Hi, I have attached the scan log and also a list of the items that are shown as a security.hijack in the registry. These are detected in the heuristics scan section of the mbam scan. These items are part of EMET5.2's SEHOP mitigation option from what I understand see: https://gallery.technet.microsoft.com/scriptcenter/1b4a3d59-d8ea-4d14-b512-8fab74710584 "DisableExceptionChainValidation"=dword:00000000 "Old_DisableExceptionChainValidation"=dword:00000000 If removed the system will not operate correctly. There are many more items of the same type/format in the two registry locations but only those I have included are the ones mbam lists as an issue. ImageFileExecutionOptions_diffs.zip
