I don't usually post on forums so please bear with me! I have Bitdefender Internet Security installed on my PC as my primary antivirus software, and have been a Bitdefender user for many years. I am fastidious about keeping my computer safe and malware free, therefore I have MBAM Free as a second opinion scanner. Recently I decided to get a third opinion by trying out Hitman. Much to my surprise (as thorough scans with both Bitdefender and MBAM raised 0 malware issues) Hitman found several "Malware remnants" (the PC in question has never been infected so remnants seems like odd terminology). Without thinking I instinctively instructed Hitman to delete the files, something I later regretted as (having done some research) it seems possible that these remnants were actually false positives and are actually Bitdefender files/registry keys. Without the files themselves I obviously can't send them off to Hitman for analysis, however for peace of mind (as otherwise I have no idea how I picked up the malware) I am trying to establish if these are false positives, and to see if other users have faced a similar problem. The files/keys in question are all classified by Hitman as Trojan.FakeAV and are recorded in the log as follows:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdsurvey.exe\
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cleanielow.exe\
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\support.exe\
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bdsurvey.exe\
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cleanielow.exe\
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\support.exe\
My reasoning for thinking they might be Bitdefender files is based largely on the fact that the only reference I can find to the file cleanielow.exe is on a website stating it's connected with Bitdefender somehow. I also wondered if the "bd" of bdsurvey.exe stood for Bitdefender. If these aren't false positives then any information anyone has about them would be much appreciated. I have already contacted Hitman to ask if they could shed any light on this but they couldn't help. Thanks for your time and apologies for the long message!