Most likely this originated here in the Philippines since a Google search shows that majority of the complainants seems to be from Filipinos. In addition the word ‘imgkulot’ fits the phrase “Oh my God, Kulot!”, with ‘kulot’ meaning kinky hair. Although not exactly a derogatory term, it is playful enough to elicit some laughs to those who will interpret it that way, most especially if the owner of the infected computer coincidentally has kinky hair.
Anyway, I spent a couple of hours of a weekend trying to remove the imgkulot virus from a family friend’s computer systems. It was the first time for me to encounter it. These are the symptoms I saw:
1. Infects all storage drives ie. hard drives, flash drives, ipods, mp3 players, floppies, etc.
2. When right clicking a storage drive you will notice “(imgkulot)” getting appended to your Open and Explore option.
3. Double-clicking infected storage drives activates the virus to start infecting other storage drives.
4. In some computer the virus also hides a copy of itself in the System32 folder.
To remove it you need to
1. Go to Start –> Choose the Control Panel –> Click the icon Folder Options. Click the tab View. Select the “Show hidden files and folders” and check “Hide protected operating system files”. Click OK.
2. Type the drive letter of the infected storage drive in START –> RUN. Sample format minus the brackets [C:]. A window of that drive should open.
3. Be careful in doing this as you might accidentally remove important system files needed in starting up your computer. Delete the following:
(a) autorun.inf (b) all files with the name imgkulot. There should be at least three of them.
4. Repeat steps 2 and 3 for the other infected storage drives and in the System32 folder. To go to the System32 folder go to Start–> Click run –> Type minus the brackets [%SystemRoot%/System32/]. Again be extra careful in deleting, most especially when in the System32 folder.
5. Then undo the changes you did in step 1.
6. Restart your computer.
That should do the trick. If it you have a different solution do share it here. Remember if you really want to keep your computer safe try out Linux, but if you have the money, buy yourself a Mac. 🙂