bullet4one
25.08.05, 18:25
hallo.
habe den thread schon gepostet, sehe und finde ihn aber nicht ?
gefressen ?
hier nochmals
jemand wollte inegang in mein pc als ich als root eingeloggt war
das systemprotokoll
Aug 16 19:34:46 fire hal-subfs-mount[6344]: registered at resmgrd and called(0) /bin/mount -t subfs -o fs=cdfss,ro,procuid,nosuid,nodev,exec /dev/hdc "/media/991020_2147"
Aug 16 19:34:46 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/chargen [file=/etc/xinetd.conf] [line=26]
Aug 16 19:34:46 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/chargen-udp [file=/etc/xinetd.d/chargen-udp] [line=13]
Aug 16 19:34:46 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/cups-lpd [file=/etc/xinetd.d/cups-lpd] [line=14]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/cvs [file=/etc/xinetd.d/cvs] [line=11]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/daytime [file=/etc/xinetd.d/daytime] [line=16]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/daytime-udp [file=/etc/xinetd.d/daytime-udp] [line=13]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/echo [file=/etc/xinetd.d/echo] [line=14]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/echo-udp [file=/etc/xinetd.d/echo-udp] [line=13]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/fam [file=/etc/xinetd.d/fam] [line=14]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/i4l-vbox [file=/etc/xinetd.d/i4l-vbox] [line=16]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/imap [file=/etc/xinetd.d/imap] [line=10]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/nagios-nrpe [file=/etc/xinetd.d/nagios-nrpe] [line=69]
Aug 16 19:34:47 fire sshd[6360]: Server listening on :: port 22.
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/netstat [file=/etc/xinetd.d/netstat] [line=15]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/qpopper [file=/etc/xinetd.d/qpopper] [line=16]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/rsync [file=/etc/xinetd.d/rsync] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/sane-port [file=/etc/xinetd.d/sane-port] [line=12]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/servers [file=/etc/xinetd.d/servers] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/services [file=/etc/xinetd.d/services] [line=13]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/swat [file=/etc/xinetd.d/swat] [line=13]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/systat [file=/etc/xinetd.d/systat] [line=12]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/tftp [file=/etc/xinetd.d/tftp] [line=17]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/time [file=/etc/xinetd.d/time] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/time-udp [file=/etc/xinetd.d/time-udp] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/vnc [file=/etc/xinetd.d/vnc] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/vsftpd [file=/etc/xinetd.d/vsftpd] [line=88]
Aug 16 19:34:48 fire xinetd[6351]: removing chargen
Aug 16 19:34:48 fire xinetd[6351]: removing chargen
Aug 16 19:34:48 fire xinetd[6351]: removing printer
Aug 16 19:34:48 fire xinetd[6351]: removing cvspserver
Aug 16 19:34:48 fire xinetd[6351]: removing daytime
Aug 16 19:34:48 fire xinetd[6351]: removing daytime
Aug 16 19:34:48 fire xinetd[6351]: removing echo
Aug 16 19:34:48 fire xinetd[6351]: removing echo
Aug 16 19:34:48 fire xinetd[6351]: removing fam
Aug 16 19:34:48 fire xinetd[6351]: removing vboxd
Aug 16 19:34:48 fire xinetd[6351]: removing pop2
Aug 16 19:34:48 fire xinetd[6351]: removing pop3
Aug 16 19:34:48 fire xinetd[6351]: removing pop3s
Aug 16 19:34:48 fire xinetd[6351]: removing imap
Aug 16 19:34:48 fire xinetd[6351]: removing imaps
Aug 16 19:34:48 fire xinetd[6351]: removing 9991
Aug 16 19:34:48 fire xinetd[6351]: removing netstat
Aug 16 19:34:48 fire xinetd[6351]: removing pop3
Aug 16 19:34:48 fire xinetd[6351]: removing rsync
Aug 16 19:34:48 fire xinetd[6351]: removing sane-port
Aug 16 19:34:48 fire xinetd[6351]: removing servers
Aug 16 19:34:48 fire xinetd[6351]: removing services
Aug 16 19:34:48 fire xinetd[6351]: removing swat
Aug 16 19:34:48 fire xinetd[6351]: removing systat
Aug 16 19:34:48 fire xinetd[6351]: removing time
Aug 16 19:34:48 fire xinetd[6351]: removing time
Aug 16 19:34:48 fire xinetd[6351]: removing vnc2
Aug 16 19:34:48 fire xinetd[6351]: removing vnc3
Aug 16 19:34:48 fire xinetd[6351]: removing vnchttpd2
Aug 16 19:34:48 fire xinetd[6351]: removing vnchttpd3
Aug 16 19:34:48 fire xinetd[6351]: removing ftp
Aug 16 19:34:48 fire xinetd[6351]: xinetd Version 2.3.13 started with libwrap loadavg options compiled in.
