The Drunkjeans.com / Roundstorm.com Hack and how to get rid of it

- by

Saturday morning a couple of my sites were hacked by something I’ve not found a lot of info about. I’ll call it The Drunkjeans Hack. I’ve also found this being inserted from other domains (see below).

Some idiot has inserted a piece of code into the main index.php file that looks like this:


	

If you enjoy my content, please consider supporting me on Ko-fi. In return you can browse this whole site witout any pesky ads! More details here.

43 thoughts on “The Drunkjeans.com / Roundstorm.com Hack and how to get rid of it”

  1. Also hacked. We had the malepad.ru in all our js files. We don’t use filezilla. Since the DB’s seem unaffected and based on comments above I’m leaning towards FTP breach. Obviously we’ve changed all the FTP passwords. Off to fix all the js files now….

  2. MY SITE HAS BEN hacked by * Malepad.ru

    document.write(”)
    I CLEAN THE FILES ITS WORK SOME TIME BUT NOW I KANT LOGHIN IN MY WORDPRESS CONTROL PANEL GIVE ERROR 500 INTERNAL SERVER ERROR END MY SITE GIVE ERROR 500 INTERNAL SERVER ERROR ..I DELET EVERYTHING DATABASE EVERYTHING..BUT I KANT INSTAL A NEW FRESH WORDPRESS ..IN ME 500 INTERNAL SERVER ERROR!!
    PLISS HELPPP

  3. Same problem as above, several sites got infected and i use CentOS, Cpanel and FileZila.

    I think we had a similar problem about 6/7 months a go where all our index files got infected. but since then i have move to a new saver but with the same company .

Add your voice!

This site uses Akismet to reduce spam. Learn how your comment data is processed.