Question

Problems Logging Into Linux Box

Asked by: ITGLA

We are running an sftp/ftp server on a Mandrake 8 linux box.  I messed around with the /etc/passwd file and changed the user ID and group ID to 0:0 for just one user, thats all I did.  After that we weren't able to login to machine at all.  I can boot into failsafe mode and run graphic option and it asks for the root password and I enter it in and it works.. and I can get on to the system but I still can't login to ftp or sftp using any of the users.  Also something weird in the GUI mode I can run terminal.. it just opens and closes.  I also noticed something else odd when I boot it up normally it goes to our login prompt which usually then opens to a command line, well when I login as ROOT and use the right password it blinks and goes back to the user prompt, but if I use ROOT and just random passwords it always says incorrect login as with using the right password it doesn't just blinks and goes back to the user login.  I didn't touch anything else in the passwd file at all.  I also copied over the backup of the passwd, shadow, and group files.. any help as soon as possible would be appreciated as it is a company machine.  Thanks!

This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2008-12-01 at 12:40:54ID23947932
Tags

Mandrake

,

Linux

,

8

Topics

Mandrake Linux

,

Linux Setup

,

Linux Networking

Participating Experts
2
Points
500
Comments
23

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. Mandrake Installation
    I just downloaded mandrake linux off the web. It's in .iso format and I burned it to a CD. How do I start the installation? Thanks.
  2. passwd
    I have been working with tcl and expect trying to get an html page to change a users name and password for them. Either I did something or the expect program did something. Now when I log on to the Unix box and type passwd I get the following response: passwd: Changing pas...
  3. Mandrake and Win98
    Can you guys tell me how to connect my win98 machine to my mandrake machine. I downloaded samba to the mandrake machine but cant seem to get it to install. I downloaded it to my /home dir. I can see it there but when I click on it to open it says it cant list the files. Also ...

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: omarfaridPosted on 2008-12-01 at 12:47:42ID: 23072246

can you post the content of the /etc/passwd file? you may remove sensitive data while posting

 

by: joolsPosted on 2008-12-01 at 13:17:09ID: 23072462

You login as `ROOT`? Does `root` work?

Can you post information from your /var/log/messages file.

Can you also press return and space out the information a few times, it makes reading the information a bit easier.

 

by: ITGLAPosted on 2008-12-01 at 13:21:07ID: 23072504

I attached the passwd file, the user blyles i edit to 0:0 but its back to what is was now.  Let me gather the log messages and I'll post that next.  Thanks!

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:
daemon:x:2:2:daemon:/sbin:
adm:x:3:4:adm:/var/adm:
lp:x:4:7:lp:/var/spool/lpd:
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:
news:x:9:13:news:/var/spool/news:
uucp:x:10:14:uucp:/var/spool/uucp:
operator:x:11:0:operator:/root:
games:x:12:100:games:/usr/games:
gopher:x:13:30:gopher:/usr/lib/gopher-data:
postgres:x:40:41:PostgreSQL Server:/var/lib/pgsql:/bin/bash
ftp:x:14:50:FTP User:/var/ftp:
gdm:x:42:42:GDM User:/var/lib/gdm:
htdig:x:51:51:HTDIG User:/var/www/html/htdig:
dhcpd:x:19:19:Dhcpd User:/var/dhcpd:
named:x:25:25:Bind User:/var/named:
nscd:x:28:28:NSCD Daemon:/:/bin/false
apache:x:48:48:Apache User:/var/www:
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/bin/false
rpc:x:32:32:Portmapper RPC user:/:/bin/false
sympa:x:89:89:Sympa Mailing list manager:/var/lib/sympa:/bin/bash
nobody:x:99:99:Nobody:/:
alias:x:400:401:qmail alias user:/var/qmail/alias:/bin/true
qmaild:x:401:401:qmaild user:/var/qmail:/bin/true
qmaill:x:402:401:qmaill user:/var/qmail:/bin/true
qmailp:x:403:401:qmailp user:/var/qmail:/bin/true
qmailq:x:404:400:qmailq user:/var/qmail:/bin/true
qmailr:x:405:400:qmailr user:/var/qmail:/bin/true
qmails:x:406:400:qmails user:/var/qmail:/bin/true
dnscache:x:410:405:dnscache user:/var/djbdns:/bin/true
dnslog:x:411:405:dnslog user:/var/djbdns:/bin/true
tinydns:x:412:405:tinydns user:/var/djbdns:/bin/true
axfrdns:x:413:405:axfrdns user:/var/djbdns:/bin/true
xfs:x:414:414:X Font Server:/etc/X11/fs:/bin/false
postfix:x:415:416:postfix:/var/spool/postfix:
squid:x:23:23::/var/spool/squid:/dev/null
ual2book:x:502:506::/home/ual2book:/bin/bash
ual2gla:x:503:507::/home/ual2gla:/bin/bash
revacct:x:505:510::/home/revacct:/bin/bash
gla2ual:x:506:511::/home/gla2ual:/bin/bash
frontier:x:507:512::/home/frontier:/bin/bash
radixx:x:508:513::/home/radixx:/bin/bash
winscape:x:511:516::/home/winscape:/bin/bash
mysql:x:416:417:MySQL server:/var/lib/mysql:/bin/bash
mrtg:x:513:518::/home/mrtg:/bin/bash
webtts:x:516:521::/home/webtts:/bin/bash
Gdnscache:x:517:522::/home/Gdnscache:/bin/bash
Gdnslog:x:518:523::/home/Gdnslog:/bin/bash
www:x:519:524::/home/www:/bin/bash
roger:x:521:526::/home/roger:/bin/bash
cwilken:x:524:529::/home/cwilken:/bin/bash
atpco:x:526:531::/home/atpco:/bin/bash
marketing:x:527:532::/home/marketing:/bin/bash
cbellis:x:528:533::/home/cbellis:/bin/bash
xerbit:x:529:534::/home/xerbit:/bin/bash
dash:x:530:525::/home/dash:/bin/bash
dashgroup:x:531:535::/home/dashgroup:/bin/bash
bidt2gla:x:532:536::/home/bidt2gla:/bin/bash
tcn2atpco:x:534:538::/home/tcn2atpco:/bin/bash
glaiet:x:535:539::/home/glaiet:/bin/bash
radixxtest:x:536:540::/home/radixxtest:/bin/bash
mci:x:537:537::/home/mci:/bin/bash
mgross:x:539:542::/home/mgross:/bin/bash
blyles:x:540:543::/home/blyles:/bin/bash
accpac:x:541:541::/home/accpac:/bin/bash
voyager:x:542:544::/home/voyager:/bin/bash
                                              
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:

Select allOpen in new window

 

by: omarfaridPosted on 2008-12-01 at 13:25:21ID: 23072543

I don't see any problem in /etc/passwd, is it synced with /etc/shadow file?

 

by: ITGLAPosted on 2008-12-01 at 13:27:39ID: 23072571

And yes.. I was using "root" the whole time sorry I just type it as "ROOT."  Here are the log messages..

Dec  1 13:01:47 ftp syslogd 1.4-0: restart.
 
Dec  1 13:01:48 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:01:48 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:01:59 ftp syslogd 1.4-0: restart.
Dec  1 13:01:59 ftp syslogd 1.4-0: restart.
Dec  1 13:01:59 ftp syslogd 1.4-0: restart.
Dec  1 13:01:59 ftp syslogd 1.4-0: restart.
Dec  1 13:01:59 ftp syslogd 1.4-0: restart.
Dec  1 13:01:59 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:00 ftp syslogd 1.4-0: restart.
Dec  1 13:02:03 ftp syslogd 1.4-0: restart.
 
