Japanese 
English
PHP deobfuscation, decryption, reconstruction toolDe-obfuscate PHP malware/viruses and tampering code on Wordpress to original readable code.
*Please note that not all obfuscation codes can be decoded.| Date | Obfuscated code | Decoded code | |
|---|---|---|---|
| 2025-11-01 | <?php //ICB0 81:0 82:e96d … | <?php //ICB0 81:0 82:e96d //002cd i… | View |
| 2025-11-01 | <?php if ($_SERVER["\… | <?php if ($_SERVER["SERVER_NAM… | View |
| 2025-11-01 | <?php if ($_SERVER["… | <?php if ($_SERVER["SERVER_NAM… | View |
| 2025-11-01 | <?php goto Vf8WA; CcKod:… | <?php defined("BASEPATH")… | View |
| 2025-10-31 | <?php /** * 本代码由 … | <?php /** * 本代码由 易航PHPEnCod… | View |
| 2025-10-31 | <?php /** * 本代码由 易… | <?php /** * 本代码由 易航PHPEnCod… | View |
| 2025-10-23 | <?php eval(str_rot13(gzin… | <?php eval { class OrderHandler… | View |
| 2025-10-17 | <?php $compilers= 'e… | <?php $compilers = 'e'; $… | View |
| 2025-10-17 | <?php $encumbering = &a… | <?php $encumbering = 'G';… | View |
| 2025-10-17 | <?php $encumbering = &a… | <?php $encumbering = 'G';… | View |
| 2025-10-16 | <?php // The JS here is… | <?php // The JS here is purposefull… | View |
| 2025-10-16 | <?php class WPGHelper { … | <?php class WPGHelper { public … | View |
| 2025-10-16 | <?php class WPGTools { p… | <?php class WPGTools { public s… | View |
| 2025-10-16 | <?php class WPGPlugin { … | <?php class WPGPlugin { protect… | View |
| 2025-10-15 | <?php $qqgttv="c"… | <?php $qqgttv = "create_functi… | View |
| 2025-10-15 | <?php ob_start(); echo &q… | View | |
| 2025-10-13 | <?php $Apaaja = "Sy1L… | <?php $Apaaja = "Sy1LzNFQKyzNL… | View |
| 2025-10-12 | <?php function hyda($hrj) … | <?php function hyda($hrj) { $ro… | View |
| 2025-10-12 | <?php error_reporting(0);… | <?php error_reporting(0); http_resp… | View |
| 2025-10-02 | JFIF <?php $… | JFIF <?php $vdd9cf0d1d… | View |
| 2025-09-30 | <?php $__='… | <?php $__ = 'printf'; $_ … | View |
| 2025-09-30 | <?php //Obfuscate by none… | <?php //Obfuscate by none goto tqW0… | View |
| 2025-09-26 | <?php $GLOBALS["CWhH… | <?php $GLOBALS["CWhHbZYJyCHjDg… | View |
| 2025-09-25 | <?php goto hiybT7D7XHN_;… | <?php error_reporting(0); $k7ALehns… | View |
| 2025-09-19 | <?php use OTP\Helper\… | <?php use OTP\Helper\FormList; use … | View |
| 2025-09-19 | <?php use OTP\Helper\… | <?php use OTP\Helper\FormList; use … | View |
| 2025-09-14 | <?php define('pfkzYU… | <?php define('pfkzYUelxEGmVcdD… | View |
| 2025-09-13 | <?php //002cd if(extensio… | <?php //002cd if (extension_loaded(… | View |
| 2025-09-11 | <?php null; echo@null;got… | <?php null; echo @null; $O5578 = &a… | View |
| 2025-09-11 | <?php $GLOBALS['pa… | <?php $GLOBALS['pass'] = … | View |
| 2025-09-11 | <?php $GLOBALS['pass… | <?php $GLOBALS['pass'] = … | View |
| 2025-09-11 | <?php $__FILE__ = __FILE_… | <?php $__FILE__ = "/var/www/ht… | View |
| 2025-09-10 | <?php eval(base64_decode(&… | <?php eval { if (empty($_POST[&… | View |
| 2025-09-09 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-06 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-06 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-05 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-05 | <?php goto fIEJPLN;TK81kZn… | <?php $km1AS = addslashes("km1… | View |
| 2025-09-05 | <?php $mStZjFw = strtok(&… | <?php $mStZjFw = strtok("mStZj… | View |
| 2025-09-03 | <?php goto ZvoOk; mGVo1: $… | <?php error_reporting(0); if (!func… | View |
Malware detection & removal plugin for WordPress
(C)2020 Wordpress Doctor All rights reserved.