What is Malpayo and removal instructions
Malpayo is a backdoor that gives the attacker unauthorized remote access to a compromised computer. It allows the intruder to download and upload arbitrary files, collect system and network information. Malpayo includes an integrated keylogger that records all user keystrokes and sends them to the attacker. The backdoor runs on every Windows startup.
Malpayo manual removal:
Delete registry values:
The sys.exe file can be found in C:\Windows\System, C:\Windows\System32 or C:\Winnt\System32 directory.
Malpayo uses 666 and 4999 TCP ports.