Dec  1 13:02:04 ftp AESctl: httpd -USR1 succeeded
 
Dec  1 13:02:16 ftp last message repeated 31 times
 
Dec  1 13:02:20 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
 
Dec  1 13:02:32 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:02:33 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:02:47 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:02:47 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:02:57 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
 
Dec  1 13:03:04 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:03:04 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:03:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:03:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:03:26 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:03:26 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:03:31 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:03:32 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:03:48 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:03:49 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:03:56 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:03:56 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:04:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:04:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:04:24 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:04:24 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:04:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:04:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:04:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
 
Dec  1 13:04:38 ftp arpwatch: report: pausing (cdepth 3)
 
Dec  1 13:04:39 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
 
Dec  1 13:04:39 ftp arpwatch: report: pausing (cdepth 3)
 
Dec  1 13:04:39 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:04:39 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:04:40 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:04:40 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:04:41 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:04:41 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:04:41 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:04:49 ftp arpwatch: bogon 192.168.10.219 0:d:60:70:fa:b2
Dec  1 13:04:53 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:05:05 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:05:05 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:05:30 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:05:31 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:05:44 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:05:46 ftp last message repeated 2 times
Dec  1 13:05:52 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:05:52 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:06:13 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:06:13 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:06:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:06:30 ftp anacron[1201]: Job `cron.weekly' started
Dec  1 13:06:30 ftp anacron[4568]: Updated timestamp for job `cron.weekly' to 2008-12-01
Dec  1 13:06:56 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:06:56 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:06:56 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:06:57 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:06:58 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:07:02 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:07:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:07:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:07:16 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:08:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:08:34 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:08:34 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:09:18 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:09:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:10:00 ftp CROND[11675]: (root) CMD (   /sbin/rmmod -as) 
Dec  1 13:10:00 ftp kernel: es1371: unloading
Dec  1 13:10:01 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:10:01 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:10:01 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:10:01 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:10:02 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:10:06 ftp anacron[1201]: Job `cron.weekly' terminated
Dec  1 13:10:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:11:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:11:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:11:30 ftp anacron[1201]: Job `cron.monthly' started
Dec  1 13:11:30 ftp anacron[12127]: Updated timestamp for job `cron.monthly' to 2008-12-01
Dec  1 13:11:30 ftp anacron[1201]: Job `cron.monthly' terminated
Dec  1 13:13:00 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:13:00 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:14:07 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:14:07 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:14:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:37 ftp last message repeated 9 times
Dec  1 13:14:41 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:14:41 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:14:41 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:42 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:14:42 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:14:43 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:14:44 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:14:44 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:14:44 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:14:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:14:49 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:49 ftp arpwatch: bogon 192.168.10.218 0:c:29:a8:c4:22
Dec  1 13:14:52 ftp sshd[12419]: User root not allowed because shell /bin/bash^M does not exist
Dec  1 13:14:52 ftp sshd[12419]: input_userauth_request: illegal user root
Dec  1 13:14:52 ftp sshd[12419]: Could not reverse map address 192.168.6.231.
Dec  1 13:14:52 ftp sshd[12419]: Failed none for illegal user root from 192.168.6.231 port 11430 ssh2
Dec  1 13:14:52 ftp sshd[12419]: Failed keyboard-interactive for illegal user root from 192.168.6.231 port 11430 ssh2
Dec  1 13:14:52 ftp sshd[12419]: Failed password for illegal user root from 192.168.6.231 port 11430 ssh2
Dec  1 13:14:52 ftp sshd[12419]: Received disconnect from 192.168.6.231: 11: No more passwords available to try
Dec  1 13:14:52 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:53 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:14:53 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:14:53 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:14:57 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:15:14 ftp last message repeated 5 times
Dec  1 13:15:15 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:15:15 ftp arpwatch: bogon 192.168.10.1 0:12:d9:93:79:30
Dec  1 13:15:18 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:15:20 ftp arpwatch: bogon 192.168.10.219 0:d:60:70:fa:b2
Dec  1 13:15:22 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:15:26 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:15:26 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:15:26 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:15:42 ftp last message repeated 6 times
Dec  1 13:15:44 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:15:44 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:15:46 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:16:11 ftp last message repeated 8 times
Dec  1 13:16:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:16:15 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:16:44 ftp last message repeated 9 times
Dec  1 13:16:44 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:16:44 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:16:47 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:16:52 ftp last message repeated 2 times
Dec  1 13:16:54 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:16:54 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:16:55 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:07 ftp last message repeated 6 times
Dec  1 13:17:08 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:08 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:10 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:10 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:17:11 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:11 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:11 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:17:12 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:12 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:17 ftp last message repeated 2 times
Dec  1 13:17:21 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:21 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:21 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:22 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:22 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:17:22 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:24 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:41 ftp last message repeated 6 times
Dec  1 13:17:42 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:42 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:45 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:17:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:17:49 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:17:58 ftp last message repeated 2 times
Dec  1 13:18:02 ftp arpwatch: bogon 192.168.10.1 0:12:d9:93:79:30
Dec  1 13:18:05 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:18:06 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:18:06 ftp arpwatch: bogon 192.168.10.1 0:12:d9:93:79:30
Dec  1 13:18:10 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:18:10 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:18:11 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:18:11 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:18:11 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:18:14 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:18:14 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:18:17 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:18:17 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:18:43 ftp last message repeated 8 times
Dec  1 13:18:44 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:18:44 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:18:45 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:18:45 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:18:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:18:46 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:19:04 ftp last message repeated 6 times
Dec  1 13:19:05 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:19:05 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:19:07 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:19:07 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:19:07 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:19:08 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:19:09 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:19:09 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:19:16 ftp last message repeated 2 times
Dec  1 13:19:16 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:19:20 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:19:32 ftp last message repeated 3 times
Dec  1 13:19:32 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:19:32 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:19:35 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:20:00 ftp last message repeated 9 times
Dec  1 13:20:00 ftp CROND[12479]: (root) CMD (   /sbin/rmmod -as) 
Dec  1 13:20:01 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:20:09 ftp last message repeated 3 times
Dec  1 13:20:10 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:20:10 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:20:12 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:20:30 ftp last message repeated 7 times
Dec  1 13:20:34 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:20:34 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:20:34 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:21:07 ftp last message repeated 11 times
Dec  1 13:21:19 ftp last message repeated 3 times
Dec  1 13:21:22 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:21:22 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:21:23 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:21:35 ftp last message repeated 5 times
Dec  1 13:21:37 ftp arpwatch: bogon 192.168.10.219 0:d:60:70:fa:b2
Dec  1 13:21:39 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:21:43 ftp last message repeated 2 times
Dec  1 13:21:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:21:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:21:47 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:22:20 ftp last message repeated 9 times
Dec  1 13:23:17 ftp last message repeated 19 times
Dec  1 13:23:17 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:23:17 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:23:18 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:23:22 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:23:24 ftp kernel: es1371: version v0.30 time 23:13:13 Apr 15 2001
Dec  1 13:23:24 ftp kernel: es1371: found chip, vendor id 0x1274 device id 0x5880 revision 0x02
Dec  1 13:23:24 ftp kernel: PCI: Found IRQ 4 for device 00:0a.0
Dec  1 13:23:24 ftp kernel: PCI: The same IRQ used for device 00:07.2
Dec  1 13:23:24 ftp kernel: PCI: The same IRQ used for device 00:07.3
Dec  1 13:23:24 ftp kernel: es1371: found es1371 rev 2 at io 0xe000 irq 4
Dec  1 13:23:24 ftp kernel: es1371: features: joystick 0x0
Dec  1 13:23:24 ftp kernel: ac97_codec: AC97 Audio codec, id: 0x8384:0x7609 (SigmaTel STAC9721/23)
Dec  1 13:23:24 ftp modprobe: modprobe: Can't locate module sound-service-0-3
Dec  1 13:23:24 ftp kde(pam_unix)[785]: session closed for user root
Dec  1 13:23:25 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:23:55 ftp last message repeated 9 times
Dec  1 13:23:57 ftp sshd[12512]: User root not allowed because shell /bin/bash^M does not exist
