Detected 1 occurrence(s) of ‘root:.*:0:0:’:

host = 'localhost';
$mosConfig_smtppass = '';
$mosConfig_smtpuser = '';
$mosConfig_uniquemail = '1';
$mosConfig_user = 'informat';
$mosConfig_useractivation = '1';
$mosConfig_vote = '0';
setlocale (LC_TIME, $mosConfig_locale);
?>
cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown

Source: http://pastebin.com/raw.php?i=33AYaRXZ

Detected 1 occurrence(s) of ‘root:.*:0:0:’:

\/sbin\/nologin/",$x2)) {
$groupfile=TRUE;
}
if(preg_match("/DOCUMENT_ROOT=\//",$x) || preg_match("/DOCUMENT_ROOT=\//",$x1) || preg_match("/DOCUMENT_ROOT=\//",$x2)) {
$environfile=TRUE;
}
if(preg_match("/bin:x:1:root,bin,daemon/",$x) || preg_match("/root:x:0:0:root:\/root:\/bin\/bash/",$x) || preg_match("/bin:x:1:root,bin,daemon/",$x1) || preg_match("/root:x:0:0:root:\/root:\/bin\/bash/",$x1) || preg_match("/bin:x:1:root,bin,daemon/",$x2) || preg_match("/root:x:0:0:root:\/root:\/bin\/bash/",$x2)) {
$passwdfile=TRUE;
}
}
if($groupfile==TRUE) { echo "[/etc/group] -> \tAvailable.\n"; } else { echo "[/etc/group] -> \tUnavailable.\n"; }
if($passwdfile==TRUE) { echo "[/etc/passwd] -> \tAvailable.\n";} else { echo "[/e

Source: http://pastebin.com/raw.php?i=5TMaVSxC

Detected 1 occurrence(s) of ‘root:.*:0:0:’:

cat /etc/passwd|awk -F: '{print $7}'|sort \ |uniq|sed 's/root/nobody/'
 
Hint:

root@server ~ $ head -n1 /etc/passwd
root:x:0:0:root:/root:/bin/bash

Source: http://pastebin.com/raw.php?i=rxtmk0f7

Detected 1 occurrence(s) of ‘root:.*:0:99999:7:::’:

0:0:root:/root:/bin/bash
daemon:*:1:1:daemon:/var:/bin/false
ftp:*:55:55:ftp:/home/ftp:/bin/false
network:*:101:101:network:/var:/bin/false
nobody:*:65534:65534:nobody:/var:/bin/false
tortib:x:1234:1234:tortib:/root/:/bin/bash


# cat /etc/shadow
root:$1$9Z6kCS7f$.M5CG1YmLtwkfnFQAXrIY0:15610:0:99999:7:::
daemon:*:0:0:99999:7:::
ftp:*:0:0:99999:7:::
network:*:0:0:99999:7:::
nobody:*:0:0:99999:7:::
tortib:$1$rTIjMA1i$ZHaYOdDO5.o/pMfrlcPcB0:15610:0:99999:7:::


# cat /etc/srelay.conf
# allow local subnet to access socks proxy
192.168.10.0/24 any -

Detected 1 occurrence(s) of ‘root:.*:0:0:’:

# cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
daemon:*:1:1:daemon:/var:/bin/false
ftp:*:55:55:ftp:/home/ftp:/bin/false
network:*:101:101:network:/var:/bin/false
nobody:*:65534:65534:nobody:/var:/bin/false
tortib:x:1234:1234:tortib:/root/:/bin/bash


# cat /etc/shadow
root

Source: http://pastebin.com/raw.php?i=KTx8w3FK

Detected 1 occurrence(s) of ‘root:.*:0:0:’:

p
pipe
pwreset.php
register.php
serverstatus.php
status
submitticket.php
supporttickets.php
templates
templates_c
upgrade.php
viewemail.php
viewinvoice.php
viewquote.php
viewticket.php
whois.php
--------------------------
cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown

Source: http://pastebin.com/raw.php?i=9p3zq0Ny