Thanks guys. You can probably expect to see me around quite a bit. Honestly, this is probably a better fit for me anyways. As I’m an infosec guy…and that is only a small portion of the forums over there.
Don’t know why people are asking for exploit code on this one. OP obviously has a working exploit if the payload was executed (as evidenced by the open port 4444). The problem is somewhere in the post-exploitation connection attempt.
The only thing I can think of is possibly a firewall sitting between you and the remote system that is white-listed (so drops all incoming connections to ports that are not in standard use on the network). Or a hardened host-based firewall, if target is windows system.