Japanese 
English
PHP deobfuscation, decryption, reconstruction toolDe-obfuscate PHP malware/viruses and tampering code on Wordpress to original readable code.
*Please note that not all obfuscation codes can be decoded.<?php
$ex_type = $ex_radiru_gogaku; ht_subtitle($subno,""); switch ($subno) { case "0601": $val0 = ht_set_val($val); $wdat = $val0[0]; if ($sel == 1) { ht_rec_start("rec",$val0,$ex_type); } else if ($sel == 2) { ht_live_radiru_vod($wdat,$ex_type); } else if ($sel == 3) { ht_live_server($wdat,$ex_type); } break; case "069901": $p = explode(',',$val); $m = $p[0]; $url = $p[1]; $sta = $p[2]; $img = $p[3]; $flist = rfmenu_rec_gogaku_new31_sel_pgm($m,$url,$sta,$img); $cnt = count_73($flist); $opt = array( "title" => "番組一覧($cnt 件)", "input_type" => 0, "page_control" => 1, "return_mes" => "戻る", "input_mes" => "番組を選択してください", "mode" => 1, "multi" => $multi_sw, "confirm" => 0, "ht_selid" => "" ); $ht_jump_btn2 = 1; $ht_jump_btn3 = 1; $ht_jump_btn1_label = "録音"; $ht_jump_btn2_label = "聴取"; $ht_jump_btn3_label = "聴取(サーバ)"; ht_ask_list($flist,$opt); break; case "069902": $ids = ht_set_val($val); $v2 = explode(",",$val2); $wdat = rfmenu_rec_gogaku_new3_reclist($v2[0],$v2[1],$ids); if ($sel == 1) { ht_rec_start("rec",$wdat,$ex_type); } else if ($sel == 2) { ht_live_radiru_vod($wdat[0],$ex_type); } else if ($sel == 3) { ht_live_server($wdat[0],$ex_type); } break; case "0602": $val0 = ht_set_val($val); $wdat = $val0[0]; if ($sel == 1) { ht_rec_start("rec",$val0,$ex_type); } else if ($sel == 2) { ht_live_radiru_vod($wdat,$ex_type); } else if ($sel == 3) { ht_live_server($wdat,$ex_type); } break; case "0699": ht_play_abort_server("聴取"); break; case "0603": $val0 = ht_set_val($val); $wdat = $val0[0]; if ($sel == 1) { ht_rec_start("rec",$val0,$ex_type); } else if ($sel == 2) { ht_live_radiru_vod($wdat,$ex_type); } else if ($sel == 3) { ht_live_server($wdat,$ex_type); } break; case "0605": ht_play_abort_server("再生"); break; default: ht_development($subno,$val,2); break; }<?php
$ex_type = $ex_radiru_gogaku;
ht_subtitle($subno, "");
switch ($subno) {
case "0601":
$val0 = ht_set_val($val);
$wdat = $val0[0];
if ($sel == 1) {
ht_rec_start("rec", $val0, $ex_type);
} else {
if ($sel == 2) {
ht_live_radiru_vod($wdat, $ex_type);
} else {
if ($sel == 3) {
ht_live_server($wdat, $ex_type);
}
}
}
break;
case "069901":
$p = explode(',', $val);
$m = $p[0];
$url = $p[1];
$sta = $p[2];
$img = $p[3];
$flist = rfmenu_rec_gogaku_new31_sel_pgm($m, $url, $sta, $img);
$cnt = count_73($flist);
$opt = array("title" => "番組一覧({$cnt} 件)", "input_type" => 0, "page_control" => 1, "return_mes" => "戻る", "input_mes" => "番組を選択してください", "mode" => 1, "multi" => $multi_sw, "confirm" => 0, "ht_selid" => "");
$ht_jump_btn2 = 1;
$ht_jump_btn3 = 1;
$ht_jump_btn1_label = "録音";
$ht_jump_btn2_label = "聴取";
$ht_jump_btn3_label = "聴取(サーバ)";
ht_ask_list($flist, $opt);
break;
case "069902":
$ids = ht_set_val($val);
$v2 = explode(",", $val2);
$wdat = rfmenu_rec_gogaku_new3_reclist($v2[0], $v2[1], $ids);
if ($sel == 1) {
ht_rec_start("rec", $wdat, $ex_type);
} else {
if ($sel == 2) {
ht_live_radiru_vod($wdat[0], $ex_type);
} else {
if ($sel == 3) {
ht_live_server($wdat[0], $ex_type);
}
}
}
break;
case "0602":
$val0 = ht_set_val($val);
$wdat = $val0[0];
if ($sel == 1) {
ht_rec_start("rec", $val0, $ex_type);
} else {
if ($sel == 2) {
ht_live_radiru_vod($wdat, $ex_type);
} else {
if ($sel == 3) {
ht_live_server($wdat, $ex_type);
}
}
}
break;
case "0699":
ht_play_abort_server("聴取");
break;
case "0603":
$val0 = ht_set_val($val);
$wdat = $val0[0];
if ($sel == 1) {
ht_rec_start("rec", $val0, $ex_type);
} else {
if ($sel == 2) {
ht_live_radiru_vod($wdat, $ex_type);
} else {
if ($sel == 3) {
ht_live_server($wdat, $ex_type);
}
}
}
break;
case "0605":
ht_play_abort_server("再生");
break;
default:
ht_development($subno, $val, 2);
break;
}Malware detection & removal plugin for WordPress
(C)2020 Wordpress Doctor All rights reserved.