well all, since my previous post were not popular. i did reformat my comp and it is still appearing. although i sent all my data to ext hdd and cleanup everything. i suspect my backup data was infected but i couldnt find any of it. im so frustrated any html file i face will be infected with jl.chura.pl sh*t so i decided to do tips and tricks, found out that usually, after vista UAC asking, allow or cancel, the virus will come out in C:\windows\temp as a .tmp.mdmp file my avast will detect and delete it but i dont know where is the source so i decided to turn on process monitor from the damn sysinternals and found out, after some tricks, the .mdmp did not comes out (omg its so clever) and the another virus comes instead. it was created by wininit.exe further trying, no luck. cant seem to get the root of the .tmp.mdmp file.. anyone please? im tired after deleting some of my data and reformat but its still here. HELP!