Helpful Guide: How to UNINSTALL "HTML:PHISHING-SF" virus? Uninstall "HTML:PHISHING-SF"

I will tell you in this post how to fix the issue manually and how to clean it automatically using a special powerful removal tool. You can download the removal program for free here:


HTML:PHISHING-SF is classified as Win32:PUP-gen (potentially unwanted program).

What is PUP? PUP is crapware.
HTML:PHISHING-SF have several types of unwanted behaviour:

  1. Displaying popup ads.
  2. Hijacking your browser.
  3. Infecting your desktop shortcuts, etc.
  4. Inserting ads to the web pages.

HTML:PHISHING-SF can redirect your browser search, collect your personal information and sell it for advertising.
HTML:PHISHING-SF is usually hard in removing. Some people could not find uninstall program for HTML:PHISHING-SF in the Control Panel.
Sometimes HTML:PHISHING-SF uninstaller does not work.


Will you remove it?
0 0

Download Removal Tool for Free

People say

Visitor post

How HTML:PHISHING-SF got on your computer?

Usually you got HTML:PHISHING-SF with as part of a bundle with another tool you downloaded from the Internet. Since HTML:PHISHING-SF manufacturer pays software developers for distributing HTML:PHISHING-SF within their applications, HTML:PHISHING-SF is often included as part of the installer.
Usually, you have not only one HTML:PHISHING-SF problem, but a bunch of similar WIN32:PUPs.

You have 2 ways to remove HTML:PHISHING-SF:

You have 2 ways

Remove it automatically1. Remove Automatically.
Remove it manually2. Remove Manually.

Why I recommend you to use an automatic way?

  1. You know only one virus name: "HTML:PHISHING-SF", but usually you have infected by a bunch of viruses.
    The UnHackMe program detects this threat and all others.
  2. UnHackMe is quite fast! You need only 5 minutes to check your PC.
  3. UnHackMe uses the special features to remove hard in removal viruses. If you remove a virus manually, it can prevent deleting using a self-protecting module. If you even delete the virus, it may recreate himself by a stealthy module.
  4. UnHackMe is small and compatible with any antivirus.
  5. UnHackMe is fully free for 30-days!

Here’s how to remove HTML:PHISHING-SF virus automatically:

STEP 1: Install UnHackMe (1 minute)

STEP 2: Scan for malware using UnHackMe (1 minute)

STEP 3: Remove HTML:PHISHING-SF virus (3 minutes)

So it was much easier to fix such problem automatically, wasn't it?
That is why I strongly advise you to use UnHackMe for remove HTML:PHISHING-SF redirect or other unwanted software.

How to remove HTML:PHISHING-SF manually:

STEP 1: Check all shortcuts of your browsers on your desktop, taskbar and in the Start menu. Right click on your shortcut and change it's properties.


You can see HTML:PHISHING-SF at the end of shortcut target (command line). Remove it and save changes.

In addition, check this command line for fake browser's trick.
For example, if a shortcut points to Google Chrome, it must have the path:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe.
Fake browser may be: …\Appdata\Roaming\HPReyos\ReyosStarter3.exe.
Also the file name may be: “chromium.exe” instead of chrome.exe.

STEP 2: Investigate the list of installed programs and uninstall all unknown recently installed programs.

check installed programs to uninstall

STEP 3: Open Task Manager and close all processes, related to HTML:PHISHING-SF in their description. Discover the directories where such processes start. Search for random or strange file names.

Remove HTML:PHISHING-SF virus from running processes

Remove HTML:PHISHING-SF virus from running processes

STEP 4: Inspect the Windows services. Press Win+R, type in: services.msc and press OK.

Remove HTML:PHISHING-SF virus from Windows services

Remove HTML:PHISHING-SF virus from Windows services

Disable the services with random names or contains HTML:PHISHING-SF in it's name or description.

STEP 5: After that press Win+R, type in: taskschd.msc and press OK to open Windows Task Scheduler.
Remove HTML:PHISHING-SF from scheduled task list.

Delete any task related to HTML:PHISHING-SF. Disable unknown tasks with random names.

STEP 6: Clear the Windows registry from HTML:PHISHING-SF virus.
Press Win+R, type in: regedit.exe and press OK.

Remove HTML:PHISHING-SF virus from Windows registry

Remove HTML:PHISHING-SF virus from Windows registry

Find and delete all keys/values contains HTML:PHISHING-SF.

STEP 7: Remove HTML:PHISHING-SF from Google Chrome.
Remove HTML:PHISHING-SF Virus from Chrome Extensions

STEP 8: Remove HTML:PHISHING-SF from Internet Explorer.

Set Internet Explorer Homepage

Set Internet Explorer Homepage

STEP 9: Remove HTML:PHISHING-SF from Mozilla Firefox.

Change Firefox Home Page

Change Firefox Home Page

STEP 10: And at the end, clear your basket, temporal files, browser's cache.

But if you miss any of these steps and only one part of virus remains – it will come back again immediately or after reboot.

I use UnHackMe for cleaning ads and viruses from my friend's computers, because it is extremely fast and effective.

STEP 1: Download UnHackMe for free

UnHackMe removes Adware/Spyware/Unwanted Programs/Browser Hijackers/Search Redirectors from your PC easily.

Free Download

UnHackMe is compatible with most antivirus software.
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10 32 or 64-bit. UnHackMe uses minimum of computer resources.

STEP 2: Double click on UnHackMe_setup.exe

You will see a confirmation screen with verified publisher: Greatis Software. Verified Publisher Greatis Software

Once UnHackMe has installed the first Scan will start automatically

Review the detected threats

STEP 3: Carefully review the detected threats!

Click Remove button or False Positive.


3 votes, average: 5.00 out of 53 votes, average: 5.00 out of 53 votes, average: 5.00 out of 53 votes, average: 5.00 out of 53 votes, average: 5.00 out of 5 (3 votes, average: 5.00 out of 5)
You need to be a registered member to rate this.