CVE-2005-3474
The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that uses XCP.
Date published : 2005-11-02
http://www.sysinternals.com/blog/2005/10/sony-rootkits-and-digital-rights.html