Dec  1 13:23:57 ftp sshd[12512]: input_userauth_request: illegal user root
Dec  1 13:23:57 ftp sshd[12512]: Could not reverse map address 192.168.6.235.
Dec  1 13:23:57 ftp sshd[12512]: Failed none for illegal user root from 192.168.6.235 port 17648 ssh2
Dec  1 13:23:57 ftp sshd[12512]: Failed keyboard-interactive for illegal user root from 192.168.6.235 port 17648 ssh2
Dec  1 13:23:57 ftp sshd[12512]: Failed password for illegal user root from 192.168.6.235 port 17648 ssh2
Dec  1 13:23:57 ftp sshd[12512]: fatal: Read from socket failed: Connection reset by peer
Dec  1 13:23:59 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:24:10 ftp last message repeated 3 times
Dec  1 13:24:10 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:24:10 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:24:11 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:24:40 ftp last message repeated 8 times
Dec  1 13:24:45 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:24:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:24:45 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:24:48 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:25:17 ftp last message repeated 10 times
Dec  1 13:25:21 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:25:21 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:25:22 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:25:30 ftp last message repeated 3 times
Dec  1 13:25:32 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:25:32 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:25:33 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:25:38 ftp last message repeated 3 times
Dec  1 13:25:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:25:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:25:42 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:25:43 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:25:43 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:25:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:26:10 ftp last message repeated 8 times
Dec  1 13:26:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:26:14 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:26:15 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:26:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:26:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:26:19 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:26:23 ftp last message repeated 2 times
Dec  1 13:26:23 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:26:27 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:00 ftp last message repeated 10 times
Dec  1 13:27:04 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:04 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:04 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:11 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:11 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:11 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:12 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:16 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:17 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:18 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:18 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:27:18 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:19 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:20 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:21 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:21 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:24 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:26 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:26 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:27 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:45 ftp last message repeated 6 times
Dec  1 13:27:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:46 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:49 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:27:49 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:27:49 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:27:53 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:28:09 ftp last message repeated 5 times
Dec  1 13:28:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:28:13 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:28:13 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:28:14 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:28:16 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:28:17 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:28:17 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:28:18 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:28:38 ftp last message repeated 8 times
Dec  1 13:28:39 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:28:39 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:28:42 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:28:55 ftp last message repeated 5 times
Dec  1 13:28:56 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:28:57 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:28:57 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:28:59 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:01 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:02 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:03 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:05 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:07 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:08 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:09 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:11 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:13 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:15 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:29:16 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:29:17 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:17 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:19 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:22 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:23 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:25 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:26 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:27 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:29 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:30 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:31 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:33 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:34 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:35 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:36 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:37 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:38 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:29:38 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:29:40 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:42 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:43 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:44 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:47 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:48 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:51 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:51 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:52 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:54 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:54 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:56 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:29:58 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:29:59 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:00 ftp CROND[12558]: (root) CMD (   /sbin/rmmod -as) 
Dec  1 13:30:00 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:03 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:03 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:04 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:07 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:09 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:10 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:11 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:12 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:13 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:30:13 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:14 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:15 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:17 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:18 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:30:19 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:30:20 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:20 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:21 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:23 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:23 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:25 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:27 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:27 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:29 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:30 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:31 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:33 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:34 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:30:35 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:37 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:39 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:39 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:30:41 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:42 ftp webmin: Stopping Webmin server in /usr/libexec/webmin
Dec  1 13:30:42 ftp rc: Stopping webmin:  succeeded
Dec  1 13:30:42 ftp Font Server[735]: terminating 
Dec  1 13:30:43 ftp xfs: xfs shutdown succeeded
Dec  1 13:30:43 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:30:43 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:30:44 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:30:44 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:30:44 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:30:45 ftp httpd: httpd-perl shutdown succeeded
Dec  1 13:30:45 ftp httpd: httpd shutdown succeeded
Dec  1 13:30:45 ftp proftpd[696]: ftp.flygreatlakes.com - ProFTPD killed (signal 15) 
Dec  1 13:30:45 ftp proftpd[696]: ftp.flygreatlakes.com - ProFTPD 1.2.2rc1 standalone mode SHUTDOWN 
Dec  1 13:30:45 ftp proftpd: proftpd shutdown succeeded
Dec  1 13:30:45 ftp sshd: Shutting down sshd: 
Dec  1 13:30:45 ftp sshd[630]: Received signal 15; terminating.
Dec  1 13:30:45 ftp sshd: ^[[60G[  ^[[1;32m
Dec  1 13:30:45 ftp sshd: 
Dec  1 13:30:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:30:45 ftp rc: Stopping sshd:  succeeded
Dec  1 13:30:46 ftp kernel: device eth0 left promiscuous mode
Dec  1 13:30:46 ftp arpwatch: arpwatch shutdown succeeded
Dec  1 13:30:46 ftp crond: crond shutdown succeeded
Dec  1 13:30:46 ftp kernel: Kernel logging (proc) stopped.
Dec  1 13:30:46 ftp kernel: Kernel log daemon terminating.
Dec  1 13:30:47 ftp syslog: klogd shutdown succeeded
Dec  1 13:30:47 ftp exiting on signal 15
Dec  1 13:38:33 ftp syslogd 1.4-0: restart.
Dec  1 13:38:33 ftp syslog: syslogd startup succeeded
Dec  1 13:38:33 ftp kernel: klogd 1.4-0, log source = /proc/kmsg started.
Dec  1 13:38:33 ftp kernel: Inspecting /boot/System.map-2.4.3-20mdk
Dec  1 13:38:33 ftp syslog: klogd startup succeeded
Dec  1 13:38:33 ftp kernel: Loaded 14222 symbols from /boot/System.map-2.4.3-20mdk.
Dec  1 13:38:33 ftp kernel: Symbols match kernel version 2.4.3.
Dec  1 13:38:33 ftp kernel: Loaded 68 symbols from 4 modules.
Dec  1 13:38:33 ftp kernel: Linux version 2.4.3-20mdk (chmou@no.mandrakesoft.com) (gcc version egcs-2.91.66 19990314/Linux (egcs-1.1.2 release / Linux-Mandrake 8.0)) #1 Sun Apr 15 23:03:10 CEST 2001
Dec  1 13:38:33 ftp kernel: BIOS-provided physical RAM map:
Dec  1 13:38:33 ftp kernel:  BIOS-e820: 0000000000000000 - 000000000009fc00 (usable)
Dec  1 13:38:33 ftp kernel:  BIOS-e820: 000000000009fc00 - 00000000000a0000 (reserved)
Dec  1 13:38:33 ftp kernel:  BIOS-e820: 00000000000f0000 - 0000000000100000 (reserved)
Dec  1 13:38:33 ftp kernel:  BIOS-e820: 0000000000100000 - 0000000040000000 (usable)
Dec  1 13:38:33 ftp kernel:  BIOS-e820: 00000000ffff0000 - 0000000100000000 (reserved)
Dec  1 13:38:33 ftp kernel: Warning only 896MB will be used.
Dec  1 13:38:33 ftp kernel: Use a HIGHMEM enabled kernel.
Dec  1 13:38:33 ftp kernel: On node 0 totalpages: 229376
Dec  1 13:38:33 ftp kernel: zone(0): 4096 pages.
Dec  1 13:38:33 ftp kernel: zone(1): 225280 pages.
Dec  1 13:38:33 ftp kernel: zone(2): 0 pages.
Dec  1 13:38:33 ftp kernel: hm, page 01000000 reserved twice.
Dec  1 13:38:33 ftp kernel: Kernel command line: auto BOOT_IMAGE=linux ro root=305 hdd=ide-scsi quiet
Dec  1 13:38:33 ftp kernel: ide_setup: hdd=ide-scsi
Dec  1 13:38:33 ftp kernel: Initializing CPU#0
Dec  1 13:38:33 ftp kernel: Detected 963.113 MHz processor.
Dec  1 13:38:33 ftp kernel: Console: colour dummy device 80x25
Dec  1 13:38:33 ftp kernel: Calibrating delay loop... 1920.20 BogoMIPS
Dec  1 13:38:33 ftp kernel: Memory: 899484k/917504k available (976k kernel code, 17632k reserved, 287k data, 696k init, 0k highmem)
Dec  1 13:38:33 ftp kernel: Dentry-cache hash table entries: 131072 (order: 8, 1048576 bytes)
Dec  1 13:38:33 ftp kernel: Buffer-cache hash table entries: 65536 (order: 6, 262144 bytes)
Dec  1 13:38:33 ftp kernel: Page-cache hash table entries: 262144 (order: 8, 1048576 bytes)
Dec  1 13:38:33 ftp kernel: Inode-cache hash table entries: 65536 (order: 7, 524288 bytes)
Dec  1 13:38:33 ftp kernel: VFS: Diskquotas version dquot_6.5.0 initialized
Dec  1 13:38:33 ftp kernel: CPU: L1 I Cache: 64K (64 bytes/line), D cache 64K (64 bytes/line)
Dec  1 13:38:33 ftp kernel: CPU: L2 Cache: 256K (64 bytes/line)
Dec  1 13:38:33 ftp kernel: CPU: AMD Athlon(tm) Processor stepping 02
Dec  1 13:38:33 ftp kernel: Enabling fast FPU save and restore... done.
Dec  1 13:38:33 ftp kernel: Checking 'hlt' instruction... OK.
Dec  1 13:38:33 ftp kernel: POSIX conformance testing by UNIFIX
Dec  1 13:38:33 ftp kernel: mtrr: v1.40 (20010327) Richard Gooch (rgooch@atnf.csiro.au)
Dec  1 13:38:33 ftp kernel: mtrr: detected mtrr type: Intel
Dec  1 13:38:33 ftp kernel: PCI: PCI BIOS revision 2.10 entry at 0xfb380, last bus=1
Dec  1 13:38:33 ftp kernel: PCI: Using configuration type 1