Aug 16 19:34:48 fire xinetd[6351]: Started working: 3 available services
Aug 16 19:34:50 fire kernel: bootsplash: status on console 0 changed to on
Aug 16 19:34:51 fire hal-subfs-mount[6412]: registered at resmgrd and called(0) /bin/mount -t subfs -o fs=floppyfss,sync,procuid,nosuid,nodev,exec /dev/fd0 "/media/floppy"
Aug 16 19:35:01 fire nmbd[5908]: [2005/08/16 19:35:01, 0] nmbd/nmbd_become_lmb.c:become_local_master_stage2(396)
Aug 16 19:35:01 fire nmbd[5908]: *****
Aug 16 19:35:01 fire nmbd[5908]:
Aug 16 19:35:01 fire nmbd[5908]: Samba name server ERDE is now a local master browser for workgroup ARBEITSGRUPPE1 on subnet 192.168.1.5
Aug 16 19:35:01 fire nmbd[5908]:
Aug 16 19:35:01 fire nmbd[5908]: *****
Aug 16 19:39:40 fire su: (to root) lizard on /dev/pts/5
Aug 16 19:39:40 fire su: (to root) lizard on /dev/pts/5
Aug 17 16:02:28 fire su: (to nobody) root on none
Aug 17 16:02:28 fire syslog-ng[3386]: STATS: dropped 0
Aug 17 16:02:28 fire su: (to nobody) root on none
Aug 17 16:02:43 fire su: (to nobody) root on none
Aug 17 16:02:43 fire su: (to nobody) root on none
Aug 17 16:02:43 fire su: (to nobody) root on none
Aug 18 11:01:24 fire su: (to root) lizard on /dev/pts/6
Aug 18 11:01:25 fire syslog-ng[3386]: STATS: dropped 0
Aug 18 16:17:11 fire su: (to nobody) root on none
Aug 18 16:17:11 fire syslog-ng[3386]: STATS: dropped 0
Aug 18 16:17:12 fire su: (to nobody) root on none
Aug 18 16:17:25 fire su: (to nobody) root on none
Aug 18 16:17:25 fire su: (to nobody) root on none
Aug 18 16:17:25 fire su: (to nobody) root on none
Aug 19 13:23:47 fire gconfd (lizard-20693): (Version 2.10.0) wird gestartet, Prozesskennung 20693, Benutzer »lizard«
Aug 19 13:23:48 fire syslog-ng[3386]: STATS: dropped 0
Aug 19 13:23:48 fire gconfd (lizard-20693): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 19 13:23:48 fire gconfd (lizard-20693): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 19 13:23:48 fire gconfd (lizard-20693): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 19 16:32:25 fire su: (to nobody) root on none
Aug 19 16:32:25 fire syslog-ng[3386]: STATS: dropped 0
Aug 19 16:32:26 fire su: (to nobody) root on none
Aug 19 16:32:41 fire su: (to nobody) root on none
Aug 19 16:32:42 fire su: (to nobody) root on none
Aug 19 16:32:43 fire su: (to nobody) root on none
Aug 19 19:38:28 fire su: (to lizard) root on none
Aug 19 19:38:28 fire syslog-ng[3386]: STATS: dropped 0
Aug 19 19:38:46 fire gconfd (lizard-20693): Signal 15 erhalten, ordungsgemäßes Herunterfahren
Aug 19 19:38:46 fire gconfd (lizard-20693): Beenden
Aug 20 13:22:29 fire gconfd (lizard-18779): (Version 2.10.0) wird gestartet, Prozesskennung 18779, Benutzer »lizard«
Aug 20 13:22:29 fire syslog-ng[3386]: STATS: dropped 0
