x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

XCP

Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:XCP
Technical name:Rootkit/XCP
Threat level:Low
Alias:SecurityRisk.First4DRM ,SecurityRisk.First4DRM ,not-a-virus:RiskTool.Win32.XCP.a,
Type:Hacking Tool
Effects:  

It is a rootkit installed by the anti-piracy protection software bundled with certain audio CDs from the Sony BMG company, in order to hide the files and entries belonging to the antycopy system. There are certain malware that take advantage of its function, in order to remain unnoticed on computers where the rootkit is installed.

Affected platforms:

Windows 2003/XP/2000/NT

First detected on:Nov. 10, 2005
Detection updated on:March 12, 2007
StatisticsNo
Proactive protection:
Yes, using TruPrevent Technologies

Brief Description 

    

XCP is a rootkit, which is a program used in order to hide files, processes and entries in the Windows Registry.

It is installed by the anti-piracy protection software incorporated in some audio CDs from the company Sony BMG, in order to hide the files and entries belonging to the anti-piracy system. The rootkit hides all the files, directories and entries whose name begins with the text string $sys$.

Certain malware, such as the backdoors Ryknos.A and Ryknos.B exploit that functionality in order to remain unnoticed on computers where the rootkit is installed.

For further information on XCP, Sony BMG has made available a website with more data, which you can access by clicking here.

 

Panda Security's TruPreventTM Technologies prevent any new threat from exploiting this rootkit in the computer where they are installed.

>

Visible Symptoms 

    

XCP is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.