First system image that contained infected ashDisp.exe is the one from September.
Couldn't it be a false positive from avast itself? I mean, the updated VPS is detecting them as being infected?
Not likely, since avast! never reported anything to me... scanning my system wouldn't show anything. Now, when I have perfectly clean installation of my system (used one of the cleanest system images I've created just right after installation of Windows), avast! works like a charm. Not a single time it asked me to reboot except when it was doing program update at one point.
Files were definitely infected...
What does VirusTotal say about them?
Trojan.Vundo infection
The strange thing is - if ashDisp.exe was modified (infected), it should announce that when started...
Yes Igor, indeed it's strange.. and it still riddles me. I have no idea as why it was happening.
Sasha,
Any idea where the infection might have come from?
Not sure, because it started so long ago... but it must have been I downloaded some .exe file or something that sneaked inside... that was easy I guess, since avast! never alarmed me. Just to say that I am not visiting those nasty sites, and Site Advisor was always on... when site is marked as green, I am in... if it's suspicious, I am out...