Possible Malware
Activation.txt
I purchased some software on eBay, and the installation instructions included activating the product with an executable file on the DVD, called "Activation.exe". Norton Internet Security scanned this file and reported "no threats detected", so I executed the file. It displayed some lines of text in a command window, and acknowledged that activation was successful. The software appeared to have been activated, but later, when I attempted to register the software onlline, the software vendor informed me that the serial number was not valid. So, I think this is a pirated version, and am concerned that Activate.exe may contain malware. I'm wiping my system drive, but I'd like to know if some harm may have occurred in the meanwhile, such as remote access to data on my computer.
If an expert has the facility to test it, please rename the attached file from Activation.txt to Activation.exe and advise me if my computer's security has been compromised.
I purchased some software on eBay, and the installation instructions included activating the product with an executable file on the DVD, called "Activation.exe". Norton Internet Security scanned this file and reported "no threats detected", so I executed the file. It displayed some lines of text in a command window, and acknowledged that activation was successful. The software appeared to have been activated, but later, when I attempted to register the software onlline, the software vendor informed me that the serial number was not valid. So, I think this is a pirated version, and am concerned that Activate.exe may contain malware. I'm wiping my system drive, but I'd like to know if some harm may have occurred in the meanwhile, such as remote access to data on my computer.
If an expert has the facility to test it, please rename the attached file from Activation.txt to Activation.exe and advise me if my computer's security has been compromised.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You should never run unknown exe file, especially if it is some illegal software. In such cases "may be" is enough.
Anybody should analyze code of this executable if you like to have exact answer - yes or no.
Anybody should analyze code of this executable if you like to have exact answer - yes or no.
ASKER
Thank you for your comment. At the time I ran the file, I did not suspect the software was pirated. I believed that running that file was a necessary step in the activation process, because there were setup instructions with the DVD which appeared to be legitimate. My mistake!
I would still like to know if there could have been access to data on my computer because of that file. Are you able to answer that?
I would still like to know if there could have been access to data on my computer because of that file. Are you able to answer that?
The software may have already been installed and registered on another PC making the serial number invalid.
Read ebay piracy policy:
http://pages.ebay.com/help/policies/replica-counterfeit.html
At the bottom of this link, you can:
Contact Customer Support
Report listing violations or problems with another eBay member.
You can check for malwares or trogens.
Download these free cleaning tools.
Scan all the DVD files.
If you have not wiped your drive yet, then boot the PC in safe mode then run each of these free cleaning tools until any problem has beed removed:
1. Malwarebytes http://www.malwarebytes.org/
2. Combo Fix http://www.bleepingcomputer.com/download/search/?keyword=combofix
3. Rogue Killer http://www.bleepingcomputer.com/download/roguekiller/
4. Hitman Pro http://www.surfright.nl/en/hitmanpro/
5. TDS Killer http://www.bleepingcomputer.com/download/tdsskiller/
6. SuperAntiSpyware www.superantispyware.com
Read ebay piracy policy:
http://pages.ebay.com/help/policies/replica-counterfeit.html
At the bottom of this link, you can:
Contact Customer Support
Report listing violations or problems with another eBay member.
You can check for malwares or trogens.
Download these free cleaning tools.
Scan all the DVD files.
If you have not wiped your drive yet, then boot the PC in safe mode then run each of these free cleaning tools until any problem has beed removed:
1. Malwarebytes http://www.malwarebytes.org/
2. Combo Fix http://www.bleepingcomputer.com/download/search/?keyword=combofix
3. Rogue Killer http://www.bleepingcomputer.com/download/roguekiller/
4. Hitman Pro http://www.surfright.nl/en/hitmanpro/
5. TDS Killer http://www.bleepingcomputer.com/download/tdsskiller/
6. SuperAntiSpyware www.superantispyware.com
ASKER
Thank you. I did wipe the drive, and I'm scanning it with Malwarebytes anyway. I'll deal with the eBay piracy issue shortly.
honestly, that should be a common sense that normally commercial software do not use this kind of way to activate product, especially using a standalone executable to activate several software packages from varied vendors.
ASKER