well try this although as I stated its impossible that I see to pull the users info if there is a not a member_id cookie since thats how we pull his usergroup and assign permissions. Thus if what your saying is correct how are we getting the proper usergroup to assign permissions to upload do you see what I am saying here. Hense this is why I posted the code I noted because if a user is logged in not logging in we only grab the user info if that member_id cookie is present.
In ib2.php you can try adding this in bold
Content visible to verified customers only.