大家帮帮忙!!!

love_mywife

UID: 29014
帖子: 20
积分: 46
在线时间: 10 分钟

1^# love_mywife 发表于 2007-07-16 16:01

大家帮帮忙!!!

这是我web服务器,在线人数为400人,我的服务器现在负载很高,但查没什么异常,就是负载很高,我的服务器最高load average不能超过八,我不知道是流量太大了还是别的原因,请大家帮帮忙,应该怎么来处理呢?
会不会是被攻击装了 rootkit，如果真的是被装了rootkit，该怎么查找呢，小弟感激不尽，各位大虾多多指教呀

top - 15:31:26 up 59 days,  3:35,  1 user,  load average: 12.02, 10.38, 9.72
Tasks: 195 total, 5 running, 190 sleeping, 0 stopped, 0 zombie
Cpu(s):  3.5% us, 12.5% sy,  0.0% ni, 58.5% id, 25.4% wa,  0.1% hi,  0.0% si
Mem: 4137836k total,  1607424k used,  2530412k free, 176496k buffers
Swap:  8193108k total,    144k used,  8192964k free, 535904k cached

  PID USER    PR  NI  VIRT  RES  SHR S %CPU %MEM TIME+  COMMAND
1788 daemon 15 0 16084 8512 3040 D  5.3  0.2 0:08.52 httpd
1960 daemon 15 0 16480 8936 3036 D  5.3  0.2 0:04.61 httpd
2014 daemon 15 0 16104 8560 3028 R  5.3  0.2 0:07.96 httpd
1848 daemon 16 0 16288 8760 3036 D  4.3  0.2 0:14.83 httpd
1900 daemon 18 0 16708 9120 3028 D  4.0  0.2 0:10.51 httpd
1964 daemon 18 0 15676 8056 3024 R  4.0  0.2 0:07.63 httpd
1918 daemon 18 0 14796 7016 2788 D  3.7  0.2 0:14.98 httpd
1841 daemon 18 0 16096 8552 3036 D  3.3  0.2 0:02.34 httpd
2134 daemon 18 0 14936 7128 2804 D  3.3  0.2 0:00.39 httpd
1958 daemon 18 0 14932 7040 2796 R  3.0  0.2 0:10.35 httpd
1984 daemon 18 0 15288 7688 2964 R  3.0  0.2 0:07.52 httpd
1993 daemon 18 0 15748 8080 2956 D  3.0  0.2 0:10.27 httpd
1783 daemon 15 0 16156 8624 3032 S  2.7  0.2 0:00.49 httpd
72 root    15 0    0 0 0 S  2.0  0.0 161:10.97 kswapd0
2020 daemon 15 0 16448 8912 3032 S  1.3  0.2 0:00.25 httpd
2087 daemon 16 0 16148 8600 3032 S  1.3  0.2 0:00.24 httpd
1891 daemon 16 0 16056 8484 3032 S  1.0  0.2 0:00.14 httpd
1953 daemon 15 0 15624 8024 2956 S  1.0  0.2 0:00.03 httpd
2064 daemon 15 0 15764 8208 3028 S  1.0  0.2 0:00.11 httpd
2080 daemon 15 0 16172 8600 3028 S  1.0  0.2 0:00.13 httpd
2105 daemon 16 0 16412 8828 3032 S  1.0  0.2 0:00.15 httpd
31680 root    16 0  2932 1076  744 R  0.7  0.0 0:10.05 top
2133 daemon 15 0 16176 8600 3020 S  0.7  0.2 0:00.20 httpd
1884 daemon 16 0 17336 9816 3032 S  0.3  0.2 0:00.46 httpd
1943 daemon 15 0 16124 8500 3028 S  0.3  0.2 0:00.21 httpd
2053 daemon 15 0 17304 9796 3044 S  0.3  0.2 0:00.39 httpd
2055 daemon 16 0 15332 7660 2948 S  0.3  0.2 0:00.03 httpd
2097 daemon 15 0 15532 7860 2956 S  0.3  0.2 0:00.06 httpd
2102 daemon 15 0 16112 8472 3028 S  0.3  0.2 0:00.10 httpd
1 root    16 0  2448  556  476 S  0.0  0.0 0:17.34 init
2 root    RT 0    0 0 0 S  0.0  0.0 0:00.76 migration/0
3 root    34  19    0 0 0 S  0.0  0.0 4:00.75 ksoftirqd/0
4 root    RT 0    0 0 0 S  0.0  0.0 0:00.53 migration/1

