11/12-00:19:40.110417  [**] [1:2002750:10] ET POLICY Reserved IP Space Traffic - Bogon Nets 2 [**] [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 110.14.205.41:1061 -> 192.168.1.195:135
11/12-00:19:41.191267  [**] [1:299913:1] E2[rb] SHELLCODE x86 0x90 unicode NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 110.14.205.41:1061 -> 192.168.1.195:135
11/12-00:19:41.816713  [**] [1:52123:3] E5[rb] REGISTERED FREE ATTACK-RESPONSES Microsoft cmd.exe banner [**] [Classification: Successful Administrator Privilege Gain] [Priority: 1] {TCP} 192.168.1.195:1027 -> 110.14.205.41:707
11/12-00:19:45.903501  [**] [1:3001441:1] E3[rb] TFTP GET .exe from external source [**] [Classification: Successful Administrator Privilege Gain] [Priority: 1] {UDP} 192.168.1.195:1028 -> 110.14.205.41:69
11/12-00:19:45.903501  [**] [1:2008120:1] E3[rb] ET POLICY Outbound TFTP Read Request [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.195:1028 -> 110.14.205.41:69
11/12-00:19:45.903501  [**] [1:1444:3] E3[rb] TFTP GET from external source [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.195:1028 -> 110.14.205.41:69
11/12-00:20:14.316004  [**] [1:3001441:1] E3[rb] TFTP GET .exe from external source [**] [Classification: Successful Administrator Privilege Gain] [Priority: 1] {UDP} 192.168.1.195:1029 -> 110.14.205.41:69
11/12-00:20:14.316004  [**] [1:2008120:1] E3[rb] ET POLICY Outbound TFTP Read Request [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.195:1029 -> 110.14.205.41:69
11/12-00:20:14.316004  [**] [1:1444:3] E3[rb] TFTP GET from external source [**] [Classification: Potentially Bad Traffic] [Priority: 2] {UDP} 192.168.1.195:1029 -> 110.14.205.41:69
11/12-00:21:31.842908  [**] [1:2003603:2] E4[rb] ET TROJAN W32.Virut.A joining an IRC Channel [**] [Classification: A Network Trojan was detected] [Priority: 1] {TCP} 192.168.1.195:1033 -> 218.93.205.30:65520
11/12-00:21:40.027352  [**] [1:2001894:5] ET MALWARE ToolbarPartner Spyware Agent Partner Install [**] [Classification: A Network Trojan was detected] [Priority: 1] {TCP} 192.168.1.195:1035 -> 218.93.205.19:80
11/12-00:21:56.885244  [**] [1:2001683:3] E3[rb] BLEEDING-EDGE Malware Windows executable sent from remote host [**] [Priority: 0] {TCP} 222.73.204.229:888 -> 192.168.1.195:1043
11/12-00:21:56.885244  [**] [1:5001684:99] E3[rb] BotHunter Malware Windows executable (PE) sent from remote host [**] [Priority: 0] {TCP} 222.73.204.229:888 -> 192.168.1.195:1043
11/12-00:21:57.072880  [**] [1:2001683:3] E3[rb] BLEEDING-EDGE Malware Windows executable sent from remote host [**] [Priority: 0] {TCP} 222.73.204.229:888 -> 192.168.1.195:1043