Dec  1 13:38:33 ftp kernel: PCI: Probing PCI hardware
Dec  1 13:38:33 ftp kernel: PCI: Bus master Pipeline request disabled
Dec  1 13:38:33 ftp kernel: PCI: Post Write Fail set to Retry
Dec  1 13:38:33 ftp kernel: PCI: Using IRQ router VIA [1106/0686] at 00:07.0
Dec  1 13:38:33 ftp kernel: isapnp: Scanning for PnP cards...
Dec  1 13:38:33 ftp kernel: isapnp: No Plug & Play device found
Dec  1 13:38:33 ftp kernel: Linux NET4.0 for Linux 2.4
Dec  1 13:38:33 ftp kernel: Based upon Swansea University Computer Society NET3.039
Dec  1 13:38:33 ftp kernel: Initializing RT netlink socket
Dec  1 13:38:33 ftp kernel: apm: BIOS version 1.2 Flags 0x07 (Driver version 1.14)
Dec  1 13:38:33 ftp kernel: Starting kswapd v1.8
Dec  1 13:38:33 ftp kernel: vesafb: framebuffer at 0xd8000000, mapped to 0xf8800000, size 16384k
Dec  1 13:38:33 ftp kernel: vesafb: mode is 800x600x16, linelength=1600, pages=16
Dec  1 13:38:33 ftp kernel: vesafb: protected mode interface info at c000:83ff
Dec  1 13:38:33 ftp kernel: vesafb: scrolling: redraw
Dec  1 13:38:33 ftp kernel: vesafb: directcolor: size=0:5:6:5, shift=0:11:5:0
Dec  1 13:38:33 ftp kernel: Console: switching to colour frame buffer device 100x37
Dec  1 13:38:33 ftp kernel: fb0: VESA VGA frame buffer device
Dec  1 13:38:33 ftp kernel: pty: 256 Unix98 ptys configured
Dec  1 13:38:33 ftp kernel: block: queued sectors max/low 597642kB/466570kB, 1792 slots per queue
Dec  1 13:38:33 ftp kernel: RAMDISK driver initialized: 16 RAM disks of 4096K size 1024 blocksize
Dec  1 13:38:33 ftp kernel: Uniform Multi-Platform E-IDE driver Revision: 6.31
Dec  1 13:38:33 ftp kernel: ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx
Dec  1 13:38:33 ftp kernel: VP_IDE: IDE controller on PCI bus 00 dev 39
Dec  1 13:38:33 ftp kernel: VP_IDE: chipset revision 16
Dec  1 13:38:33 ftp kernel: VP_IDE: not 100%% native mode: will probe irqs later
Dec  1 13:38:33 ftp kernel: VP_IDE: VIA vt82c686a (rev 22) IDE UDMA66 controller on pci00:07.1
Dec  1 13:38:33 ftp kernel:     ide0: BM-DMA at 0xd000-0xd007, BIOS settings: hda:DMA, hdb:pio
Dec  1 13:38:33 ftp kernel:     ide1: BM-DMA at 0xd008-0xd00f, BIOS settings: hdc:DMA, hdd:DMA
Dec  1 13:38:33 ftp kernel: hda: ST330630A, ATA DISK drive
Dec  1 13:38:33 ftp kernel: hdc: DELTA OPC-K101/ST1 F/W by OIPD, ATAPI CD/DVD-ROM drive
Dec  1 13:38:33 ftp kernel: hdd: CR-4804TE, ATAPI CD/DVD-ROM drive
Dec  1 13:38:33 ftp kernel: ide0 at 0x1f0-0x1f7,0x3f6 on irq 14
Dec  1 13:38:33 ftp kernel: ide1 at 0x170-0x177,0x376 on irq 15
Dec  1 13:38:33 ftp kernel: hda: 59777640 sectors (30606 MB) w/2048KiB Cache, CHS=3720/255/63, UDMA(33)
Dec  1 13:38:33 ftp kernel: hdc: ATAPI 40X CD-ROM drive, 128kB Cache, UDMA(33)
Dec  1 13:38:33 ftp kernel: Uniform CD-ROM driver Revision: 3.12
Dec  1 13:38:33 ftp kernel: Partition check:
Dec  1 13:38:33 ftp kernel:  hda: hda1 < hda5 hda6 hda7 >
Dec  1 13:38:33 ftp kernel: RAMDISK: Compressed image found at block 0
Dec  1 13:38:33 ftp kernel: Uncompressing....done.
Dec  1 13:38:33 ftp kernel: Freeing initrd memory: 71k freed
Dec  1 13:38:33 ftp kernel: Serial driver version 5.05 (2000-12-13) with HUB-6 MANY_PORTS MULTIPORT SHARE_IRQ SERIAL_PCI ISAPNP enabled
Dec  1 13:38:33 ftp kernel: ttyS01 at 0x02f8 (irq = 3) is a 16550A
Dec  1 13:38:33 ftp kernel: ttyS02 at 0x03e8 (irq = 4) is a 16550A
Dec  1 13:38:33 ftp kernel: md driver 0.90.0 MAX_MD_DEVS=256, MD_SB_DISKS=27
Dec  1 13:38:33 ftp kernel: md.c: sizeof(mdp_super_t) = 4096
Dec  1 13:38:33 ftp kernel: autodetecting RAID arrays
Dec  1 13:38:33 ftp kernel: autorun ...
Dec  1 13:38:33 ftp kernel: ... autorun DONE.
Dec  1 13:38:33 ftp kernel: NET4: Linux TCP/IP 1.0 for NET4.0
Dec  1 13:38:33 ftp kernel: IP Protocols: ICMP, UDP, TCP, IGMP
Dec  1 13:38:33 ftp kernel: IP: routing cache hash table of 8192 buckets, 64Kbytes
Dec  1 13:38:33 ftp kernel: TCP: Hash tables configured (established 262144 bind 65536)
Dec  1 13:38:33 ftp kernel: Linux IP multicast router 0.06 plus PIM-SM
Dec  1 13:38:33 ftp kernel: NET4: Unix domain sockets 1.0/SMP for Linux NET4.0.
Dec  1 13:38:33 ftp kernel: EXT2-fs warning: checktime reached, running e2fsck is recommended
Dec  1 13:38:33 ftp kernel: VFS: Mounted root (ext2 filesystem).
Dec  1 13:38:33 ftp kernel: SCSI subsystem driver Revision: 1.00
Dec  1 13:38:33 ftp kernel: VFS: Mounted root (ext2 filesystem) readonly.
Dec  1 13:38:33 ftp kernel: Trying to unmount old root ... okay
Dec  1 13:38:33 ftp kernel: Freeing unused kernel memory: 696k freed
Dec  1 13:38:33 ftp kernel: Adding Swap: 401584k swap-space (priority -1)
Dec  1 13:38:33 ftp kernel: scsi0 : SCSI host adapter emulation for IDE ATAPI devices
Dec  1 13:38:33 ftp kernel:   Vendor: MITSUMI   Model: CR-4804TE         Rev: 2.4C
Dec  1 13:38:33 ftp kernel:   Type:   CD-ROM                             ANSI SCSI revision: 02
Dec  1 13:38:33 ftp kernel: 8139too Fast Ethernet driver 0.9.15c loaded
Dec  1 13:38:33 ftp kernel: PCI: Found IRQ 10 for device 00:09.0
Dec  1 13:38:33 ftp kernel: eth0: RealTek RTL8139 Fast Ethernet at 0xf9856000, 00:50:ba:d8:01:01, IRQ 10
Dec  1 13:38:33 ftp kernel: PCI: Found IRQ 11 for device 00:0b.0
Dec  1 13:38:33 ftp kernel: eth1: D-Link DFE-538TX (RealTek RTL8139) at 0xf9858000, 00:40:05:08:08:6d, IRQ 11
Dec  1 13:38:33 ftp kernel: eth0: Setting half-duplex based on auto-negotiated partner ability 0000.
Dec  1 13:38:33 ftp arpwatch: arpwatch startup succeeded
Dec  1 13:38:33 ftp arpwatch: listening on eth0
Dec  1 13:38:33 ftp kernel: eth0: Promiscuous mode enabled.
Dec  1 13:38:33 ftp kernel: device eth0 entered promiscuous mode
Dec  1 13:38:33 ftp sshd: Starting sshd: 
Dec  1 13:38:34 ftp sshd[828]: Server listening on 0.0.0.0 port 22.
Dec  1 13:38:34 ftp sshd: sshd startup succeeded
Dec  1 13:38:34 ftp sshd: ^[[60G[  ^[[1;32m
Dec  1 13:38:34 ftp sshd: 
Dec  1 13:38:34 ftp rc: §hide§ §hide§ Starting sshd:   §end§ Starting sshd:   §end§ §hide§ Starting sshd:   §end§ Starting sshd:  succeeded
Dec  1 13:38:34 ftp loadkeys: Loading /usr/lib/kbd/keymaps/i386/qwerty/us.kmap.gz
Dec  1 13:38:34 ftp keytable: Loading keymap: us succeeded
Dec  1 13:38:34 ftp loadkeys: Loading /usr/lib/kbd/keymaps/include/compose.latin1.inc.gz
Dec  1 13:38:34 ftp keytable: Loading compose keys: compose.latin1.inc succeeded
Dec  1 13:38:34 ftp keytable:  succeeded
Dec  1 13:38:34 ftp proftpd: proftpd startup succeeded
Dec  1 13:38:34 ftp proftpd[901]: ftp.flygreatlakes.com - ProFTPD 1.2.2rc1 (release) (built Sun Apr 8 09:53:35 CEST 2001) standalone mode STARTUP 
Dec  1 13:38:34 ftp crond[913]: (CRON) STARTUP (fork ok) 
Dec  1 13:38:34 ftp crond[913]: (core) ORPHAN (no passwd entry) 
Dec  1 13:38:35 ftp crond: crond startup succeeded
Dec  1 13:38:36 ftp rc: §hide§ §hide§ Starting webmin:   §end§ Starting webmin:   §end§ §hide§ Starting webmin:   §end§ Starting webmin:  succeeded
Dec  1 13:38:36 ftp xfs: xfs startup succeeded
Dec  1 13:38:36 ftp xfs: listening on port -1 
Dec  1 13:38:37 ftp kernel: Winbond Super-IO detection, now testing ports 3F0,370,250,4E,2E ...
Dec  1 13:38:37 ftp kernel: SMSC Super-IO detection, now testing Ports 2F0, 370 ...
Dec  1 13:38:37 ftp kernel: parport0: PC-style at 0x378 [PCSPP,EPP]
Dec  1 13:38:37 ftp kernel: parport_pc: Via 686A parallel port: io=0x378
Dec  1 13:38:37 ftp kernel: lp0: using parport0 (polling).
Dec  1 13:38:37 ftp cups: cupsd startup succeeded
Dec  1 13:38:37 ftp dhcpd: Internet Software Consortium DHCP Server 2.0pl5
Dec  1 13:38:37 ftp dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
Dec  1 13:38:37 ftp dhcpd: All rights reserved.
Dec  1 13:38:37 ftp dhcpd: 
Dec  1 13:38:37 ftp dhcpd: Please contribute if you find this software useful.
Dec  1 13:38:37 ftp dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html
Dec  1 13:38:37 ftp dhcpd: 
Dec  1 13:38:37 ftp dhcpd: Internet Software Consortium DHCP Server 2.0pl5
Dec  1 13:38:37 ftp dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
Dec  1 13:38:37 ftp dhcpd: All rights reserved.
Dec  1 13:38:37 ftp dhcpd: 
Dec  1 13:38:37 ftp dhcpd: Please contribute if you find this software useful.
Dec  1 13:38:37 ftp dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html
Dec  1 13:38:37 ftp dhcpd: 
Dec  1 13:38:37 ftp dhcpd: No subnet declaration for eth0 (192.168.6.254).
Dec  1 13:38:37 ftp dhcpd: Please write a subnet declaration in your dhcpd.conf file for the
Dec  1 13:38:37 ftp dhcpd: network segment to which interface eth0 is attached.
Dec  1 13:38:37 ftp dhcpd: exiting.
Dec  1 13:38:37 ftp dhcpd: No subnet declaration for eth0 (192.168.6.254).
Dec  1 13:38:37 ftp dhcpd: Please write a subnet declaration in your dhcpd.conf file for the
Dec  1 13:38:37 ftp dhcpd: network segment to which interface eth0 is attached.
Dec  1 13:38:37 ftp dhcpd: exiting.
Dec  1 13:38:37 ftp dhcpd: dhcpd startup failed
Dec  1 13:38:39 ftp modprobe: modprobe: Can't locate module char-major-180
Dec  1 13:38:39 ftp last message repeated 16 times
Dec  1 13:38:47 ftp login(pam_unix)[1035]: session opened for user root by LOGIN(uid=0)
Dec  1 13:38:47 ftp  -- root[1035]: ROOT LOGIN ON tty1
Dec  1 13:38:47 ftp login(pam_unix)[1035]: session closed for user root
Dec  1 13:39:24 ftp login(pam_unix)[1087]: authentication failure; logname=LOGIN uid=0 euid=0 tty=tty1 ruser= rhost=  user=root
Dec  1 13:39:26 ftp login[1087]: FAILED LOGIN 1 FROM (null) FOR root, Authentication failure
Dec  1 13:39:31 ftp login(pam_unix)[1087]: session opened for user root by LOGIN(uid=0)
Dec  1 13:39:31 ftp  -- root[1087]: ROOT LOGIN ON tty1
Dec  1 13:39:31 ftp login(pam_unix)[1087]: session closed for user root
Dec  1 13:39:34 ftp login(pam_unix)[1089]: check pass; user unknown
Dec  1 13:39:34 ftp login(pam_unix)[1089]: authentication failure; logname=LOGIN uid=0 euid=0 tty=tty1 ruser= rhost= 
Dec  1 13:39:34 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:39:35 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:39:35 ftp arpwatch: flip flop 192.168.6.2 0:11:25:22:18:41 (0:11:25:22:18:40)
Dec  1 13:39:35 ftp arpwatch: flip flop 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:39:35 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:39:37 ftp login[1089]: FAILED LOGIN 1 FROM (null) FOR rot, Authentication failure
Dec  1 13:39:39 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:39:39 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:39:39 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:39:39 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:39:39 ftp arpwatch: flip flop 192.168.6.2 0:11:25:22:18:41 (0:11:25:22:18:40)
Dec  1 13:39:40 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:39:40 ftp arpwatch: flip flop 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:39:41 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:39:41 ftp last message repeated 8 times
Dec  1 13:39:41 ftp arpwatch: report: pausing (cdepth 3)
Dec  1 13:39:41 ftp arpwatch: flip flop 192.168.6.2 0:11:25:22:18:41 (0:11:25:22:18:40)
Dec  1 13:39:41 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:39:42 ftp login(pam_unix)[1089]: session opened for user root by LOGIN(uid=0)
Dec  1 13:39:42 ftp  -- root[1089]: ROOT LOGIN ON tty1
Dec  1 13:39:42 ftp login(pam_unix)[1089]: session closed for user root
Dec  1 13:39:42 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:39:43 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:39:44 ftp arpwatch: flip flop 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:39:46 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:39:47 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:39:47 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:39:51 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:39:51 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:39:54 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:39:54 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:39:55 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:39:57 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:39:59 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:00 ftp CROND[1102]: (root) CMD (   /sbin/rmmod -as) 
Dec  1 13:40:01 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:03 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:05 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:06 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:07 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:08 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:11 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:11 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:13 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:14 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:15 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:18 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:19 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:22 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:24 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:24 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:25 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:26 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:28 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:29 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:30 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:32 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:32 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:33 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:35 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:36 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:36 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:38 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:39 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:39 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:40 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:41 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:42 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:42 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:43 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:44 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:45 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:46 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:46 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:48 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:49 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:50 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:51 