Hi, Question: Can MBAM reset folder Options to default after/during a scan. OP reports file extensions are rehidden after running MBAM. I've never noticed it myself but I've never had anything to remove. So maybe only when MBAM actually does a fix? Here's another instance of HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastSvc.exe The contents of the key appear to be for crash analysis. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastSvc.exe /s > "GlobalFlag" = 33554432 "PageHeapFlags" = 3 -- [2011/02/06 07:46:13 | 000,000,000 | ---D | M] Was detected with both database v2013.05.04.02 and v2013.05.06.01 Malwarebytes Anti-Malware (Trial) 1.75.0.1300 www.malwarebytes.org Database version: v2013.05.06.01 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 LeeAd :: HOMESYS [administrator] Protection: Enabled 5/5/2013 10:58:59 PM mbam-log-2013-05-05 (22-58-59).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 267753 Time elapsed: 6 minute(s), 4 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 1 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AvastSvc.exe (Security.Hijack) -> Delete on reboot. [9257b853ce9e16207fff6050639f5aa6] Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)