Aug 20 13:22:30 fire gconfd (lizard-18779): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 20 13:22:30 fire gconfd (lizard-18779): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 20 13:22:30 fire gconfd (lizard-18779): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 20 16:47:20 fire su: (to nobody) root on none
Aug 20 16:47:21 fire syslog-ng[3386]: STATS: dropped 0
Aug 20 16:47:21 fire su: (to nobody) root on none
Aug 20 16:47:35 fire su: (to nobody) root on none
Aug 20 16:47:35 fire su: (to nobody) root on none
Aug 20 16:47:35 fire su: (to nobody) root on none
Aug 21 14:10:01 fire /usr/sbin/cron[15768]: (root) CMD (online_update -P)
Aug 21 14:10:02 fire syslog-ng[3386]: STATS: dropped 0
Aug 21 17:03:39 fire su: (to nobody) root on none
Aug 21 17:03:39 fire syslog-ng[3386]: STATS: dropped 0
Aug 21 17:03:40 fire su: (to nobody) root on none
Aug 21 17:03:55 fire su: (to nobody) root on none
Aug 21 17:03:55 fire su: (to nobody) root on none
Aug 21 17:03:56 fire su: (to nobody) root on none
Aug 21 17:08:45 fire fam[5818]: stat on ".fonts.cache-1.TMP-2dNKgI" failed: No such file or directory
Aug 22 17:17:07 fire su: (to nobody) root on none
Aug 22 17:17:07 fire syslog-ng[3386]: STATS: dropped 0
Aug 22 17:17:07 fire su: (to nobody) root on none
Aug 22 17:17:21 fire su: (to nobody) root on none
Aug 22 17:17:21 fire su: (to nobody) root on none
Aug 22 17:17:21 fire su: (to nobody) root on none
Aug 23 17:32:27 fire su: (to nobody) root on none
Aug 23 17:32:27 fire syslog-ng[3386]: STATS: dropped 0
Aug 23 17:32:27 fire su: (to nobody) root on none
Aug 23 17:32:42 fire su: (to nobody) root on none
Aug 23 17:32:42 fire su: (to nobody) root on none
Aug 23 17:32:43 fire su: (to nobody) root on none
Aug 23 21:07:34 fire fam[5818]: stat on ".viminfo.tmp" failed: No such file or directory
Aug 23 21:07:34 fire syslog-ng[3386]: STATS: dropped 0
Aug 23 21:23:03 fire hal.hotplug[18446]: DEVPATH is not set
Aug 23 21:23:06 fire hal.hotplug[18449]: DEVPATH is not set
Aug 23 21:23:20 fire hal.hotplug[18459]: DEVPATH is not set
Aug 23 21:23:23 fire hal.hotplug[18467]: DEVPATH is not set
Aug 24 17:47:05 fire su: (to nobody) root on none
Aug 24 17:47:05 fire syslog-ng[3386]: STATS: dropped 0
Aug 24 17:47:05 fire su: (to nobody) root on none
Aug 24 17:47:18 fire su: (to nobody) root on none
Aug 24 17:47:19 fire su: (to nobody) root on none
Aug 24 17:47:19 fire su: (to nobody) root on none
Aug 25 12:21:53 fire su: (to root) lizard on /dev/pts/2
Aug 25 12:21:53 fire syslog-ng[3386]: STATS: dropped 0
Aug 25 12:22:34 fire gconfd (lizard-18779): Signal 15 erhalten, ordungsgemäßes Herunterfahren
Aug 25 12:22:35 fire gconfd (lizard-18779): Beenden
Aug 25 12:23:29 fire kernel: thinkpad: unsupported module, tainting kernel.
Aug 25 12:23:29 fire kernel: thinkpad: I have registered to handle major: 10 minor: 170.