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:51 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:52 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:54 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:54 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:56 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:40:57 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:58 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:40:58 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:40:59 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:00 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:02 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:03 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:04 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:05 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:06 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:08 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:09 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:10 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:13 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:13 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:14 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:17 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:17 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:18 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:21 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:21 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:23 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:24 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:25 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:25 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:27 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:28 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:29 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:29 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:31 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:32 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:32 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:33 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:33 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:34 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:35 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:37 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:37 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:39 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:40 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:40 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:41 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:41 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:42 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:43 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:45 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:45 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:48 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:48 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:48 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:49 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:49 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:51 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:52 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:53 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:54 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:56 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:41:57 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:58 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:41:58 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:41:59 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:00 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:02 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:02 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:04 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:06 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:06 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:10 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:10 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:12 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:14 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:14 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:16 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:18 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:18 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:19 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:20 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:21 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:22 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:22 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:24 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:26 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:26 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:27 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:29 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:29 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:29 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:30 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:30 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:32 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:33 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:34 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:34 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:37 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:37 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:38 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:38 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:39 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:40 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:41 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:43 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:43 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:46 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:46 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:47 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:47 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:49 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:51 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:51 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:53 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:54 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:55 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:55 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:57 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:42:58 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:42:59 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:42:59 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:00 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:01 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:03 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:03 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:05 ftp arpwatch: bogon 192.168.10.217 0:11:43:3d:fe:23
Dec  1 13:43:05 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:06 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:07 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:07 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:09 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:11 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:11 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:12 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:14 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:14 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:15 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:43:15 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:15 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:16 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:17 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:18 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:18 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:19 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:20 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:22 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:22 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:24 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:24 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:25 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:43:25 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:26 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:27 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:27 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:27 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:28 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:28 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:30 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:30 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:32 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:32 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:32 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:32 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:34 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:35 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:43:35 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:36 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:36 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:37 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:38 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:40 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:40 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:42 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:43 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:43 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:44 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:44 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:45 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:43:46 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:47 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:47 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:48 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:48 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:50 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:51 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:51 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:51 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:43:52 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:52 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:54 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:55 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:56 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:43:56 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:43:57 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:43:59 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:00 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:00 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:03 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:03 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:04 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:05 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:06 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:07 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:09 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:09 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:11 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:12 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:12 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:13 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:13 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:14 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:44:14 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:15 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:17 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:17 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:19 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:44:19 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:20 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:21 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:21 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:22 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:23 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:24 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:25 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:25 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:27 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:29 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:44:29 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:29 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:31 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:32 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:33 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:33 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:35 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:37 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:37 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:39 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:40 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:41 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:41 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:44 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:44 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:45 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:45 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:48 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:49 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:50 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:52 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:52 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:53 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:54 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:54 