search

SystemRage / py-kms

KMS Server Emulator written in Python
The Unlicense
2.04k stars 618 forks source link

Abuse notice #49

Closed NewRedsquare closed 4 years ago

NewRedsquare commented 4 years ago

That's not a real issue, i just want to tell you that microsoft seems to scan ip adresses for KMS servers. I received a copyright abuse yesterday... btw i changed default port to a custom one :(

dogtopus commented 4 years ago

In short: DO NOT make a KMS server listen on public IP, whether legit or not. Quick Google search shows that MS sends C&Ds even to legit KMS servers that listens on public IP since they can be abused by others. Also turn off the KMS server reporting if you run Windows 10 and are paranoid.

NewRedsquare commented 4 years ago

Ok, so a LAN-based KMS or restricted to IPs is better, thanks for info :)

riverar commented 4 years ago

@NewRedsquare Can you share what this letter looks like?

simonmicro commented 4 years ago

@NewRedsquare Can you share what this letter looks like?

And also, if you must pay anything - the last time I had to deal with something like that... It cost me a fortune...

NewRedsquare commented 4 years ago 


Case #: 268615
Internet Protocol Address: 

[My Server IP]:16888
Dear Sir or Madam,

We are contacting you concerning the domain/IP address/port listed above which appears to be on servers under your control.

The (IP) address is engaged in unauthorized activities relating to copyrighted works published by Microsoft Corporation. It is making it possible for third parties to activate unauthorized and infringing copies of Microsoft software. The IP address at which a KMS machine may be accessed is as follows: 

[My Server IP]:16888
⦁ Statement of Authority:

The information in this notice is accurate, and I hereby certify under penalty of perjury that I am authorized to act on behalf of Microsoft Corporation, the owner or exclusive licensee of the copyright(s) in the work(s) identified above. I have a good faith belief that none of the materials or activities listed above have been authorized by Microsoft Corporation, its agents, or the law.

⦁ ACTION REQUESTED (Please complete within 24-hours of receiving this notice):

We hereby give notice of these activities to you and request that you take expeditious action to remove or disable access to the material described above, and thereby prevent the unauthorized distribution of these cracks and product keys via your company's network.

Please contact me at your earliest opportunity through one of the means listed below to confirm that appropriate action has been taken to secure the KMS machine. We appreciate your cooperation in this matter. Please advise us regarding what actions you take.

Yours sincerely,

Gareth Young

Internet Investigator