I’ve gotten the same message, and i also use Avira.
I don’t know how to go about finding the url, does avira even log it? I didn’t see much in the quarantine section either, other than where the file was.
I just got a PM from a supposed “Moderator”. They joined the 10th of February and have 0 posts, and ask me to click a link to rid me of a virus.
Right…
Agree completely for avast however unfortunately my spybot recognises the viruses kept in avasts chest and kept bugging me about them so i got rid of it 
. For effective and free professional anti-virus i would get Avast.This baby gets pretty much everything, it practically scans every single process or action done by the user or the computer or any other process thought of and it gets updated for me atleast once a day if not twice most times You have complete control 
The only downside is that its a free version and not proffessional and so you have to re-register it every year. A small price to pay i think
You noobs. Virus scanners are the biggest scam of this century. Funny how Norton starts picking up “viruses” once subscription time comes around.
Lol well thats norton, it kinda sucks, and i havnt had one virus since Avast so not all of them must be scams
Virus or unwanted program ‘BDS/Bifrose.cdxo [backdoor]’
detected in file '\AppData\Local\Mozilla\Firefox\Profiles\fevxik4i.default\Cache\7523329Dd01.
Action performed: Delete file
Same deal. Loaded up the main webpage about 25 mins ago now and got this warning on Avira.
I already had an e-mail (for) and a private message, while I was reading this I got sent another one. So i’m guessing it’s ongoing, just thought i’d add my 2 cents.
I have adblock and noscript and get no warnings…
In noscript blackmesasource.com is allowed only contextweb.com is forbidden so maybe from this site came the trojan. So someone should check this!
Just got it as well on Avira.
Since my Bitdefender Licence run off, i use Antivir… start scanning … im hatin…
edit: I got two PMs from a strange guy called “ForumModerators”. Who on Mother Doughnut is “ForumModerators” ??.. realy … thats the most stupid try to trap me on a site full of viruses and the most stupid name EVER to fake an Moderator. Which Moderator would name himself “ForumModerators”?? Its so creative like “ImTheBossOfMesa” or “TrustMeImAdmin”…
The same exact thing happened to my website, I’m not sure what happened, but someone injected a java script virus into the homepage. And I too got that message.
I am still not getting any warnings of anything from my A/V program. If someone could post the exact URL of what is triggering the A/V it would be helpful, otherwise I can’t really track down what the issue is.
I can’t sorry… the Problem is that AV log was on “standard” instead of “Full log”. It doesn’t say more 
Aw, ok. Well if anyone else who is having the issue could try to get the full URL it would help me figure out whats going on.
This smiley here indicates that Spycrabz here has got no messages from moderators and it is making him jaleous.
Well I just ran a virus check on everything in the black mesa account folder and it came up with nothing. I’m going to assume that it’s a false positive in the Avira detection program. If anyone is getting any warnings and is NOT using Avira please let us know.
Edit: Also downloaded all of the files from the site and scanned with my PC’s A/V just to be sure, still nothing. I guess it IS possible something could be loading from the ad, but it’s hard to tell without knowing the exact URL of what is being detected.
I find it picks them up, along with suspicious traffic all year round. Haven’t had a virus since getting it. (Though it’s saved me a few times)
As to being a scam, you’ve clearly never lost a PC to a virus, or had to remove them manually! £20 for a 3PC licence is well worth the money! If I’d had it back in the day I’d be +2 PCs and 10-15 days extra on my life.
I bet they give the most sensual massage possible. Ontopic: false pos - use a free av like avast or avg. paying for av is like paying for… software… 
Have the same it says I have a backdoor.
I delete it