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:44:55 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:56 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:44:58 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:44:58 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:44:58 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:44:58 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:00 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:01 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:01 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:02 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:02 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:03 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:04 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:06 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:06 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:09 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:09 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:10 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:10 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:11 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:12 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:14 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:14 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:14 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:14 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:15 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:16 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:17 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:18 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:18 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:20 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:21 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:22 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:22 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:23 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:24 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:25 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:26 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:26 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:29 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:30 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:30 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:32 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:33 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:34 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:34 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:35 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:36 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:45:36 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:45:37 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:39 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:39 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:40 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:41 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:45:41 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:45:41 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:42 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:43 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:43 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:44 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:45 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:46 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:47 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:47 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:49 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:50 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:50 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:51 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:45:51 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:45:51 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:51 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:52 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:45:52 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:45:53 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:54 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:54 ftp last message repeated 2 times
Dec  1 13:45:55 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:55 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:57 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:45:58 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:58 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:45:59 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:45:59 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:45:59 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:01 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:03 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:03 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:04 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:04 ftp last message repeated 2 times
Dec  1 13:46:05 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:06 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:06 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:07 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:07 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:08 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f2 (0:d:60:83:55:f3)
Dec  1 13:46:08 ftp arpwatch: flip flop 192.168.6.100 0:d:60:83:55:f3 (0:d:60:83:55:f2)
Dec  1 13:46:09 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:09 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:10 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:11 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:11 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:13 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:14 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:14 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:14 ftp last message repeated 3 times
Dec  1 13:46:15 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:15 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:16 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:18 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:19 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:19 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:19 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:20 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:21 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:22 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:23 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:24 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:24 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:26 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:28 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:28 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:29 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:29 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:29 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:30 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:32 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:32 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:34 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:36 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:36 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:37 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:38 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:39 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:39 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:39 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:40 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:40 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:42 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:44 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:44 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:46 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:47 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:47 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:48 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:48 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:50 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:52 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:46:52 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:46:54 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:54 ftp arpwatch: ethernet mismatch 192.168.6.2 0:11:25:22:18:40 (0:11:25:22:18:41)
Dec  1 13:46:55 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:46:55 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:50:59 ftp syslogd 1.4-0: restart.
Dec  1 13:50:59 ftp syslog: syslogd startup succeeded
Dec  1 13:50:59 ftp kernel: klogd 1.4-0, log source = /proc/kmsg started.
Dec  1 13:50:59 ftp kernel: Inspecting /boot/System.map-2.4.3-20mdk
Dec  1 13:50:59 ftp syslog: klogd startup succeeded
Dec  1 13:50:59 ftp kernel: Loaded 14222 symbols from /boot/System.map-2.4.3-20mdk.
Dec  1 13:50:59 ftp kernel: Symbols match kernel version 2.4.3.
Dec  1 13:50:59 ftp kernel: Loaded 68 symbols from 4 modules.
Dec  1 13:50:59 ftp kernel: 8139too Fast Ethernet driver 0.9.15c loaded
Dec  1 13:50:59 ftp kernel: PCI: Found IRQ 10 for device 00:09.0
Dec  1 13:50:59 ftp kernel: eth0: RealTek RTL8139 Fast Ethernet at 0xf8855000, 00:50:ba:d8:01:01, IRQ 10
Dec  1 13:50:59 ftp kernel: PCI: Found IRQ 11 for device 00:0b.0
Dec  1 13:50:59 ftp kernel: eth1: D-Link DFE-538TX (RealTek RTL8139) at 0xf8857000, 00:40:05:08:08:6d, IRQ 11
Dec  1 13:50:59 ftp kernel: eth0: Setting 100mbps full-duplex based on auto-negotiated partner ability c1e1.
Dec  1 13:50:59 ftp arpwatch: listening on eth0
Dec  1 13:50:59 ftp arpwatch: arpwatch startup succeeded
Dec  1 13:50:59 ftp kernel: eth0: Promiscuous mode enabled.
Dec  1 13:50:59 ftp kernel: device eth0 entered promiscuous mode
Dec  1 13:50:59 ftp sshd: Starting sshd: 
Dec  1 13:50:59 ftp sshd[664]: Server listening on 0.0.0.0 port 22.
Dec  1 13:51:00 ftp sshd: sshd startup succeeded
Dec  1 13:51:00 ftp sshd: ^[[60G[  ^[[1;32m
Dec  1 13:51:00 ftp sshd: 
Dec  1 13:51:00 ftp rc: Starting sshd:  succeeded
Dec  1 13:51:00 ftp loadkeys: Loading /usr/lib/kbd/keymaps/i386/qwerty/us.kmap.gz
Dec  1 13:51:00 ftp keytable: Loading keymap: us succeeded
Dec  1 13:51:00 ftp loadkeys: Loading /usr/lib/kbd/keymaps/include/compose.latin1.inc.gz
Dec  1 13:51:00 ftp keytable: Loading compose keys: compose.latin1.inc succeeded
Dec  1 13:51:00 ftp keytable:  succeeded
Dec  1 13:51:00 ftp proftpd: proftpd startup succeeded
Dec  1 13:51:00 ftp proftpd[730]: ftp.flygreatlakes.com - ProFTPD 1.2.2rc1 (release) (built Sun Apr 8 09:53:35 CEST 2001) standalone mode STARTUP 
Dec  1 13:51:00 ftp crond[742]: (CRON) STARTUP (fork ok) 
Dec  1 13:51:00 ftp crond[742]: (core) ORPHAN (no passwd entry) 
Dec  1 13:51:00 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:51:01 ftp crond: crond startup succeeded
Dec  1 13:51:01 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:01 ftp rc: Starting webmin:  succeeded
Dec  1 13:51:01 ftp xfs: xfs startup succeeded
Dec  1 13:51:01 ftp xfs: listening on port -1 
Dec  1 13:51:02 ftp kernel: Winbond Super-IO detection, now testing ports 3F0,370,250,4E,2E ...
Dec  1 13:51:02 ftp kernel: SMSC Super-IO detection, now testing Ports 2F0, 370 ...
Dec  1 13:51:02 ftp kernel: parport0: PC-style at 0x378 [PCSPP,EPP]
Dec  1 13:51:02 ftp kernel: parport_pc: Via 686A parallel port: io=0x378
Dec  1 13:51:02 ftp kernel: lp0: using parport0 (polling).
Dec  1 13:51:02 ftp cups: cupsd startup succeeded
Dec  1 13:51:02 ftp dhcpd: Internet Software Consortium DHCP Server 2.0pl5
Dec  1 13:51:02 ftp dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
Dec  1 13:51:02 ftp dhcpd: Internet Software Consortium DHCP Server 2.0pl5
Dec  1 13:51:02 ftp dhcpd: All rights reserved.
Dec  1 13:51:02 ftp dhcpd: 
Dec  1 13:51:02 ftp dhcpd: Please contribute if you find this software useful.
Dec  1 13:51:02 ftp dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html
Dec  1 13:51:02 ftp dhcpd: 
Dec  1 13:51:02 ftp dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
Dec  1 13:51:02 ftp dhcpd: All rights reserved.
Dec  1 13:51:02 ftp dhcpd: 
Dec  1 13:51:02 ftp dhcpd: Please contribute if you find this software useful.
Dec  1 13:51:02 ftp dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html
Dec  1 13:51:02 ftp dhcpd: 
Dec  1 13:51:02 ftp dhcpd: No subnet declaration for eth0 (192.168.6.254).
Dec  1 13:51:02 ftp dhcpd: Please write a subnet declaration in your dhcpd.conf file for the
Dec  1 13:51:02 ftp dhcpd: network segment to which interface eth0 is attached.
Dec  1 13:51:02 ftp dhcpd: exiting.
Dec  1 13:51:02 ftp dhcpd: No subnet declaration for eth0 (192.168.6.254).
Dec  1 13:51:02 ftp dhcpd: Please write a subnet declaration in your dhcpd.conf file for the
Dec  1 13:51:02 ftp dhcpd: network segment to which interface eth0 is attached.
Dec  1 13:51:02 ftp dhcpd: exiting.
Dec  1 13:51:02 ftp dhcpd: dhcpd startup failed
Dec  1 13:51:02 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:51:02 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:03 ftp modprobe: modprobe: Can't locate module char-major-180
Dec  1 13:51:03 ftp last message repeated 16 times
Dec  1 13:51:04 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:51:05 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:06 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:51:06 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:08 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:51:10 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:51:10 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:13 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:51:13 ftp arpwatch: ethernet mismatch 192.168.6.246 0:11:25:c4:7b:85 (0:10:18:27:2b:0)
Dec  1 13:51:13 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:14 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:51:14 ftp arpwatch: bogon 192.168.10.216 0:d:60:dc:c4:a7
Dec  1 13:51:17 ftp arpwatch: bogon 192.168.10.212 0:2:55:fa:17:30
Dec  1 13:51:17 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:51:18 ftp arpwatch: bogon 12.29.0.25 0:d:60:dc:ca:e2
Dec  1 13:51:19 ftp arpw

