suspicious files on server
I asked server admin people to check the reason of the same and they said :
We have found files on your machine that appear to be owned by 'root' which is signs of compromise. We highly recommend you submit an OS Reload request for to further correct the issue, as there might be miss-leading processes running that are malicious in nature.
root@jearaide [/tmp]# ll |egrep -v 'horde|impatt|core|cpanel|mysql|theme|iroha|sess|305|mt-throttle|jd|exim|lost'
total 17020
drwxrwxrwt 5 root root 65536 Jun 24 23:42 ./
drwxr-xr-x 23 root root 4096 Jun 3 13:46 ../
---------- 1 root root 1623 Jun 6 22:01 back
drwx------ 2 root root 4096 Jun 23 17:47 clamav-partial/
---------- 1 root root 28402 Jan 17 21:30 elflbl
---------- 1 root root 5208 Jun 6 21:58 ex
---------- 1 root root 28528 Jun 3 21:30 root
=============
Now os reloading wil cause all data to be lost and i don't have anybackup also...
can u suggest me a way to solve this problem owithout osreload...
or if you think that osreload is necessary than what should i do and how?