Aug 25 18:02:04 fire su: (to nobody) root on none
Aug 25 18:02:04 fire syslog-ng[3386]: STATS: dropped 0
Aug 25 18:02:05 fire su: (to nobody) root on none
Aug 25 18:02:17 fire su: (to nobody) root on none
Aug 25 18:02:17 fire su: (to nobody) root on none
Aug 25 18:02:18 fire su: (to nobody) root on none
Aug 25 18:07:49 fire gconfd (lizard-8037): (Version 2.10.0) wird gestartet, Prozesskennung 8037, Benutzer »lizard«
Aug 25 18:07:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:07:50 fire gconfd (lizard-8037): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:07:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:11:38 fire su: FAILED SU (to nobody) lizard on /dev/pts/1
Aug 25 18:11:49 fire su: FAILED SU (to nobody) lizard on /dev/pts/1
Aug 25 18:12:04 fire su: FAILED SU (to nobody) lizard on /dev/pts/1
Aug 25 18:13:08 fire su: (to root) lizard on /dev/pts/3
Aug 25 18:13:08 fire su: (to root) lizard on /dev/pts/3
Aug 25 18:29:50 fire gconfd (lizard-8037): SIGHUP empfangen, alle Datenbanken werden neu geladen
Aug 25 18:29:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:29:50 fire gconfd (lizard-8037): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:29:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:29:52 fire gconfd (lizard-8037): Signal 15 erhalten, ordungsgemäßes Herunterfahren
Aug 25 18:29:52 fire gconfd (lizard-8037): Beenden
Aug 25 18:30:43 fire gconfd (lizard-9636): (Version 2.10.0) wird gestartet, Prozesskennung 9636, Benutzer »lizard«
Aug 25 18:30:43 fire gconfd (lizard-9636): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:43 fire gconfd (lizard-9636): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:43 fire gconfd (lizard-9636): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:43 fire gconfd (lizard-9636): Beenden
Aug 25 18:30:44 fire gconfd (lizard-9641): (Version 2.10.0) wird gestartet, Prozesskennung 9641, Benutzer »lizard«
Aug 25 18:30:44 fire gconfd (lizard-9641): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:44 fire gconfd (lizard-9641): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:44 fire gconfd (lizard-9641): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:59 fire gconfd (lizard-9641): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 0 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 19:02:04 fire syslog-ng[3386]: STATS: dropped 0
Aug 25 19:20:59 fire su: (to root) lizard on /dev/pts/1
Aug 25 19:21:00 fire su: (to root) lizard on /dev/pts/1
ich hoffe ihr kööönt mir helfen.
bullet4one
habe den thread schon gepostet, sehe und finde ihn aber nicht ?
gefressen ?
hier nochmals
jemand wollte inegang in mein pc als ich als root eingeloggt war
das systemprotokoll
Aug 16 19:34:46 fire hal-subfs-mount[6344]: registered at resmgrd and called(0) /bin/mount -t subfs -o fs=cdfss,ro,procuid,nosuid,nodev,exec /dev/hdc "/media/991020_2147"
Aug 16 19:34:46 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/chargen [file=/etc/xinetd.conf] [line=26]
Aug 16 19:34:46 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/chargen-udp [file=/etc/xinetd.d/chargen-udp] [line=13]
Aug 16 19:34:46 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/cups-lpd [file=/etc/xinetd.d/cups-lpd] [line=14]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/cvs [file=/etc/xinetd.d/cvs] [line=11]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/daytime [file=/etc/xinetd.d/daytime] [line=16]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/daytime-udp [file=/etc/xinetd.d/daytime-udp] [line=13]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/echo [file=/etc/xinetd.d/echo] [line=14]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/echo-udp [file=/etc/xinetd.d/echo-udp] [line=13]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/fam [file=/etc/xinetd.d/fam] [line=14]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/i4l-vbox [file=/etc/xinetd.d/i4l-vbox] [line=16]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/imap [file=/etc/xinetd.d/imap] [line=10]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/nagios-nrpe [file=/etc/xinetd.d/nagios-nrpe] [line=69]
Aug 16 19:34:47 fire sshd[6360]: Server listening on :: port 22.
