Title: StripPlayer

Type: Dialers

Remove StripPlayer. Removal instructions

Severity scale:

(40 / 100)

StripPlayer is a dialer that connects a compromised computer to the Internet by dialing high-cost phone numbers using a modem. It is designed to provide access to pornographic web resources. StripPlayer can get into the system while visiting a web site on the stripplayer.com domain. The user must agree to the installation. The dialer does not attempt to hide from the user.

StripPlayer properties:
• Changes browser settings
• Connects itself to the internet
• Stays resident in background

Automatic StripPlayer removal:

remover for StripPlayer

SpyHunter is recommended remover to uninstall StripPlayer. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manul removal instructions below.

If you failed to remove StripPlayer using SpyHunter please report this to us.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.

STOPzilla

download | review

We are testing STOPzilla's efficiency at removing StripPlayer (2005-09-20 07:18:41)

Malwarebytes Anti Malware

download | review

We are testing Malwarebytes Anti Malware's efficiency at removing StripPlayer (2005-09-20 07:18:41)

Spyware Doctor

download | review | tutorial

We are testing Spyware Doctor's efficiency at removing StripPlayer (2005-09-20 07:18:41)

XoftSpySE Anti Spyware

download | review

StripPlayer manual removal:

FORUM:
Discuss StripPlayer in
spyware removal forum

Kill processes:
stripsetup.exe

HELP:
how to kill malicious processes

Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ActiveStripSetup.EGStripDownload
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ActiveStripSetup.EGStripDownload.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DialerOffline.COMDialer
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\DialerOffline.COMDialer.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GirlControlCom.GirlCom
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GirlControlCom.GirlCom.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CABD7099-6B04-471D-8371-9FDE9C2E6BEA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CEB29DA4-7AFA-4F24-B3CD-17351D590DF0}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{1773B696-B019-4FC1-9EED-B1C7F925F56A}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{20270406-63AD-4C7E-AE8D-BB632E508ACE}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{271D7D74-8E6D-4E6C-86F5-66C064CFB74D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{89161220-A3D9-464F-848C-4EBE0546697D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{BC23F736-C5BE-47FB-B459-1757933E5DF3}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{357AA41A-B7A8-4632-A27D-5B980B25CF43}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A8882720-E26C-4073-8B8A-981D32882AF7}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B0ACF771-F0F7-461F-BEF3-5B1A3BA42F51}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E3F7205F-2AE0-4BF0-816B-2D24A5F20EC7}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/System32/ActiveStripSetup.dll
HKEY_CURRENT_USER\Software\Microsoft\SystemCertificates\TrustedPublisher\Certificates\BD8400524261DF1ADBD8860F22C9CE2B97471448
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Error Dlg Details Pane Open
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Strip-Player

HELP:
how to remove registry entries

Unregister DLLs:
activestripsetup.dll, dialeroffline.dll, girlcontrolcom.dll

HELP:
how to unregister malicious DLLs

Delete files:
stripsetup.exe, activestripsetup.dll, cstripvideo.dll, dialeroffline.dll, girlcontrolcom.dll, listgirls.dll

HELP:
how to remove harmful files

Delete directories:
C:\Program Files\strip-player
Misc:
Exact file location:
cstripvideo.dll, listgirls.dll - C:\Program Files\strip-player
activestripsetup.dll, dialeroffline.dll, girlcontrolcom.dll - C:\Program Files\strip-player, C:\Windows\System, C:\Windows\System32, C:\Winnt\System32

Information added: 2004-03-19 10:00:00
Information updated: 2005-09-20 04:41:26

Additional resources related to StripPlayer:

Attention: If you know or you have a website or page about StripPlayer removal, feel free to add a link to this list: add url

more resources

BigJoe

Installed by ActiveX drive-by-download on porn-related pages from strip-player.com (which might be opened by pop-up advertising).

Installation can happen totally automatically on versions of Internet Explorer older than IE6 Service Pack 1, as a security hole is exploited to add the manufacturers, 'Electronic Group', to the list of publishers you trust, allowing them to install any software they like.

The 'StripSetup' ActiveX control can be used on any web page, by any author, to download and run any executable file. There are no security checks whatsoever.

Reply »

2004 03 01

Post Comment:

Attention: Use this form only if you have additional information about StripPlayer parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.