Intrusion Prevention



This indicates detection of the CMD.EXE shell.
CMD.EXE reverse shell is classified as a remote shell with backdoor properties. Backdoor trojans have the capability to receive remote connections and perform actions against the compromised system.

Affected Products

Any unprotected Windows system is vulnerable to the attack.


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Monitor the traffic from that network for any suspicious activity.
Use AntiVirus software to scan and clean the system.