CMS Made Simple Forums

I running version 1.5.2. When I go to the site www.lavrovaballet.com I get this error at the top of the page.

Warning: Cannot modify header information - headers already sent by (output started at /home/lavrova/public_html/include.php:8) in /home/lavrova/public_html/index.php on line 328

I started to check some of the source files and notices the code below at the top of many of the files. Can someone help shed some light on this? How do I fix it and prevent it from happening again.


                     

Online Pharmacy Buy Tamiflu Online

Buy Propecia

buy levitra

Okay, yep, you've been hacked... the question is

a) what files did they change

    You can analyze this by doing a checksum comparison against a recent checksum file... but assuming you haven't done this, you'll
    have to login to ftp and look at the modification dates on the .php files to see which ones have been modified... and how.  Also please note
    the permissions on this file.

b) how did they get in
 
    There are many ways that a hacker can get in, and it depends on your host environment:
     
      a) is it a shared host environment
          a.1) is php configured in a suexec setup
          a.2) is php configured as an apache module
              a.2.i)  Did your host confirm any other sites on the same machine being hacked?
              a.2.ii) were your permissions properly configured
      b) is your install running any other software besides CMS Made Simple?
          - did you download and install any other scripts

      To diagnose how they got in you will probably need to:
      a)  Review your web server access logs and error logs from the past 48 to 72 hours to look for suspicious POST and GET requests,
            and anything that looks out of the ordinary.
      b)  if you are on a shared hosting plan, contact your host and inform them of the attack and see if it happened to any other accounts.
            They may have a better idea of the source of the attack.