11/02-04:44:17.648353  [**] [1:299913:1] E2[rb] SHELLCODE x86 0x90 unicode NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 211.201.218.62:3373 -> 192.168.1.231:135
11/02-04:44:18.112771  [**] [1:52123:3] E5[rb] REGISTERED FREE ATTACK-RESPONSES Microsoft cmd.exe banner [**] [Classification: Successful Administrator Privilege Gain] [Priority: 1] {TCP} 192.168.1.231:1027 -> 211.201.218.62:707
11/02-04:44:19.742665  [**] [1:3001441:1] E3[rb] TFTP GET .exe from external source [**] [Classification: Successful Administrator Privilege Gain] [Priority: 1] {UDP} 192.168.1.231:1028 -> 211.201.218.62:69
11/02-04:44:19.742665  [**] [1:2008120:1] E3[rb] ET POLICY Outbound TFTP Read Request [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.231:1028 -> 211.201.218.62:69
11/02-04:44:19.742665  [**] [1:1444:3] E3[rb] TFTP GET from external source [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.231:1028 -> 211.201.218.62:69
11/02-04:44:28.972353  [**] [1:3001441:1] E3[rb] TFTP GET .exe from external source [**] [Classification: Successful Administrator Privilege Gain] [Priority: 1] {UDP} 192.168.1.231:1029 -> 211.201.218.62:69
11/02-04:44:28.972353  [**] [1:2008120:1] E3[rb] ET POLICY Outbound TFTP Read Request [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.231:1029 -> 211.201.218.62:69
11/02-04:44:28.972353  [**] [1:1444:3] E3[rb] TFTP GET from external source [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.231:1029 -> 211.201.218.62:69
11/02-04:44:39.400951  [**] [1:2003603:2] E4[rb] ET TROJAN W32.Virut.A joining an IRC Channel [**] [Classification: A Network Trojan was detected] [Priority: 1] {TCP} 192.168.1.231:1032 -> 218.93.205.30:65520
11/02-04:44:41.026837  [**] [1:3000003:99] E3[rb] BotHunter HTTP-based .exe Upload on backdoor port [**] [Classification: Misc activity] [Priority: 3] {TCP} 192.168.1.231:1033 -> 85.114.141.207:80