Possible Malware


I purchased some software on eBay, and the installation instructions included activating the product with an executable file on the DVD, called "Activation.exe".   Norton Internet Security scanned this file and reported "no threats detected", so I executed the file.  It displayed some lines of text in a command window, and acknowledged that activation was successful.  The software appeared to have been activated, but later, when I attempted to register the software onlline, the software vendor informed me that the serial number was not valid.  So, I think this is a pirated version, and am concerned that Activate.exe may contain malware.  I'm wiping my system drive, but I'd like to know if some harm may have occurred in the meanwhile, such as remote access to data on my computer.

If an expert has the facility to test it, please rename the attached file from Activation.txt to Activation.exe and advise me if my computer's security has been compromised.
Who is Participating?
als315Connect With a Mentor Commented:
There is very good service:
where you can check your file with combination of  antiviruses.
Your file was detected in most cases as: HackTool.Keygen (Not a Virus)
I think you've purchased software from pirate and should return it and ask money back.
ddantesAuthor Commented:
Thank you for that info.  Although it isn't a virus, I would like to know if that code enabled anyone to access data, such as account passwords?
You should never run unknown exe file, especially if it is some illegal software. In such cases "may be" is enough.
Anybody should analyze code of this executable if you like to have exact answer - yes or no.
WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

ddantesAuthor Commented:
Thank you for your comment.  At the time I ran the file, I did not suspect the software was pirated.  I believed that running that file was a necessary step in the activation process, because there were setup instructions with the DVD which appeared to be legitimate.  My mistake!  

I would still like to know if there could have been access to data on my computer because of that file.  Are you able to answer that?
The software may have already been installed and registered on another PC making the serial number invalid.
Read ebay piracy policy:
At the bottom of this link, you can:
Contact Customer Support
Report listing violations or problems with another eBay member.

You can check for malwares or trogens.
Download these free cleaning tools.
Scan all the DVD files.
If you have not wiped your drive yet, then boot the PC in safe mode then run each of these free cleaning tools until any problem has beed removed:

1. Malwarebytes http://www.malwarebytes.org/

2. Combo Fix http://www.bleepingcomputer.com/download/search/?keyword=combofix

3. Rogue Killer http://www.bleepingcomputer.com/download/roguekiller/

4. Hitman Pro http://www.surfright.nl/en/hitmanpro/

5. TDS Killer http://www.bleepingcomputer.com/download/tdsskiller/

6. SuperAntiSpyware www.superantispyware.com
ddantesAuthor Commented:
Thank you.  I did wipe the drive, and I'm scanning it with Malwarebytes anyway. I'll deal with the eBay piracy issue shortly.
bbaoIT ConsultantCommented:
honestly, that should be a common sense that normally commercial software do not use this kind of way to activate product, especially using a standalone executable to activate several software packages from varied vendors.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.