I highly suspect they are merely nothing more than third party open source software monitoring tools. To make and upload a poisoned torrent, you need nothing more than a tool capable of making a torrent (bittorrent, uTorrent, etc). Bit torrents are public third party software. Most capture tools capable of capturing snap shots are public third party software. Sniffers are too. I also suspect MS owned very few of the hundreds of IP addresses they utilized to carry out their activities – the majority were probably third party owned, hidden by protected Whois databases.

I doubt if there is anything proprietary as they claim except the activity and the manner in which they went about compiling their “evidence.”