About “Trojan.Win32.Zenpak.axdw” infection

The Trojan.Win32.Zenpak.axdw is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Zenpak.axdw virus can do?

Presents an Authenticode digital signature
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)

How to determine Trojan.Win32.Zenpak.axdw?


File Info:
crc32: 397C23C9
md5: 7f1b8cde918e09a4e9831e72a2652a3b
name: upload_file
sha1: 77f28d752452a8e156bb6ff81498c4c42221b3a4
sha256: 2e22b07d3a85592232ff3176e31ef496d1d6c5346456be0767aa36e43535a481
sha512: 54031738387b63b409eba5ec66772c1ab85b5b3ff85fdff5a6adf4c0e1d5c2c38797c476d1a4f559afe609d3a639d03d9ae445f9787750345af90fc17de90ce9
ssdeep: 49152:ij/fGXLA2f8ui3OPIPW05a15qpafeld3OaEmhDUlMS/KbUnzXkfYjQQl7j+zSONX:cFNUXzXkgjQC7j+2OJ
type: PE32+ executable (GUI) x86-64, for MS Windows

Version Info:
LegalCopyright: x7248x6743x6240x65e0xff0cx7ffbx7248x4e0dx7a76xff0cx4ec5x4fddx7559x7f72x540dx6743x3002
InternalName: YUVPlayer.exe
FileVersion: 4.0.0.0
CompanyName: x8fdfx601dx5802x5de5x4f5cx5ba4
ProductName: YUVx64adx653ex5668
ProductVersion: 4.0.0.0
FileDescription: YUVPlayer
OriginalFilename: YUVPlayer.exe
Translation: 0x0804 0x04b0

Trojan.Win32.Zenpak.axdw also known as:

MicroWorld-eScan	Trojan.GenericKD.34793809
FireEye	Trojan.GenericKD.34793809
McAfee	Trojan-FSYK!7F1B8CDE918E
Malwarebytes	Trojan.Bazar
VIPRE	Trojan.Win32.Generic!BT
K7AntiVirus	Trojan ( 005712021 )
BitDefender	Trojan.GenericKD.34793809
K7GW	Trojan ( 005712021 )
TrendMicro	TROJ_FRS.VSNTJG20
Symantec	Trojan.Maltrec.TS
TrendMicro-HouseCall	TROJ_FRS.VSNTJG20
Avast	Win64:CrypterX-gen [Trj]
ClamAV	Win.Dropper.Zenpak-9778477-0
Kaspersky	Trojan.Win32.Zenpak.axdw
Alibaba	Backdoor:Win64/Bazarldr.191cdc3a
ViRobot	Trojan.Win32.Z.Bazar.2864736
Rising	Trojan.Kryptik!8.8 (TFE:5:7RgPTWYhcmG)
Ad-Aware	Trojan.GenericKD.34793809
Sophos	Mal/Generic-S
Comodo	.UnclassifiedMalware@0
F-Secure	Trojan.TR/AD.Bazar.njygp
DrWeb	BackDoor.Bazar.17
Invincea	Mal/Generic-S
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	MalCert-S.CU (A)
Ikarus	Trojan.Win64.Crypt
Avira	TR/AD.Bazar.njygp
MAX	malware (ai score=84)
Microsoft	Trojan:Win64/Bazarldr.G!MSR
Arcabit	Trojan.Generic.D212E951
ZoneAlarm	Trojan.Win32.Zenpak.axdw
GData	Trojan.GenericKD.34793809
ALYac	Trojan.GenericKD.34793809
Panda	Trj/CI.A
ESET-NOD32	a variant of Win64/Kryptik.CBW
Fortinet	W64/Agent.35F2!tr
Webroot	W32.Trojan.Bazarloader
AVG	Win64:CrypterX-gen [Trj]
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (W)
Qihoo-360	Win32/Trojan.292

How to remove Trojan.Win32.Zenpak.axdw?

Trojan.Win32.Zenpak.axdw removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X