLICY Reserved IP Space Traffic - Bogon Nets 2 [**] [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:28.455244  [**] [1:22466:7] E2[rb] NETBIOS SMB-DS IPC$ unicode share access [**] [Classification: Generic Protocol Command Decode] [Priority: 3] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:38.336277  [**] [1:299913:1] E2[rb] SHELLCODE x86 0x90 unicode NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:38.406359  [**] [1:292000032:99] E2[rb] BotHunter EXPLOIT LSA exploit [**] [Classification: Misc activity] [Priority: 3] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:38.406359  [**] [1:299913:1] E2[rb] SHELLCODE x86 0x90 unicode NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:38.435468  [**] [1:22000032:6] E2[rb] BLEEDING-EDGE EXPLOIT LSA exploit [**] [Classification: Misc activity] [Priority: 3] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:38.435468  [**] [1:292000032:99] E2[rb] BotHunter EXPLOIT LSA exploit [**] [Classification: Misc activity] [Priority: 3] {TCP} 186.9.32.163:4652 -> 192.168.1.137:445
10/16-03:33:42.299212  [**] [1:3000003:99] E3[rb] BotHunter HTTP-based .exe Upload on backdoor port [**] [Classification: Misc activity] [Priority: 3] {TCP} 192.168.1.137:1031 -> 186.9.32.163:2675
10/16-03:33:45.385026  [**] [1:3000000:99] E3[rb] BotHunter HTTP-based .exe Upload on backdoor port [**] [Classification: Misc activity] [Priority: 3] {TCP} 186.9.32.163:2675 -> 192.168.1.137:1031
10/16-03:33:45.466225  [**] [1:2001683:3] E3[rb] BLEEDING-EDGE Malware Windows executable sent from remote host [**] [Priority: 0] {TCP} 186.9.32.163:2675 -> 192.168.1.137:1031
10/16-03:33:45.466225  [**] [1:5001684:99] E3[rb] BotHunter Malware Windows executable (PE) sent from remote host [**] [Priority: 0] {TCP} 186.9.32.163:2675 -> 192.168.1.137:1031
10/16-03:34:01.358965  [**] [1:2003070:4] E4[rb] ET WORM Korgo.U Reporting [**] [Classification: A Network Trojan was detected] [Priority: 1] {TCP} 192.168.1.137:1037 -> 213.219.245.212:80