                                              
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:
84:
85:
86:
87:
88:
89:
90:
91:
92:
93:
94:
95:
96:
97:
98:
99:
100:
101:
102:
103:
104:
105:
106:
107:
108:
109:
110:
111:
112:
113:
114:
115:
116:
117:
118:
119:
120:
121:
122:
123:
124:
125:
126:
127:
128:
129:
130:
131:
132:
133:
134:
135:
136:
137:
138:
139:
140:
141:
142:
143:
144:
145:
146:
147:
148:
149:
150:
151:
152:
153:
154:
155:
156:
157:
158:
159:
160:
161:
162:
163:
164:
165:
166:
167:
168:
169:
170:
171:
172:
173:
174:
175:
176:
177:
178:
179:
180:
181:
182:
183:
184:
185:
186:
187:
188:
189:
190:
191:
192:
193:
194:
195:
196:
197:
198:
199:
200:
201:
202:
203:
204:
205:
206:
207:
208:
209:
210:
211:
212:
213:
214:
215:
216:
217:
218:
219:
220:
221:
222:
223:
224:
225:
226:
227:
228:
229:
230:
231:
232:
233:
234:
235:
236:
237:
238:
239:
240:
241:
242:
243:
244:
245:
246:
247:
248:
249:
250:
251:
252:
253:
254:
255:
256:
257:
258:
259:
260:
261:
262:
263:
264:
265:
266:
267:
268:
269:
270:
271:
272:
273:
274:
275:
276:
277:
278:
279:
280:
281:
282:
283:
284:
285:
286:
287:
288:
289:
290:
291:
292:
293:
294:
295:
296:
297:
298:
299:
300:
301:
302:
303:
304:
305:
306:
307:
308:
309:
310:
311:
312:
313:
314:
315:
316:
317:
318:
319:
320:
321:
322:
323:
324:
325:
326:
327:
328:
329:
330:
331:
332:
333:
334:
335:
336:
337:
338:
339:
340:
341:
342:
343:
344:
345:
346:
347:
348:
349:
350:
351:
352:
353:
354:
355:
356:
357:
358:
359:
360:
361:
362:
363:
364:
365:
366:
367:
368:
369:
370:
371:
372:
373:
374:
375:
376:
377:
378:
379:
380:
381:
382:
383:
384:
385:
386:
387:
388:
389:
390:
391:
392:
393:
394:
395:
396:
397:
398:
399:
400:
401:
402:
403:
404:
405:
406:
407:
408:
409:
410:
411:
412:
413:
414:
415:
416:
417:
418:
419:
420:
421:
422:
423:
424:
425:
426:
427:
428:
429:
430:
431:
432:
433:
434:
435:
436:
437:
438:
439:
440:
441:
442:
443:
444:
445:
446:
447:
448:
449:
450:
451:
452:
453:
454:
455:
456:
457:
458:
459:
460:
461:
462:
463:
464:
465:
466:
467:
468:
469:
470:
471:
472:
473:
474:
475:
476:
477:
478:
479:
480:
481:
482:
483:
484:
485:
486:
487:
488:
489:
490:
491:
492:
493:
494:
495:
496:
497:
498:
499:
500:
501:
502:
503:
504:
505:
506:
507:
508:
509:
510:
511:
512:
513:
514:
515:
516:
517:
518:
519:
520:
521:
522:
523:
524:
525:
526:
527:
528:
529:
530:
531:
532:
533:
534:
535:
536:
537:
538:
539:
540:
541:
542:
543:
544:
545:
546:
547:
548:
549:
550:
551:
552:
553:
554:
555:
556:
557:
558:
559:
560:
561:
562:
563:
564:
565:
566:
567:
568:
569:
570:
571:
572:
573:
574:
575:
576:
577:
578:
579:
580:
581:
582:
583:
584:
585:
586:
587:
588:
589:
590:
591:
592:
593:
594:
595:
596:
597:
598:
599:
600:
601:
602:
603:
604:
605:
606:
607:
608:
609:
610:
611:
612:
613:
614:
615:
616:
617:
618:
619:
620:
621:
622:
623:
624:
625:
626:
627:
628:
629:
630:
631:
632:
633:
634:
635:
636:
637:
638:
639:
640:
641:
642:
643:
644:
645:
646:
647:
648:
649:
650:
651:
652:
653:
654:
655:
656:
657:
658:
659:
660:
661:
662:
663:
664:
665:
666:
667:
668:
669:
670:
671:
672:
673:
674:
675:
676:
677:
678:
679:
680:
681:
682:
683:
684:
685:
686:
687:
688:
689:
690:
691:
692:
693:
694:
695:
696:
697:
698:
699:
700:
701:
702:
703:
704:
705:
706:
707:
708:
709:
710:
711:
712:
713:
714:
715:
716:
717:
718:
719:
720:
721:
722:
723:
724:
725:
726:
727:
728:
729:
730:
731:
732:
733:
734:
735:
736:
737:
738:
739:
740:
741:
742:
743:
744:
745:
746:
747:
748:
749:
750:
751:
752:
753:
754:
755:
756:
757:
758:
759:
760:
761:
762:
763:
764:
765:
766:
767:
768:
769:
770:
771:
772:
773:
774:
775:
776:
777:
778:
779:
780:
781:
782:
783:
784:
785:
786:
787:
788:
789:
790:
791:
792:
793:
794:
795:
796:
797:
798:
799:
800:
801:
802:
803:
804:
805:
806:
807:
808:
809:
810:
811:
812:
813:
814:
815:
816:
817:
818:
819:
820:
821:
822:
823:
824:
825:
826:
827:
828:
829:
830:
831:
832:
833:
834:
835:
836:
837:
838:
839:
840:
841:
842:
843:
844:
845:
846:
847:
848:
849:
850:
851:
852:
853:
854:
855:
856:
857:
858:
859:
860:
861:
862:
863:
864:
865:
866:
867:
868:
869:
870:
871:
872:
873:
874:
875:
876:
877:
878:
879:
880:
881:
882:
883:
884:
885:
886:
887:
888:
889:
890:
891:
892:
893:
894:
895:
896:
897:
898:
899:
900:
901:
902:
903:
904:
905:
906:
907:
908:
909:
910:
911:
912:
913:
914:
915:
916:
917:
918:
919:
920:
921:
922:
923:
924:
925:
926:
927:
928:
929:
930:
931:
932:
933:
934:
935:
936:
937:
938:
939:
940:
941:
942:
943:
944:
945:
946:
947:
948:
949:
950:
951:
952:
953:
954:
955:
956:
957:
958:
959:
960:
961:
962:
963:
964:
965:
966:
967:
968:
969:
970:
971:
972:
973:
974:
975:
976:
977:
978:
979:
980:
981:
982:
983:
984:
985:
986:
987:
988:
989:
990:
991:
992:
993:
994:
995:
996:
997:
998:
999:
1000:
1001:
1002:
1003:
1004:
1005:
1006:
1007:
1008:
1009:
1010:
1011:
1012:
1013:
1014:
1015:
1016:
1017:
1018:
1019:
1020:
1021:
1022:
1023:
1024:
1025:
1026:
1027:
1028:
1029:
1030:
1031:
1032:
1033:
1034:
1035:
1036:
1037:
1038:
1039:
1040:
1041:
1042:
1043:
1044:
1045:
1046:
1047:
1048:
1049:
1050:
1051:
1052:
1053:
1054:
1055:
1056:
1057:
1058:
1059:
1060:
1061:
1062:
1063:
1064:
1065:
1066:
1067:
1068:
1069:
1070:
1071:
1072:
1073:
1074:
1075:
1076:
1077:
1078:
1079:
1080:
1081:
1082:
1083:
1084:
1085:
1086:
1087:
1088:
1089:
1090:
1091:
1092:
1093:
1094:
1095:
1096:
1097:
1098:
1099:
1100:
1101:
1102:
1103:
1104:
1105:
1106:
1107:
1108:
1109:
1110:
1111:
1112:
1113:
1114:
1115:
1116:
1117:
1118:
1119:
1120:
1121:
1122:
1123:
1124:
1125:
1126:
1127:
1128:
1129:
1130:
1131:
1132:
1133:
1134:
1135:
1136:
1137:
1138:
1139:
1140:
1141:
1142:
1143:
1144:
1145:
1146:
1147:
1148:
1149:
1150:
1151:
1152:
1153:
1154:
1155:
1156:
1157:
1158:
1159:
1160:
1161:
1162:
1163:
1164:
1165:
1166:
1167:
1168:
1169:
1170:
1171:
1172:
1173:
1174:
1175:
1176:
1177:
1178:
1179:
1180:
1181:
1182:
1183:
1184:
1185:
1186:
1187:
1188:
1189:
1190:
1191:
1192:
1193:
1194:
1195:
1196:
1197:
1198:
1199:
1200:
1201:
1202:
1203:
1204:
1205:
1206:
1207:
1208:
1209:
1210:
1211:
1212:
1213:
1214:
1215:
1216:
1217:
1218:
1219:
1220:
1221:
1222:
1223:
1224:
1225:
1226:
1227:
1228:
1229:
1230:
1231:
1232:
1233:
1234:
1235:
1236:
1237:
1238:
1239:
1240:
1241:
1242:
1243:
1244:
1245:
1246:
1247:
1248:
1249:
1250:
1251:
1252:
1253:

