Softwarefritz.com ahmt Geschäftsmodell von PC Fritz nach

Kommentare zu folgendem Beitrag: Softwarefritz.com ahmt Geschäftsmodell von PC Fritz nach

Infrastruktur des „Softwarefritz - Shop“:

Domain name: softwarefritz.com
Registry Domain ID: 2631951692_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.ordertld.com
Registrar URL: http://www.ordertld.com
Updated Date: 2021-08-06T17:13:26Z
Creation Date: 2021-08-06T00:00:00Z
Registrar Registration Expiration Date: 2022-08-06T00:00:00Z
Registrar: CNOBIN INFORMATION TECHNOLOGY LIMITED
Registrar IANA ID: 3254
Registrar Abuse Contact Email: abuse@ordertld.com
Registrar Abuse Contact Phone: +852.81926949


_________________________________________ SITE INFO __________________________________________
IP Title
172.67.136.118 Softwarefritz.com - Software zum eine Gutenpreis im OnlineShop
104.21.38.164

__________________________________________ VERSION ___________________________________________
Name Versions Type
WordPress 5.8 CMS
phpMyAdmin CMS
Apache 2.4.10 | 2.4.11 | 2.4.12 | 2.4.5 | 2.4.6 | 2.4.7 | 2.4.8 Platform
2.4.9
PHP 7.3.27 Platform
cloudflare Platform

________________________________________ INTERESTING _________________________________________
URL Note Type
/robots.txt robots.txt index Interesting
/changelog.txt ChangeLog text file Interesting
/changelog.old ChangeLog text file Interesting
/install.php Installation file Interesting
/changelog.aspx ChangeLog text file Interesting
/changelog.php ChangeLog text file Interesting
/readme.old Readme file Interesting
/readme.aspx Readme file Interesting
/changelog.html ChangeLog text file Interesting
/readme.jsp Readme file Interesting
/readme.htm Readme file Interesting
/install.asp Installation file Interesting
/readme.txt Readme file Interesting
/install.txt Installation file Interesting
/install.aspx Installation file Interesting
/readme.asp Readme file Interesting
/install.jsp Installation file Interesting
/install.htm Installation file Interesting
/install.old Installation file Interesting
/install.html Installation file Interesting
/test.jsp Test file Interesting
/test.aspx Test file Interesting
/test.old Test file Interesting
/test.asp Test file Interesting
/login.php Login Page Interesting
/test.txt Test file Interesting
/test.html Test file Interesting
/login.aspx Login Page Interesting
/test.zip Test file Interesting
/login.txt Login Page Interesting
/login.old Login Page Interesting
/login.html Login Page Interesting
/login.asp Login Page Interesting
/test1.aspx Test file Interesting
/login.htm Login Page Interesting
/test1.php Test file Interesting
/login.zip Login Page Interesting
/login.jsp Login Page Interesting
/test1.txt Test file Interesting
/test1.html Test file Interesting
/test1.old Test file Interesting
/test1.asp Test file Interesting
/test1.htm Test file Interesting
/old.old This might be interesting Interesting
/old.php This might be interesting Interesting
/sql/ This might be interesting Interesting


e[+]e URL: http://softwarefritz.com/ [2606:4700:3032::6815:26a4]
e[+]e Effective URL: https://softwarefritz.com/
e[+]e Started: Mon Sep 6 10:45:49 2021

Interesting Finding(s):

e[+]e Headers
| Interesting Entries:
| - x-powered-by: PHP/7.3.27
| - cf-cache-status: DYNAMIC
| - expect-ct: max-age=604800, report-uri=„https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct“
| - report-to: {„endpoints“:[{„url“:„https://a.nel.cloudflare.com/report/v3?s=0zIAD0324GT8agqaRHE4Ztlwf%2FEwlf4o1loMOF2grgw5LLDjKrcjX0OsOQofNi%2BnJoWtgDrRJFFwOyNwFm3pC7A6x%2FrpFw3%2FTuri7bieWfUNGliCYe18y6PGFhFnlrmSJRMFhjazGnzupq4kEj0LJw%3D%3D“}],„group“:„cf-nel“,„max_age“:604800}
| - nel: {„success_fraction“:0,„report_to“:„cf-nel“,„max_age“:604800}
| - server: cloudflare
| - cf-ray: 68a71c29cd844150-HAM
| - alt-svc: h3=„:443“; ma=86400, h3-29=„:443“; ma=86400, h3-28=„:443“; ma=86400, h3-27=„:443“; ma=86400
| Found By: Headers (Passive Detection)
| Confidence: 100%

