DeepGuard Detecting CMD as Exploit
I have an issue with some PCs that CMD.exe process is showing as exploit, I have checked PCs but couldnt find any thing else different that other PCs. Details are below;
Details: DeepGuard blocked an exploit action. Application path: C:\Windows\SysWOW64\cmd.exe File hash: 4048488de6ba4bfef9edf103755519f1f762668f Detection: Exploit:W32/PowerShellStager.D!DeepGuard Rarity: Unknown Reputation: Unknown Process ID: 7476
Just want to be sure that if its FP, do you have any suggestions that how can I be sure ?