• 0
Sign in to follow this  
Followers 0

Fatal error: Cannot redeclare get_url_999()

Question

Posted · Report post

Hello,

 

I'm suddenly getting an error on a website that was working fine:

 

Fatal error: Cannot redeclare get_url_999() (previously declared in /home/content/r/e/l/reliablecare/html/wp-content/themes/pagelines/functions.php(2) : runtime-created function(1) : eval()'d code(1) : eval()'d code:1) in /home/content/r/e/l/reliablecare/html/wp-content/themes/pagelines/functions.php(2) : runtime-created function(1) : eval()'d code(1) : eval()'d code on line 1

 

Here is the current site:
http://www.reliablecaregivers.com/

 

Wordpress Version: 3.8.1

Pagelines Framework Version: 2.4.4  (currently activated)

Base Theme: version 1.0.2 (deactivated after above error message)

Host: GoDaddy.com

 

It seems the Child Theme (Base Theme) is causing the problem, although it was working fine previously.

 

I have tried the following:

1) Disabled all plugins

2) Re-uploaded zip files of both the main Pagelines Framework and the Child Theme

3) I did edit the functions.php file some time ago but again everything was working fine. As a test I deleted all my edits and re-uploaded file but still receive the error message.

 

I currently have the main Pagelines Framework theme activated just so the site will function, but obviously I'd like to be able to activate the Child Theme as before.

 

I read on another post with a similar error that this may be a hosting issue which makes sense to me since the site was previously working fine. I just wanted to see if perhaps I'm missing anything before contacting GoDaddy.

 

Thank you.

 

 

 

 

Share this post


Link to post
Share on other sites

10 answers to this question

  • 0

Posted · Report post

Hi,

 

I think the best thing to do is contact your host, as this could be malicious code. I remember another user having a similar problem and that was the cause, they to were using GoDaddy, so contacting them would be the best course of action.

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

So the malicious code could be else where in the WP install? Seems weird though that when I activate other themes the site behaves fine (other than the look) whihc leads me to believe it's the Child theme files that are messed up somehow.

 

And I did re-upload the same Base Theme .zip file that I use on other sites, including those hosted by GoDaddy.

 

I'll give GoDaddy a call and report back.

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

Let us know how you get on with your host. 

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

email me the theme zips, i'll soon tell you if they are infected.

[sharedmedia=core:attachments:1967]

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

Looks like the functions.php file of the main Pagelines Framework theme was infected:

 

This file appears to be malicious

 

Filename: wp-content/themes/pagelines/functions.php File type: Not a core, theme or plugin file. Issue first detected: 42 secs ago. Severity: Critical Status New

This file appears to be installed by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: "wp_function_initialize = create_function".

 

 

I'm going to see if I can install a previous version of the site via GoDaddy backup.

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

Those zips you sent me were clean. Either a plugin on your account is compromised or indeed the whole server is :/

 

If you could, could you send me one of the infected files? 

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

It was just the one functions.php file that was infected (according to Wordfence secutiry plugin) I downloaded, removed the malicious code and re-uploaded. Still having some issues with activating the Child Theme so am really hoping to get access to GoDaddy (client can find accurate login credentials!)

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

So I restored the Worpress files from a month ago (including the themes) and that solved the issue in terms of resurrecting the site. Sorry I didn't save the malicious code for you to look at. I'll keep me my eyes open. Thanks!

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

did you update all plugins and themes? Maybe you just reverted the files and whatever was compromised is still there?

Share this post


Link to post
Share on other sites
  • 0

Posted · Report post

I ran another scan and Wordfence didn't find anything. But yes I updated Wordpress and the Framework Theme. I'll update the plugins also, but want to do those one at a time and test the site. Thanks for all your help.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0