SonyBMG’s XCP software has been used by some of the world’s biggest companies. The ActiveX component doesn’t get uninstalled afterwards and has been proven to be vulnerable to remote code execution. We detect the stealth component as RiskWare and not-a-virus:RiskTool.Win32.XCP.a. We also added detection for CodeSupport to our databases not-A-Virus:Downloader.win32.xCP.codeSupport.a.”]
Source: https://securelist.com/detection-for-xcp-software/30093/