11/13-01:11:19.280529  [**] [1:3000006:99] E3[rb]  BotHunter MALWARE executable upload [**] [Classification: Misc activity] [Priority: 3] {TCP} 78.9.84.36:2576 -> 192.168.1.163:445
11/13-01:11:19.280904  [**] [1:299998:1] E2[rb] SHELLCODE x86 inc ebx NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 78.9.84.36:2576 -> 192.168.1.163:445
11/13-01:11:19.280904  [**] [1:21390:5] E2[rb] REGISTERED FREE SHELLCODE x86 inc ebx NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 78.9.84.36:2576 -> 192.168.1.163:445
11/13-01:11:19.287150  [**] [1:299998:1] E2[rb] SHELLCODE x86 inc ebx NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 78.9.84.36:2576 -> 192.168.1.163:445
11/13-01:11:19.287150  [**] [1:21390:5] E2[rb] REGISTERED FREE SHELLCODE x86 inc ebx NOOP [**] [Classification: Executable code was detected] [Priority: 1] {TCP} 78.9.84.36:2576 -> 192.168.1.163:445
11/13-01:11:20.108781  [**] [1:2007726:2] E3[rb] ET ATTACK RESPONSE Unusual FTP Server Banner on High Port (StnyFtpd) [**] [Classification: A Network Trojan was detected] [Priority: 1] {TCP} 78.9.84.36:53431 -> 192.168.1.163:1027
11/13-01:11:21.176139  [**] [1:2001683:3] E3[rb] BLEEDING-EDGE Malware Windows executable sent from remote host [**] [Priority: 0] {TCP} 78.9.84.36:2926 -> 192.168.1.163:68
11/13-01:11:21.176139  [**] [1:5001684:99] E3[rb] BotHunter Malware Windows executable (PE) sent from remote host [**] [Priority: 0] {TCP} 78.9.84.36:2926 -> 192.168.1.163:68