Why can't svhuvs. dll be found when running QQ? Some security websites cannot be opened? Repair ~

Last Update:2018-12-05 Source: Internet

Author: User

Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more ＞

Original endurer
1st-

The day before yesterday, a colleague said that when running QQ, he was prompted that he could not find the file svhuvs. dll. Another website could not be opened, and the security mode would display a blue screen. Please try again.

Colleagues installed rising and 360 guard on their computers. Google what is svhuvs. dll, but Google cannot open it. Switch to sogou and open it normally. search to find that svhuvs. dll is a malicious file.

I want to download the security mode that Kingsoft cleaning experts can fix (I have mentioned it several times in the Kaka forum, but the security assistant of rising Kaka has not added this function). I did not expect the website of Kingsoft drug overlord to be opened, the computer has a blue screen.

Restart your computer, download pe_xscan, scan logs, and analyze the logs. The following suspicious items are found:

Pe_xscan 08-08-01 by Purple endurer

Windows XP Service Pack 2 (5.1.2600)
MSIE: 7.0.5730.13
Administrator user group
Normal Mode

O1-hosts: 219.235.3.16 search.114.vnet.cn
O1-hosts: 219.235.3.16 keyword.vnet.cn
O1-hosts: 219.235.3.16 auto.search.msn.com
O1-hosts: 219.235.3.16 search.msn.com
O1-hosts: 219.235.3.16 cnweb.search.live.com
O1-hosts: 219.235.3.16 www.kw..com
O1-hosts: 219.235.3.16 www.5566.net
O1-hosts: 219.235.3.16 360.cn
O1-hosts: 219.235.3.16 360.qihoo.com
O1-hosts: 219.235.3.16 360safe.qihoo.com
O1-hosts: 219.235.3.16 forum.ikaka.com
O1-hosts: 219.235.3.16 www.ikaka.com
O1-hosts: 2018.5.102.243 update.ikaka.com
O1-hosts: 219.235.3.16 forum.jiangmin.com
O1-hosts: 2018.5.102.243 update.jiangmin.com
O1-hosts: 219.235.3.16 tieba.baidu.com
O1-hosts: 219.235.3.16 post.baidu.com
O1-hosts: 219.235.3.16 zhidao.baidu.com
O1-hosts: 219.235.3.16 www.baidu.com
O1-hosts: 2018.5.102.243 update.rising.com.cn
O1-hosts: 219.235.3.16 online.rising.com.cn
O1-hosts: 2018.5.102.243 center.rising.com.cn
O1-hosts: 219.235.3.16 up.duba.net
O1-hosts: 219.235.3.16 vi.duba.net
O1-hosts: 219.235.3.16 shadu.baidu.com
O1-hosts: 219.235.3.16 du.baidu.com
O1-hosts: 219.235.3.16 security.tetec.com
O1-hosts: 219.235.3.16 shadu.duba.net
O1-hosts: 219.235.3.16 bbs.duba.net
O1-hosts: 219.235.3.16 online.jiangmin.com
O1-hosts: 219.235.3.16 cn.mcafee.com
O1-hosts: 219.235.3.16 www.ahn.com.cn
O1-hosts: 219.235.3.16 www.kaspersky.com.cn
O1-hosts: 219.235.3.16 www.pcav.cn
O1-hosts: 219.235.3.16 www.luosoft.com
O1-hosts: 219.235.3.16 www.im286.com
O1-hosts: 219.235.3.16 an.baidu.com
O1-hosts: 219.235.3.16 ma.baidu.com
O1-hosts: 219.235.3.16 bbs.htmlman.net
O1-hosts: 2018.5.102.243 download.rising.com.cn
O1-hosts: 2018.5.102.243 rsup08.rising.com.cn
O1-hosts: 219.235.3.16 2.16.286er.com
O1-hosts: 219.235.3.16 im286.net
O1-hosts: 219.235.3.16 ju.qihoo.com
O1-hosts: 219.235.3.16 bbs.chinaz.com
O1-hosts: 219.235.3.16 www.qihoo.com
O1-hosts: 2018.5.102.243 dnl-cn1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cn15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-eu15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-us15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-ru15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-jp15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-kr15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd5.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd6.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd7.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd8.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd9.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd10.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd11.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd12.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd13.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd14.kaspersky-labs.com
O1-hosts: 2018.5.102.243 dnl-cd15.kaspersky-labs.com
O1-hosts: 2018.5.102.243 downloads1.kaspersky-labs.com
O1-hosts: 2018.5.102.243 downloads2.kaspersky-labs.com
O1-hosts: 2018.5.102.243 downloads3.kaspersky-labs.com
O1-hosts: 2018.5.102.243 downloads4.kaspersky-labs.com
O1-hosts: 2018.5.102.243 downloads5.kaspersky-labs.com
O1-hosts: 219.235.3.16 ishare.sina.com.cn
O1-hosts: 219.235.3.16 search.cn.yahoo.com
O1-hosts: 219.235.3.16 www.google.com
O1-hosts: 219.235.3.16 Google.com
O1-hosts: 219.235.3.16 www.google.cn
O1-hosts: 219.235.3.16 www.yahoo.com.cn
O1-hosts: 219.235.3.16 cn.yahoo.com
O1-hosts: 219.235.3.16 search.tom.com
O1-hosts: 219.235.3.16 zhuansha.duba.net
O1-hosts: 219.235.3.16 buy.duba.net
O1-hosts: 219.235.3.16 client.download.duba.net
O1-hosts: 219.235.3.16 page.so.163.com
O1-hosts: 219.235.3.16 www.sososo.com
O1-hosts: 219.235.3.16 sou.china.com
O1-hosts: 219.235.3.16 test.591jx.com
O1-hosts: 219.235.3.16 a.topxxxx.cn
O1-hosts: 219.235.3.16 picon.chinaren.com
O1-hosts: 219.235.3.16 www.5566.net

O21-ssodl-qtfstqywi ()-{ed5810ca-65d0-ba25-76e1-65d09842c225} = C:/Windows/system32/loanoltrd. dll

The original malicious program modified the hosts file (O1 in hijackthis/pe_xscan log ).

We downloaded Jinshan cleaning experts from other computers and copied them to the USB flash drive to run them. We fixed the security mode and detected two malicious programs; the system prompts that hosts has been maliciously modified and repaired. The o21 items in hijackthis/pe_xscan log are detected and cannot be processed.

Download hijackthis for backup.

Restart the computer to safe mode. This time there is no blue screen, and you can access it normally. Run hijackthis to repair o21 items, but found that the O1 item was not repaired by Kingsoft cleaning expert. Use hijackthis to fix it.

Restart your computer to test. Google, rising, and other websites can be opened normally ~

Download and install QQ again ~

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

Sales Support

1 on 1 presale consultation

Chat Contact Sales
After-Sales Support

24/7 Technical Support 6 Free Tickets per Quarter Faster Response

Open a Ticket
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

Learn More

Why can't svhuvs. dll be found when running QQ? Some security websites cannot be opened? Repair ~

Contact Us

What's Trending

Top 10 Tags

Top 10 Keywords

A Free Trial That Lets You Build Big!

Sales Support

After-Sales Support

Why can't svhuvs. dll be found when running QQ? Some security websites cannot be opened? Repair ~

Contact Us

What's Trending

Top 10 Tags

Top 10 Keywords

Trending Topic

A Free Trial That Lets You Build Big!

Sales Support

After-Sales Support