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/netstat [file=/etc/xinetd.d/netstat] [line=15]
Aug 16 19:34:47 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/qpopper [file=/etc/xinetd.d/qpopper] [line=16]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/rsync [file=/etc/xinetd.d/rsync] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/sane-port [file=/etc/xinetd.d/sane-port] [line=12]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/servers [file=/etc/xinetd.d/servers] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/services [file=/etc/xinetd.d/services] [line=13]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/swat [file=/etc/xinetd.d/swat] [line=13]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/systat [file=/etc/xinetd.d/systat] [line=12]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/tftp [file=/etc/xinetd.d/tftp] [line=17]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/time [file=/etc/xinetd.d/time] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/time-udp [file=/etc/xinetd.d/time-udp] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/vnc [file=/etc/xinetd.d/vnc] [line=14]
Aug 16 19:34:48 fire xinetd[6351]: Reading included configuration file: /etc/xinetd.d/vsftpd [file=/etc/xinetd.d/vsftpd] [line=88]
Aug 16 19:34:48 fire xinetd[6351]: removing chargen
Aug 16 19:34:48 fire xinetd[6351]: removing chargen
Aug 16 19:34:48 fire xinetd[6351]: removing printer
Aug 16 19:34:48 fire xinetd[6351]: removing cvspserver
Aug 16 19:34:48 fire xinetd[6351]: removing daytime
Aug 16 19:34:48 fire xinetd[6351]: removing daytime
Aug 16 19:34:48 fire xinetd[6351]: removing echo
Aug 16 19:34:48 fire xinetd[6351]: removing echo
Aug 16 19:34:48 fire xinetd[6351]: removing fam
Aug 16 19:34:48 fire xinetd[6351]: removing vboxd
Aug 16 19:34:48 fire xinetd[6351]: removing pop2
Aug 16 19:34:48 fire xinetd[6351]: removing pop3
Aug 16 19:34:48 fire xinetd[6351]: removing pop3s
Aug 16 19:34:48 fire xinetd[6351]: removing imap
Aug 16 19:34:48 fire xinetd[6351]: removing imaps
Aug 16 19:34:48 fire xinetd[6351]: removing 9991
Aug 16 19:34:48 fire xinetd[6351]: removing netstat
Aug 16 19:34:48 fire xinetd[6351]: removing pop3
Aug 16 19:34:48 fire xinetd[6351]: removing rsync
Aug 16 19:34:48 fire xinetd[6351]: removing sane-port
Aug 16 19:34:48 fire xinetd[6351]: removing servers
Aug 16 19:34:48 fire xinetd[6351]: removing services
Aug 16 19:34:48 fire xinetd[6351]: removing swat
Aug 16 19:34:48 fire xinetd[6351]: removing systat
Aug 16 19:34:48 fire xinetd[6351]: removing time
Aug 16 19:34:48 fire xinetd[6351]: removing time
Aug 16 19:34:48 fire xinetd[6351]: removing vnc2
Aug 16 19:34:48 fire xinetd[6351]: removing vnc3
Aug 16 19:34:48 fire xinetd[6351]: removing vnchttpd2
Aug 16 19:34:48 fire xinetd[6351]: removing vnchttpd3
Aug 16 19:34:48 fire xinetd[6351]: removing ftp
Aug 16 19:34:48 fire xinetd[6351]: xinetd Version 2.3.13 started with libwrap loadavg options compiled in.
Aug 16 19:34:48 fire xinetd[6351]: Started working: 3 available services
Aug 16 19:34:50 fire kernel: bootsplash: status on console 0 changed to on
Aug 16 19:34:51 fire hal-subfs-mount[6412]: registered at resmgrd and called(0) /bin/mount -t subfs -o fs=floppyfss,sync,procuid,nosuid,nodev,exec /dev/fd0 "/media/floppy"
Aug 16 19:35:01 fire nmbd[5908]: [2005/08/16 19:35:01, 0] nmbd/nmbd_become_lmb.c:become_local_master_stage2(396)
Aug 16 19:35:01 fire nmbd[5908]: *****
Aug 16 19:35:01 fire nmbd[5908]:
Aug 16 19:35:01 fire nmbd[5908]: Samba name server ERDE is now a local master browser for workgroup ARBEITSGRUPPE1 on subnet 192.168.1.5
Aug 16 19:35:01 fire nmbd[5908]:
Aug 16 19:35:01 fire nmbd[5908]: *****
Aug 16 19:39:40 fire su: (to root) lizard on /dev/pts/5
Aug 16 19:39:40 fire su: (to root) lizard on /dev/pts/5
Aug 17 16:02:28 fire su: (to nobody) root on none
Aug 17 16:02:28 fire syslog-ng[3386]: STATS: dropped 0
Aug 17 16:02:28 fire su: (to nobody) root on none
Aug 17 16:02:43 fire su: (to nobody) root on none
Aug 17 16:02:43 fire su: (to nobody) root on none
Aug 17 16:02:43 fire su: (to nobody) root on none
Aug 18 11:01:24 fire su: (to root) lizard on /dev/pts/6
Aug 18 11:01:25 fire syslog-ng[3386]: STATS: dropped 0