e[+]e XML-RPC seems to be enabled: https://softwarefritz.com/xmlrpc.php
| Found By: Link Tag (Passive Detection)
| Confidence: 100%
| Confirmed By: Direct Access (Aggressive Detection), 100% confidence
| References:
| - http://codex.wordpress.org/XML-RPC_Pingback_API
| - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_ghost_scanner/
| - https://www.rapid7.com/db/modules/auxiliary/dos/http/wordpress_xmlrpc_dos/
| - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_xmlrpc_login/
| - https://www.rapid7.com/db/modules/auxiliary/scanner/http/wordpress_pingback_access/

e[+]e WordPress version 5.8 identified (Latest, released on 2021-07-20).
| Found By: Rss Generator (Passive Detection)
| - https://softwarefritz.com/feed/, https://wordpress.org/?v=5.8
| - https://softwarefritz.com/comments/feed/, https://wordpress.org/?v=5.8

e[i]e The main theme could not be detected.

e[+]e Enumerating All Plugins (via Passive Methods)
e[+]e Checking Plugin Versions (via Passive and Aggressive Methods)

e[i]e Plugin(s) Identified:

e[+]e tawkto-live-chat
| Location: http://softwarefritz.com/wp-content/forum/plugins/tawkto-live-chat/
| Latest Version: 0.5.5
| Last Updated: 2021-08-06T08:25:00.000Z
|
| Found By: Comment (Passive Detection)
|
| The version could not be determined.

e[+]e woocommerce
| Location: http://softwarefritz.com/wp-content/forum/plugins/woocommerce/
| Latest Version: 5.6.0 (up to date)
| Last Updated: 2021-08-17T20:08:00.000Z
|
| Found By: Meta Generator (Passive Detection)
|
| Version: 5.6.0 (60% confidence)
| Found By: Meta Generator (Passive Detection)
| - https://softwarefritz.com/, Match: ‚WooCommerce 5.6.0‘

e[+]e wordpress-seo-premium
| Location: http://softwarefritz.com/wp-content/forum/plugins/wordpress-seo-premium/
| Latest Version: 17.0
| Last Updated: 2021-09-02T09:42:06.000Z
|
| Found By: Comment (Passive Detection)
|
| e[!]e 2 vulnerabilities identified:
|
| e[!]e Title: WordPress SEO by Yoast <= 2.0.1 - Cross-Site Scripting (XSS)
| Fixed in: 2.1
| References:
| - https://wpscan.com/vulnerability/42d994ec-9da9-4dd6-9d44-347becaedb3a
| - https://yoast.com/coordinated-security-release/
| - https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affecting-multiple-wordpress-plugins.html
|
| e[!]e Title: Yoast SEO 1.2.0-11.5 - Authenticated Stored XSS
| Fixed in: 11.6
| References:
| - https://wpscan.com/vulnerability/8bc4cf95-79f7-4d92-b320-a841ab7e6a6f
| - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13478
| - https://gist.github.com/sybrew/2f53625104ee013d2f599ac254f635ee
| - https://github.com/Yoast/wordpress-seo/pull/13221
| - https://yoast.com/yoast-seo-11.6/
|
| The version could not be determined.

e[+]e wp-statistics
| Location: http://softwarefritz.com/wp-content/forum/plugins/wp-statistics/
| Latest Version: 13.1 (up to date)
| Last Updated: 2021-08-23T12:58:00.000Z
|
| Found By: Comment (Passive Detection)
|
| Version: 13.1 (60% confidence)
| Found By: Comment (Passive Detection)
| - https://softwarefritz.com/, Match: ‚Analytics by WP-Statistics v13.1‘

1 Like

Ich verstehe überhaupt nicht wieso darüber berichtet wird? Solche Shops gibt es wie sand am meer. Bis vor kurzem konnte man diese günstigen Lizenzen 1:1 bei eBay kaufen. Mittlerweile ist da eBay & Microsoft hinterher.

Überhaupt nichts Besonderes außer der Name eventuell…

Über die Ebay Geschichten hat Ghandy aber auch berichtet.

Nun ja, ich mag exklusive Berichte, die noch nirgendwo anders standen. Natürlich ist nicht jede neue Story der Oberhammer, das ist leider einfach so. Ich fand es interessant, weil ich die Causa PC Fritz damals sehr intensiv beobachtet habe.

2 Likes

Das war ja auch komplett legal und von MS abgesegnet! Also für die „sauberen“ Anbieter.
Da gab es hier auch einen aufklärenden Artikel zu. Ich glaube, dieser wars:

https://tarnkappe.info/forum/t/windows-10-keys-von-ebay-tausende-strafverfahren-laufen/7836/37