Select allOpen in new window

 

by: ITGLAPosted on 2008-12-01 at 13:29:15ID: 23072588

Yes.. everything looks just like it use to be.  I know my way around linux but still am new to things and I noticed /bin/bash wont run either when I execute it when I am logged in through failsafe.. wondering if that might be an issue as well.

 

by: omarfaridPosted on 2008-12-01 at 13:44:49ID: 23072718

what are the permissions of /bin/bash

 

by: ITGLAPosted on 2008-12-01 at 13:47:51ID: 23072749

As of right now everyone has read, write, and execute.  Owner is root.

 

by: joolsPosted on 2008-12-01 at 13:51:55ID: 23072790

It seems you have some garbage in your passwd file;

Dec  1 13:14:52 ftp sshd[12419]: User root not allowed because shell /bin/bash^M does not exist
Dec  1 13:14:52 ftp sshd[12419]: input_userauth_request: illegal user root
Dec  1 13:14:52 ftp sshd[12419]: Could not reverse map address 192.168.6.231.
Dec  1 13:14:52 ftp sshd[12419]: Failed none for illegal user root from 192.168.6.231 port 11430 ssh2

Do this;
   vi /etc/passwd
   :1,$s/CTRL+VM//g
NOTE: CTRL+VM means you press the Control Key + `V` then SHIFT + `m`.

Then have another go.

 

by: joolsPosted on 2008-12-01 at 13:56:24ID: 23072838

to make the conversion a bit easier, if dos2unix is on your system then you may prefer to use that instead.

 

by: ITGLAPosted on 2008-12-01 at 14:07:25ID: 23072934

I can't vi cause the terminal just opens and closes...

 

by: joolsPosted on 2008-12-01 at 14:09:59ID: 23072955

any errors in /var/log/messages or perhaps /var/log/secure?

Can you boot from some sort of rescue media or into rescue mode? sorry, not famialiar with that bit of Mandrake!

 

by: omarfaridPosted on 2008-12-01 at 14:14:35ID: 23072988

but you were able to login and as you mentioned you restored the files from backup. You should not have the ^M (control M) char in the restored files

 

by: ITGLAPosted on 2008-12-01 at 14:15:07ID: 23072992

Neither am I!  I'm a ubuntu guy... and I can open a vi editor and I typed in  : 1 , $ s / then pressed ctrl + v and shift + m and got an error i couldn't enter in / / g after, if I am doing it correctly?  (I didn't use the space I put in here, just used them here to make it look more clear.  The /var/log/messages is attached above.

 

by: ITGLAPosted on 2008-12-01 at 14:17:51ID: 23073014

There was a passwd and a passwd- same for the shadow and group files.  I read that the passwd- was a back up so I moved the passwd to the trash and renamed passwd- to passwd.

 

by: joolsPosted on 2008-12-01 at 14:22:13ID: 23073051

What was the error?

You can try `vi -b` on the file and just use the x key where you see the ^M char.

 

by: ITGLAPosted on 2008-12-01 at 14:27:32ID: 23073092

It said "pattern not found" ^M

 

by: omarfaridPosted on 2008-12-01 at 14:33:53ID: 23073131

it should be cntrl+v and cntrl+m and not shift-m

 

by: ITGLAPosted on 2008-12-01 at 14:37:06ID: 23073150

Did that and still got the same message.

 

by: joolsPosted on 2008-12-01 at 14:38:24ID: 23073160

if you vi -b the passwd file, is the ^M still there? It may be an old error if you moved the files over.

Is there anything being logged in /var/log?
We need to find the errors being produced, look for secure or perhaps audit.log files.

I could have a guess at a permissions problems or SELinux (if this is in Mandrake!) but it's all guess work unless we can find an actual error.

Try booting into single user mode, then init 2, init 3 and see if there is anything happening. but look for the errors in the files.

I'm about to call it a night, I'm sure someone else will pick the Q up if omar is not about.

 

by: joolsPosted on 2008-12-01 at 14:39:58ID: 23073175

sorry omar, well spotted... :-)

 

by: ITGLAPosted on 2008-12-01 at 14:58:00ID: 23073287

Thanks guys dos2unix worked :)

 

by: ITGLAPosted on 2008-12-01 at 14:59:30ID: 31521651

Thanks :)

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...