Aug 18 16:17:11 fire su: (to nobody) root on none
Aug 18 16:17:11 fire syslog-ng[3386]: STATS: dropped 0
Aug 18 16:17:12 fire su: (to nobody) root on none
Aug 18 16:17:25 fire su: (to nobody) root on none
Aug 18 16:17:25 fire su: (to nobody) root on none
Aug 18 16:17:25 fire su: (to nobody) root on none
Aug 19 13:23:47 fire gconfd (lizard-20693): (Version 2.10.0) wird gestartet, Prozesskennung 20693, Benutzer »lizard«
Aug 19 13:23:48 fire syslog-ng[3386]: STATS: dropped 0
Aug 19 13:23:48 fire gconfd (lizard-20693): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 19 13:23:48 fire gconfd (lizard-20693): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 19 13:23:48 fire gconfd (lizard-20693): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 19 16:32:25 fire su: (to nobody) root on none
Aug 19 16:32:25 fire syslog-ng[3386]: STATS: dropped 0
Aug 19 16:32:26 fire su: (to nobody) root on none
Aug 19 16:32:41 fire su: (to nobody) root on none
Aug 19 16:32:42 fire su: (to nobody) root on none
Aug 19 16:32:43 fire su: (to nobody) root on none
Aug 19 19:38:28 fire su: (to lizard) root on none
Aug 19 19:38:28 fire syslog-ng[3386]: STATS: dropped 0
Aug 19 19:38:46 fire gconfd (lizard-20693): Signal 15 erhalten, ordungsgemäßes Herunterfahren
Aug 19 19:38:46 fire gconfd (lizard-20693): Beenden
Aug 20 13:22:29 fire gconfd (lizard-18779): (Version 2.10.0) wird gestartet, Prozesskennung 18779, Benutzer »lizard«
Aug 20 13:22:29 fire syslog-ng[3386]: STATS: dropped 0
Aug 20 13:22:30 fire gconfd (lizard-18779): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 20 13:22:30 fire gconfd (lizard-18779): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 20 13:22:30 fire gconfd (lizard-18779): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 20 16:47:20 fire su: (to nobody) root on none
Aug 20 16:47:21 fire syslog-ng[3386]: STATS: dropped 0
Aug 20 16:47:21 fire su: (to nobody) root on none
Aug 20 16:47:35 fire su: (to nobody) root on none
Aug 20 16:47:35 fire su: (to nobody) root on none
Aug 20 16:47:35 fire su: (to nobody) root on none
Aug 21 14:10:01 fire /usr/sbin/cron[15768]: (root) CMD (online_update -P)
Aug 21 14:10:02 fire syslog-ng[3386]: STATS: dropped 0
Aug 21 17:03:39 fire su: (to nobody) root on none
Aug 21 17:03:39 fire syslog-ng[3386]: STATS: dropped 0
Aug 21 17:03:40 fire su: (to nobody) root on none
Aug 21 17:03:55 fire su: (to nobody) root on none
Aug 21 17:03:55 fire su: (to nobody) root on none
Aug 21 17:03:56 fire su: (to nobody) root on none
Aug 21 17:08:45 fire fam[5818]: stat on ".fonts.cache-1.TMP-2dNKgI" failed: No such file or directory
Aug 22 17:17:07 fire su: (to nobody) root on none
Aug 22 17:17:07 fire syslog-ng[3386]: STATS: dropped 0
Aug 22 17:17:07 fire su: (to nobody) root on none
Aug 22 17:17:21 fire su: (to nobody) root on none
Aug 22 17:17:21 fire su: (to nobody) root on none
Aug 22 17:17:21 fire su: (to nobody) root on none
Aug 23 17:32:27 fire su: (to nobody) root on none
Aug 23 17:32:27 fire syslog-ng[3386]: STATS: dropped 0
Aug 23 17:32:27 fire su: (to nobody) root on none
Aug 23 17:32:42 fire su: (to nobody) root on none
Aug 23 17:32:42 fire su: (to nobody) root on none
Aug 23 17:32:43 fire su: (to nobody) root on none
Aug 23 21:07:34 fire fam[5818]: stat on ".viminfo.tmp" failed: No such file or directory
Aug 23 21:07:34 fire syslog-ng[3386]: STATS: dropped 0
Aug 23 21:23:03 fire hal.hotplug[18446]: DEVPATH is not set
Aug 23 21:23:06 fire hal.hotplug[18449]: DEVPATH is not set
Aug 23 21:23:20 fire hal.hotplug[18459]: DEVPATH is not set
Aug 23 21:23:23 fire hal.hotplug[18467]: DEVPATH is not set
Aug 24 17:47:05 fire su: (to nobody) root on none
Aug 24 17:47:05 fire syslog-ng[3386]: STATS: dropped 0
Aug 24 17:47:05 fire su: (to nobody) root on none
Aug 24 17:47:18 fire su: (to nobody) root on none
Aug 24 17:47:19 fire su: (to nobody) root on none
Aug 24 17:47:19 fire su: (to nobody) root on none
Aug 25 12:21:53 fire su: (to root) lizard on /dev/pts/2
Aug 25 12:21:53 fire syslog-ng[3386]: STATS: dropped 0
Aug 25 12:22:34 fire gconfd (lizard-18779): Signal 15 erhalten, ordungsgemäßes Herunterfahren
Aug 25 12:22:35 fire gconfd (lizard-18779): Beenden
Aug 25 12:23:29 fire kernel: thinkpad: unsupported module, tainting kernel.
