BulletProof Security .48.8

Fatal error: Call to undefined function wp_get_current_user()
After installing BPS on a multisite install, website is broken (slider image not displaying) and can’t login to backend, getting this message:
Fatal error: Call to undefined function wp_get_current_user() in …/public_html/wp-includes/capabilities.php on line 1451.

BPS is not network activated, only activated on primary site. Hotlink protection is disabled on server. File permissions have not been changed (public_html/ and wp-admin/ are both 0755 and files are 0644). I have deleted .htaccess from both public_html/, and wp-admin/ but this hasn’t resolve the issue. Interestingly the WP admin toolbar is still visible upon viewing the website (i.e. I still seem to be logged in as super admin) but there is absolutely no functionality in it — everything results in above error message — except for viewing the primary website, yet neither of the other two network sites frontends are visible, resulting in 404 Not Found errors.

I am using SSL for login and admin. wp-config.php was sitting above /public_html/ and all was working fine before. I have moved it to public_html/ but still no joy.
Tried to unlock user account with bpsunlock.php, but get this message:
Connected To Database: localhost Successfully.
The User Account has already been unlocked or the User Account Does Not Exist.

Host is Net Origin (netorigin.com.au), Apache Linux server.
I am totally locked out of the admin area.