Hi Omid Farhang,
So in the end it was a DNS hijack attack as Avira now has confirmed to have taken place:
http://techblog.avira.com/2013/10/08/major-dns-hijacking-affecting-major-websites-including-avira-com/en/My advice to Avira's and avast! as well is to have their own name servers inside their very organizations,
so they can be better be validated and controlled.
As was predicted by me higher up in this thread their will be an enormous surge in DNS-related attacks in the foreseeable future.
Let this not fall on deaf ears! So please avast! team be prepared!
But I think Vlk has confirmed they are prepared to meet any such situation.
polonus