Aug 25 12:23:29 fire kernel: thinkpad: I have registered to handle major: 10 minor: 170.
Aug 25 18:02:04 fire su: (to nobody) root on none
Aug 25 18:02:04 fire syslog-ng[3386]: STATS: dropped 0
Aug 25 18:02:05 fire su: (to nobody) root on none
Aug 25 18:02:17 fire su: (to nobody) root on none
Aug 25 18:02:17 fire su: (to nobody) root on none
Aug 25 18:02:18 fire su: (to nobody) root on none
Aug 25 18:07:49 fire gconfd (lizard-8037): (Version 2.10.0) wird gestartet, Prozesskennung 8037, Benutzer »lizard«
Aug 25 18:07:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:07:50 fire gconfd (lizard-8037): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:07:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:11:38 fire su: FAILED SU (to nobody) lizard on /dev/pts/1
Aug 25 18:11:49 fire su: FAILED SU (to nobody) lizard on /dev/pts/1
Aug 25 18:12:04 fire su: FAILED SU (to nobody) lizard on /dev/pts/1
Aug 25 18:13:08 fire su: (to root) lizard on /dev/pts/3
Aug 25 18:13:08 fire su: (to root) lizard on /dev/pts/3
Aug 25 18:29:50 fire gconfd (lizard-8037): SIGHUP empfangen, alle Datenbanken werden neu geladen
Aug 25 18:29:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:29:50 fire gconfd (lizard-8037): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:29:50 fire gconfd (lizard-8037): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:29:52 fire gconfd (lizard-8037): Signal 15 erhalten, ordungsgemäßes Herunterfahren
Aug 25 18:29:52 fire gconfd (lizard-8037): Beenden
Aug 25 18:30:43 fire gconfd (lizard-9636): (Version 2.10.0) wird gestartet, Prozesskennung 9636, Benutzer »lizard«
Aug 25 18:30:43 fire gconfd (lizard-9636): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:43 fire gconfd (lizard-9636): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:43 fire gconfd (lizard-9636): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:43 fire gconfd (lizard-9636): Beenden
Aug 25 18:30:44 fire gconfd (lizard-9641): (Version 2.10.0) wird gestartet, Prozesskennung 9641, Benutzer »lizard«
Aug 25 18:30:44 fire gconfd (lizard-9641): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.mandatory« wurde an der Position 0 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:44 fire gconfd (lizard-9641): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 1 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:44 fire gconfd (lizard-9641): Die Adresse »xml:readonly:/etc/opt/gnome/gconf/gconf.xml.defaults« wurde an der Position 2 zu einer nur lesbaren Konfigurationsquelle aufgelöst
Aug 25 18:30:59 fire gconfd (lizard-9641): Die Adresse »xml:readwrite:/home/lizard/.gconf« wurde an der Position 0 zu einer schreibbaren Konfigurationsquelle aufgelöst
Aug 25 19:02:04 fire syslog-ng[3386]: STATS: dropped 0
Aug 25 19:20:59 fire su: (to root) lizard on /dev/pts/1
Aug 25 19:21:00 fire su: (to root) lizard on /dev/pts/1
ich hoffe ihr kööönt mir helfen.
bullet4one