Thanks Sammie....the problem is I dont' know all of the files that are being exploited! LOL
I've used your code into the Ray folder content.inc, into the HTMLSax3.php file, into the safehtml.php file. I keep getting these .gzr files into tiny_mce. I take it these are program C99 shell programs. I keep deleting them, but I'm still getting hacked, it seems.
and yes i downloaded a hacked VPS and used my virus scanner to see what was infected.
it had 19 infections on the one dolphin site
I've used your code into the Ray folder content.inc, into the HTMLSax3.php file, into the safehtml.php file. I keep getting these .gzr files into tiny_mce. I take it these are program C99 shell programs. I keep deleting them, but I'm still getting hacked, it seems.
Dolaugh