Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
Published Oct 15, 2012 | Updated Nov 07, 2017

Backdoor:Win32/Qakbot!lnk

Detected by Microsoft Defender Antivirus

Aliases: Exploit.Win32.CVE-2010-2568.gen (Kaspersky) CVE_2010_2568.A (Norman) EXP/CVE-2010-2568.U (Avira) Exploit.CVE-2010-2568.Gen (BitDefender) Exploit.CplLnk (Dr.Web) LNK/Exploit.CVE-2010-2568 trojan (ESET) Backdoor.Win32.Qakbot (Ikarus) LNK_QAKBOT.SM (Trend Micro)

Summary

Microsoft Defender Antivirus detects and removes this threat.

Backdoor:Win32/Qakbot!lnk is a malicious shortcut file that exploits the vulnerability described in CVE-2010-2568 and resolved with the release of Microsoft Security Bulletin MS10-046. It infects your computer with another malware.

Update vulnerable applications

This threat exploits a known vulnerability described in CVE-2010-2568, in Windows. After removing this threat, make sure that you install the updates available from the vendor. You can read more about the vulnerability, as well as where to download the software update, in Microsoft Security Bulletin MS10-046.

For more information on this threat, read: Mitigating and eliminating info-stealing Qakbot and Emotet in corporate networks

Use the following free Microsoft software to detect and remove this threat:

You should also run a full scan. A full scan might find hidden malware. 

Use cloud protection 

Use cloud protection to help guard against the latest malware threats. It’s turned on by default for Microsoft Security Essentials and Microsoft Defender Antivirus for Windows 10. 

Go to Settings > Update & security > Windows Defender > Windows Defender Security Center > Virus & threat protection and make sure that your Cloud-based Protection settings is turned On

Get more help

You can also visit our advanced troubleshooting page or search the Microsoft virus and malware community for more help.

If you’re using Windows XP, see our Windows XP end of support page.

Follow us