Shortly after installing Returnil, I received a Message that claimed Returnil (or, rather, F-Prot) had found the following: Adware(W32/FakeInstall.A.gen!Eldorado, Identified by matching) detected: \DEVICE\HARDDISKVOLUME1\PROGRAMFILES\THE KMPLAYER\KMPLAYER.EXE I use KMPlayer a lot to play .AVI files, and I've never had a problem with it nor received any warning about it. After receiving the message from Returnil, I scanned the file with McAfee Anti-Virus, Malwarebytes Anti-Malware Pro, and Spybot, all with the most current definitions. None of them found any malware. I also came upon a message or two on the web from other people who had received this alert from F-Prot which they believed was a false positive. I am assuming that this is, indeed, a false positive. I couldn't find a button to press to tell Returnil to Ignore this file. Can I use the method ColdMoon recommended to fitzalon on Nov. 23 for dealing with a false positive? He suggested: 1. Select to quarantine the detected file using the button in the alert message 2. Open the quarantine list and then select the file just quarantined 3. Select restore with the added option to add it to your VG exclusion list Also, I'm somewhat concerned about the presence of F-Prot in Returnil. I've always been told that I should not have more than one active anti-virus program on my computer. Since I already have McAfee Enterprise Edition AV (along with a firewall and Malwarebytes Anti-Malware Pro), shouldn't I turn off F-Prot? Thanks in advance for your help.