With one or two small/inexpensive exceptions the last time I paid for software was in the 90s and I possess quite a bit of the stuff. Gotta fill up my 23 TB of hard drive space with something after all.
If we are relying on virus scans as you do then I have only been infected with viruses maybe once in the past 15-20 years IIRC from USB keys and internet cafes. The negative results from these viruses have been exactly zero. Nothing bad happened to me. Despite what you think torrenting software does not mean you will be infected with malware, at least not malware obvious enough to be picked up by a virus scanner.
But don't take my word for it. Go ahead and download 100 cracked applications from TPB and use some common sense. That is act like a technical person who actually wants to avoid being infected. Scan everything at virustotal and run any keygens within sandboxie if you can. Download from the most popular torrents ideally from uploaders with skulls at TPB. Do this from within a virtual machine if you are concerned about the risk which really is minimal. Again, assuming we are talking about stuff that will be picked up by the corporate scanners.
Whenever I run windows I pretty much assume I have undetectable malware running. If you run windows and you don't assume that you are naive. At the very least I assume that a quality keylogger is running at all times hoping for CC numbers and passwords actually useful for identity theft.
Anything with outbound connections may be picked up because like any non-idiot running windows I monitor those. However there may be subtle outbound communications that even the best commercial firewalls won't see. No doubt all of non-free firewalls are backdoored by the NSA and may allow certain types of communications to be ignored. Unless it's using up a lot of my bandwidth I don't really care because I don't enter any senstive information on a super-insecure OS like Windows and most of the actually harmful apps are just looking for information, not trying to format your hardrive or delete a bunch of files. That sort of stuff is so 1980s.
So how is it that I manage to live with all of this scary and yet undetectable malware? I don't enter any information while running windows that I would not want professional thieves to have. I don't type passwords that I care about, that is ones intended to actually protect something from anyone. I don't enter credit card numbers. Ever. For any reason. I assume everything I type is being monitored by a very clever app that thieves pay thousands for as a way to make a living.
Nowadays the vast majority of malware is either adware whose authors are generally kind enough to make you well aware of almost immediately or financially motivated network software whose sole aim in life is to steal credit card numbers and passwords.
This idea of yours that routinely using cracked/keygenned software virtually guarantees infection with obvious, detectable with virus scanners, malware is naive and ignorant. It's Fantasyland.
And BTW if you think that entering sensitive data in Windows is secure just because you don't pirate software let me laugh at you for a while. That is a false sense of security you are feeling.
As you may have surmised I run Linux when I want to do things like make online purchases or check email or use online banking or log into sites that I feel are worth protecting with secure passphrases or long random passwords. Windows is mainly useful for games and apps with no decent Linux equivalent. It's not useful for doing anything that requires privacy.
Linux isn't immune to attack of course, but it's in a different league from Windows even when you don't pirate apps and use all of the best security software. I also do my best to avoid installing any Linux apps that allow remote connections to my machine and I do run a firewall that monitors for any such connections nonetheless. I still run my browser with noscript, adblock, betterprivacy, ghostery, and secret agent. It would be nice if it were completely sandboxed as well. Just in case.