This is not going to be a linear explanation at all... By the way, the missing L is not a typo.

I think I got it right after installing OOO's base 1.3 file from FileShack, and then Comodo gave me the pop-up message. I scanned the single file and it didn't detect anything.

Another thing thats bugging me lurks in my memory (my brain not my computer). I had to reinstalled Wrye Bash before installing OOO and so I did. When I looked in the start menu all it had was the uninstall button. I don't remember if it was mispelled with a missing L (if this fact mattered at all). I deleted this start-menu folder before installing OOO.

Should I worry at all? I just got Comodo to "clean" the file. Does anyone have any suggestions?

http://img826.imageshack.us/f/uninstalvirus.jpg/

Note: In the pic it shows I was in my back up folder. This was actually the second time I got this message. Maybe it's not the OOO base file I downloaded at all. Is it Wrye Bash?

"Heur.Suspicious" means that it discovered what it thinks is some suspicious looking code although it hasn't been attributed to a specific virus signature. This level of detection is also the most likely to come up with false positives, I'd think.

Heur. being short for "heuristic". Learning programs. It's found something it's "learned" could be bad. It's not, and you know it's not too, so just ignore.

As an aside, it is recommended that you use OOO 1.33 patched to 1.34 beta. See the http://www.gamesas.com/index.php?/topic/1108040-relz-oscuros-oblivion-overhaul-133/page__p__16231540__hl__%28Relz%29%20Oscuro%27s__fromsearch__1&#entry16231540. :foodndrink:

I agree with Comodo! I find that uninstaller highly suspicious, and recommend you get rid of it immediately - after all, why on earth would you want to get rid of OOO? Anything that does that is obviously doing a bad thing and must be purged.

Apologies for the rubbish attempt at humor. My car blew up, I haven't slept in 29 hours, and haven't eaten more than a sandwich in 15 hours.

What Tofolo said. Skip 1.3 and go for OOO 1.33 Complete and 1.34 Beta 5 instead. Check http://www.gamesas.com/index.php?/topic/1115084-relz-fcom-convergence-and-ufcom-66/ for download links, instructions.

I strongly suggest that you listen to wrinklyninja and Arkngt.

In the future you can use this http://www.pandasecurity.com/activescan/index/?lang=en-US. :user:

Also if this is the second time you got this message then its quite probable something is re-installing it if you have not done so in-advertantly yourself. Which could indicate rootkit behaviour (especially if your anti-virus is not detecting anything resident as the culprit placing this file, although anything that advanced is usually more cryptographic and random with the file it places)

Whatever anti-virus you are using, you can also install this http://www.malwarebytes.org/mbam.php (the free version - blue button, scroll down a bit) without fear of conflict with your main anti-virus (some do not play nice together). So long as you do not get the paid full version which includes resident protection, although I have this along wit Microsoft Security Essentials and they work very well together.

Anyway, as a second opinion, Malwarebytes anti-malware, once installed, update its signature files, then run a full scan. If it finds something after the scan and asks you to restart, dont do anything else but restart (it writes a temporary tailored startup sequence to get rid of what it finds before the windows kernel gets chance to kick in and mask whatevers hiding).

If you have problems installing malwarebytes, you definately have something nasty onboard preventing it. MBam is like public enemy number one to malware at the moment. A way round that is to grab the malwarebytes installer on another machine, rename the installer as if it was something else .... pigpen.exe for instance, then install it on the target machine (I use a bootable usb for really stubborn cases to get the exe on the machine without booting it from the hd).

All the above may not be necessary in your case, but someone will find it useful. Hope its not as bad as I think, but if your current installed protection has been compromised, it is going to be useless on its own trying to resolve the problem, it needs help.