I’m quite sure it is can anyone check if you have same issue before reporting to lab ?
Go there http://forums.malwarebytes.org/index.php?showuser=92465
So basically nothing dangerous just a forum profile
then click on “Posts” Network shield blocks the page.

Could you break the link please

maybe it is something avast see posted in Malwarebytes forum ?

can you attach a screenshot of the warning…

Here it is

Break that link, as one gets another variant from visiting here: htxp://www.securelist.com/en/descriptions/157319/Trojan.Win32.Qhost.gu
Whenever avast! Web Shields detects part of this code, even without payload, it starts to alert and closes the connection.,

polonus

Hello,
i changed the detection yesterday and it should be fixed in the latest VPS.

It’s fixed, thanks for quick reply.

Yes they fixed it quicker than you corrected the url to a suspect site (oh you didn’t) despite being asked to break the link.

Hi DavidR,

spywar should know by now that in this section we only post links as hxtp or wXw to avoid accidental clicks to possible malcode.
He should also know now that if he wants to post code etc, only to give it in the form of an attached image or image-link…
And where he uses links to descriptions or write-ups, he should mention the link article author(s)
or give credit to those persons that provided info he may have quoted.
These are some rules to go by for those that come to post in this and other sections of the avast webforums more often,

polonus

No problem sorry for that

But the link remains live (I know the detection has now been resolved), but it is just good practice so others also see links to suspect sites should be broken to avoid accidental exposure. As a spywar Malware Hunter I would have though that would be second nature.