Hello! I use AVG anti-virus, the free version, and 2 days ago, it found Trojan horse Small.GUH virus (object name c:\Windows\System32\svchost.exe) and shows it is removed. However, each time it says it has taken care of it but then it shows up the next time I scan. So is the virus gone or not? There is nothing showing in the Virus Vault and I’m concerned. Why didn’t AVG block it in the first place if it was a well known virus. And what is the best way to get rid of this virus without coming back? Any help will be highly appreciated.
Trojan horse Small.GUH is a highly dangerous Trojan that can be installed on Windows XP, Windows Vista, Windows 7 or even Windows 8 (8.1) computer without any approval. Once it is installed, it injects its own start-up registry entries to Windows registry, therefore it can run every time your computer boots up. Whenever you are working on the computer, an alert will keep popping up, saying that Trojan horse Small.GUH virus is found but it never provides a way to heal it. This stubborn virus keeps coming back on the next scan or it displays an error message like “Cannot be removed Element Not Found” to block any action that can remove itself.
With no doubt, Trojan horse Small.GUH Virus can cause multiple problems as soon as it is downloaded on a system. It can reduce your PC performance and create many junk files to wreak chaos. Those junk files will take up your system resource and make your CPU usage high, therefore it would take a long time for you to load up your desktop, your programs or even the webpage you try to open. On the other hand, it is able to change your browser settings without your knowledge. So it can harass you with endless pop-up or pop-under adverts for goods or services that you probably have little to no interest in whenever you surf the web. Your default homepage and search engine could be modified to be any of the corrupted pages as well. And the worse is that you may also experience other problems like blue screen of death or system crash. Like other Trojan viruses, this one also has the ability to open backdoor and install various malware or spyware to the compromised system, therefore victims should remove Trojan horse Small.GUH manually as quickly as possible.
Slow down your PC speed notably.
Add other dangerous Trojan or Spyware to your system secretly.
Allow the hacker to access your entire system.
Collect all your personal information and transfer to a remote hacker.
Destroy critical system files and make PC unstable.
From malicious drive-by-download scripts from corrupted porn and shareware / freeware websites.
Through spam email attachments, media downloads and social networks.
When clicking suspicious pop-ups or malicious links.
Open unknown email or download media files that contain the activation code of the virus.
Note: No matter how the virus accesses your PC, users should know that there are no tools can remove this pesky Trojan automatically at this moment, it is suggested users not spend much time in downloading or paying any security software which claims can delete this stubborn virus. It is totally useless. To completely get rid of Trojan horse Small.GUH virus, professional manual guide is needed.
Currently many computer users had the same experience that this virus couldn’t be removed by any anti-virus applications. So the manual approach is always required to combat this virus. And here is the step-by-step removal guide for all computer users.
1. End the malicious process from Task Manager.
Once Trojan horse Small.GUH virus is installed, computer user may notice that CPU usage randomly jumps to 100 percent. At any time Windows always has many running processes. A process is an individual task that the computer runs. In general, the more processes, the more work the computer has to do and the slower it will run. If your system’s CPU spike is constant and remain at a constant 90-95%, users should check from Task Manager and see if there is a suspicious process occupying system resources and then end it immediately.
(The name of the virus process can be random.)
Press Ctrl+Shift+Esc to quickly bring up Task Manager Window:
2. Show hidden files and folders.
Open Folder Options by clicking the Start button, clicking Control Panel, clicking Appearance and Personalization, and then clicking Folder Options.
Click the View tab.
Under Advanced settings, click Show hidden files and folders, uncheck Hide protected operating system files (Recommended) and then click OK.
3. Open Registry entries. Find out the malicious files and entries and then delete all.
Attention: Always be sure to back up your PC before making any changes.
a. Press Windows key + R to open Run box. In the “Open” field, type “regedit” and click the “OK” button.
Then a Registry Editor window will pop up as the following picture shows:
b. Search malicious files and registry entries and then remove all of them:
%AllUsersProfile%\[random]
%AppData%\Roaming\Microsoft\Windows\Templates\[random]
%AllUsersProfile%\Application Data\.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\[random]
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Temp
Trojan horse Small.GUH virus is a dangerous Trojan detected by AVG antivirus that targets every computer user range from individual, educational institutions, up to known organizations. It can disable your security software, leaving you wide open on the internet so that the remote hacker can easily attack your PC without your knowledge. After it is installed, the virus can perform lots of harmful activities to interrupt your browsing activities and even violate your privacy. With the help of this Trojan, user’s keystrokes can be captured and personal information could be sent to hackers. As mentioned above, it is highly suggested users delete Trojan horse Small.GUH virus manually as quickly as possible.
Note: If you are not knowledgeable enough to be able to distinguish the location of this virus, or you are afraid of making mistake during the manual removal, please contact experts from Yoocare Online Tech Support for further help.
Published by on February 20, 2015 1:40 am, last updated on February 20, 2015 1:41 am
Leave a Reply
You must be logged in to post a comment.