wigeboy

UID: 46043
帖子: 162
积分: 372
在线时间: 1 天 12 小时

2^# wigeboy 发表于 2007-07-16 17:40

vmstat 1

看看IO

love_mywife

UID: 29014
帖子: 20
积分: 46
在线时间: 10 分钟

3^# love_mywife 发表于 2007-07-17 15:27

[root@homekoo ~]# vmstat 1
procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu----
r  b swpd free buff  cache si so bi bo in cs us sy id wa
0  2 144 2502092 180928 533812 0 0    1    0 0    2  3  3 92  2
5  0 144 2502444 180708 533512 0 0 556 700 1864 18110  2 11 53 34
5  0 144 2504100 181184 533296 0 0 460 160 1624 21500  2 10 69 19
3  1 144 2504868 180640 533320 0 0 608    0 1788 27152  2 14 50 34
0  1 144 2505940 180676 532764 0 0 712 12 1924 26853  4 13 58 26
3  2 144 2507468 181144 533076 0 0 732    0 1791 33713  4 14 61 21
0  1 144 2506252 180384 532796 0 0 704 448 1971 21694  4 13 49 33
0  1 144 2505420 180944 533016 0 0 608 148 1686 27200  1 11 67 22
6  1 144 2506444 180508 532672 0 0 712 12 1750 36427  1 16 56 26
2  1 144 2508428 180684 532496 0 0 812    0 1788 43379  3 18 55 23
6  1 144 2510156 180452 532728 0 0 676 12 1605 31520  2 14 56 28
6  0 144 2511428 180124 532796 0 0 828 332 1859 33741  4 16 49 31
4  0 144 2511172 180660 532520 0 0 700 68 1983 25041  2 10 68 19
0  3 144 2511628 180616 532304 0 0 856 80 2214 26596  3 13 62 23
0  1 144 2513356 180376 532804 0 0 864    0 2273 41172  4 19 50 27
5  1 144 2513036 180756 532684 0 0 792    0 2172 40801  2 16 61 20
0  1 144 2516044 179836 533084 0 0 628 724 2133 30145  2 15 45 39
4  1 144 2518276 180320 532860 0 0 600 68 1798 23358  3 10 67 19
4  1 144 2517956 180812 533148 0 0 624 80 1762 26490  5 14 64 18
3  1 144 2518852 180348 532572 0 0 812    0 1757 25259  2 20 49 29
0  1 144 2518148 180656 532784 0 0 812    0 1780 26716  6 20 52 21
procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu----
r  b swpd free buff  cache si so bi bo in cs us sy id wa
5  0 144 2520644 180196 533244 0 0 672 784 1885 21912  3 17 55 25
0  1 144 2522180 180716 532724 0 0 528 88 1993 14411  3 10 62 24
0  3 144 2523332 180804 532896 0 0 728 80 1962 19780  6 11 57 26
0  1 144 2525444 180352 533088 0 0  1000    0 1799 33285  3 17 52 28
4  1 144 2526820 180840 532860 0 0 820    4 1885 36008  3 14 64 20
3  0 144 2527780 180664 532516 0 0 636 428 1803 24015  2 11 60 28
0  2 144 2526692 180392 532788 0 0 520 36 1947 24087  5 11 61 24
0  1 144 2528100 180440 532480 0 0 604 100 1533 23741  3 11 63 25
0  2 144 2529636 179744 533176 0 0 680    4 1582 34899  4 16 56 24
1  2 144 2527908 180012 532908 0 0 880    0 1853 39057  6 16 57 21