Written in C++, compressed with UPX

Server:
c:\WINDOWS\SYSTEM\kernel32.dll.exe 

startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices "kernel.dll" 
HKEY_CURRENT_USER\Software\Mirabilis\ICQ\Agent\Apps "icqrun" 

registry added:
HKEY_CLASSES_ROOT\Scandisk\i386