Rootkit Detection and Removal
My server was running very poorly for a couple of days with mysqld chewing up lots of resources. Then last night it really started to grind, and I was having a hard time even getting commands to run in the console. Top showed 98.7% CPU usage and tons of apache threads. My first thought was 'hacked', so I started running rkhunter, chkrootkit, and clam. All of those checks came back with multiple positives. I started trying to remove the infections and quickly realized that I'm in over my head with this one. Please allow me to say thanks in advance for any assistance with this, and if I need to provide any additional information.
Here are my versions:
I'm getting an error trying to post my rkhunter -c log
CentOS release 5.8 (Final)
Rootkit Hunter 1.4.0
chkrootkit version 0.49
ClamAV 0.97.7/17028/Wed Apr 17 04:35:04 2013
You are only allowed to post URLs to other sites after you have made 15 posts or more.