Extra line in output html with cb login module

The website in this matter is www.alurvs.nl .

The issue can be described as following:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" " www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd ">
<html lang="nl-nl" xml:lang="nl-nl" xmlns=" www.w3.org/1999/xhtml ">
<head>
<body>
<div id="body_bg">
<div id="wrapper">
<div id="header">
<div id="top">
<div id="newsdisplay">
<div class="newsdisplay-left">
<div class="newsdisplay-right">/*this extra line isn't supposed to be here */

<form id="mod_loginform" method="post" action=" www.alurvs.nl/index.php?option=com_comprofiler&task=login ">
<table class="mod_login" width="100%" cellspacing="0" cellpadding="0" border="0">
<tbody>
<tr>
<td>
<span id="mod_login_usernametext">
<label for="mod_login_username">Gebruikersnaam</label>
</span>
<br>
<input id="mod_login_username" class="inputbox" type="text" size="18" name="username">
<br>
<span id="mod_login_passwordtext">
<br>.....................


And the strange thing is: it isn't there on my registration page:

www.alurvs.nl/index.php?option=com_comprofiler&task=registers&Itemid=363

This causes the module to move the top.
Where and how to fix this.
I Reckon in the mod_cblogin.php file. But i can't find it. Here ill state a piece of it's code maybe anyone sees something i don't.

$login = cbSef( $login );

if ( $https_post > 1 /* && ! $isHttps */ ) {
if ((strncmp($login, "http:", 5)!=0) && (strncmp($login, "https:", 6)!=0)) {
$login = $cblogin_live_site . '/' . $login;
}
$login = str_replace("http://","https://",$login);
}

$loginPost = cbSef("index.php?option=com_comprofiler&amp;task=login");
if ( $https_post /* && ! $isHttps */ ) {
if ( ( substr($loginPost, 0, 5) != "http:" ) && ( substr($loginPost, 0, 6) != "https:" ) ) {
$loginPost = $cblogin_live_site."/".$loginPost;
}
$loginPost = str_replace("http://","https://",$loginPost);
}
// now we need to make sure that the cookie in return of this post is sent to the most generic domain, in case multiple domains exist:
// if the current page ($return) is without www, then login should also be without www, even if live_site has www:
if (strncasecmp($loginPost, "http://www.", 11)==0 // && strncasecmp($cblogin_live_site, "http://", 7)==0
&& strncasecmp( substr($loginPost, 11), substr($return, 7), $len_live_site - 11 ) == 0 ) {
// the login return string matches the live site without 'www.' in it:
// add www subdomain as live_site has it.
$loginPost = "http://" . substr($loginPost, 11);
} elseif (strncasecmp($loginPost, "https://www.", 12)==0 // && strncasecmp($cblogin_live_site, "https://", 8)==0
&& strncasecmp( substr($loginPost, 12), substr($return, , $len_live_site - 12 ) == 0 ) {
$loginPost = "https://" . substr($loginPost, 12); // same for https
}
echo '<form action="'.$loginPost.'" method="post" id="mod_loginform'.$class_sfx.'" ';
/*
if ($compact) {
echo "onsubmit=\""
. "return ( ( this.elements.value != '"._USERNAME."')"
. "&& ( this.elements.value != 'paswww') )"
."\" ";
}
*/
echo '>'."\n";
if ( $pretext ) {
if ( defined( $pretext ) ) {
echo constant( $pretext );
} else {
echo $pretext;
}
echo "\n";

That line has been causing me a lot of headshake because it breaks my template for logged users. Maybe someone of CB Team has the solution...
For the moment I lod one css line for logged user to fix the problem.