blfs的gnome无法找到主题，查看系统日记好多怪ip.是不是被黑了。怎么解决啊。

松心心

新年第一事。我气哟。今天一进gnome.图标不见了。查看messages，出现这些ip，我查了，有德国。四川吉林的。这是怎么回事啊。好不容易才建好的系统，没用到几天。完了。消息如下
Feb 18 03:09:35 ^o^ sshd[27594]: Failed password for invalid user lady from 87.106.84.45 port 14995 ssh2
Feb 18 03:09:35 ^o^ sshd[27594]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:38 ^o^ sshd[27598]: Invalid user lady from 87.106.84.45
Feb 18 03:09:38 ^o^ sshd[27598]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:38 ^o^ sshd[27598]: error: Could not get shadow information for NOUSER
Feb 18 03:09:38 ^o^ sshd[27598]: Failed password for invalid user lady from 87.106.84.45 port 15073 ssh2
Feb 18 03:09:38 ^o^ sshd[27598]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:41 ^o^ sshd[27602]: Invalid user lady from 87.106.84.45
Feb 18 03:09:41 ^o^ sshd[27602]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:41 ^o^ sshd[27602]: error: Could not get shadow information for NOUSER
Feb 18 03:09:41 ^o^ sshd[27602]: Failed password for invalid user lady from 87.106.84.45 port 15172 ssh2
Feb 18 03:09:41 ^o^ sshd[27602]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:45 ^o^ sshd[27606]: Invalid user reception from 87.106.84.45
Feb 18 03:09:45 ^o^ sshd[27606]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:45 ^o^ sshd[27606]: error: Could not get shadow information for NOUSER
Feb 18 03:09:45 ^o^ sshd[27606]: Failed password for invalid user reception from 87.106.84.45 port 15254 ssh2
Feb 18 03:09:45 ^o^ sshd[27606]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:48 ^o^ sshd[27610]: Invalid user reception from 87.106.84.45
Feb 18 03:09:48 ^o^ sshd[27610]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:48 ^o^ sshd[27610]: error: Could not get shadow information for NOUSER
Feb 18 03:09:48 ^o^ sshd[27610]: Failed password for invalid user reception from 87.106.84.45 port 15328 ssh2
Feb 18 03:09:48 ^o^ sshd[27610]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:51 ^o^ sshd[27614]: Invalid user reception from 87.106.84.45
Feb 18 03:09:51 ^o^ sshd[27614]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 03:09:51 ^o^ sshd[27614]: error: Could not get shadow information for NOUSER
Feb 18 03:09:51 ^o^ sshd[27614]: Failed password for invalid user reception from 87.106.84.45 port 15412 ssh2
Feb 18 03:09:51 ^o^ sshd[27614]: Excess permission or bad ownership on file /var/log/btmp
还有：


Feb 18 18:41:48 ^o^ sshd[11629]: error: Could not get shadow information for NOUSER
Feb 18 18:41:48 ^o^ sshd[11629]: Failed password for invalid user guest from 221.9.167.195 port 59672 ssh2
Feb 18 18:41:48 ^o^ sshd[11629]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:49 ^o^ sshd[11633]: Invalid user angel from 221.9.167.195
Feb 18 18:41:49 ^o^ sshd[11633]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:49 ^o^ sshd[11633]: error: Could not get shadow information for NOUSER
Feb 18 18:41:49 ^o^ sshd[11633]: Failed password for invalid user angel from 221.9.167.195 port 59747 ssh2
Feb 18 18:41:49 ^o^ sshd[11633]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:49 ^o^ sshd[11637]: Invalid user winamp from 221.9.167.195
Feb 18 18:41:49 ^o^ sshd[11637]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:49 ^o^ sshd[11637]: error: Could not get shadow information for NOUSER
Feb 18 18:41:49 ^o^ sshd[11637]: Failed password for invalid user winamp from 221.9.167.195 port 59830 ssh2
Feb 18 18:41:49 ^o^ sshd[11637]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:50 ^o^ sshd[11641]: Invalid user test from 221.9.167.195
Feb 18 18:41:50 ^o^ sshd[11641]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:50 ^o^ sshd[11641]: error: Could not get shadow information for NOUSER
Feb 18 18:41:50 ^o^ sshd[11641]: Failed password for invalid user test from 221.9.167.195 port 59901 ssh2
Feb 18 18:41:50 ^o^ sshd[11641]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:51 ^o^ sshd[11645]: Failed password for root from 221.9.167.195 port 59962 ssh2
Feb 18 18:41:51 ^o^ sshd[11645]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:52 ^o^ sshd[11649]: Invalid user test from 221.9.167.195
Feb 18 18:41:52 ^o^ sshd[11649]: Excess permission or bad ownership on file /var/log/btmp
Feb 18 18:41:52 ^o^ sshd[11649]: error: Could not get shadow information for NOUSER
Feb 18 18:41:52 ^o^ sshd[11649]: Failed password for invalid user test from 221.9.167.195 port 60045 ssh2
Feb 18 18:41:52 ^o^ sshd[11649]: Excess permission or bad ownership on file /var/log/btmp

晨想

没关系的啊，又没进来，怕什么。。。

firefish

怎么都想ssh到你的机器上啊 ，香饽饽啊！！呵呵！

松心心

我马上要关机了。如图，日记不断变化。我没进行任何网络操作，但网络监视器一直闪过不停，adsl灯也闪着在进行数据通信。打开日记就看到下面不断变化。只好关adsl,现在重进gentoo了。我现在也不知出现了多大问题。到时如果把我的gentoo也挂上破坏掉。就没有系统可进了。
      今天进blfs一开机就主文件消失。主题也消失。键盘也有问题了。原先按住BackSpace键不放。就会连续清除所输的。现在不管按多久也只能清掉一个字符。按一下清一个。
      我现在一进去，要不到二分钟就会出现这种情况，不知系统里面给放了一个什么东东。也许一上线就自动给他们发消息了。弄不明白这个ip又是美国的。
您查询的IP:65.68.95.233

    * 本站主数据：美国
    * 查询结果2：美国
    * 查询结果3：美国 西南Bell用户


      求助啊！我该如何解决呢。这个系统差不多费了我一个月时间。关键是太好用了，速度很快。也差不多刚好建起一个开发环境。svn ,cvs ,anujta,glade等等。经过多次调式感觉都很好用了，就出现这种问题。我要气死了。

firefish

有没有什么不明进程？用nmap扫描一下端口看看，还有你这个是服务器吗？如果不是的话干吗打开ssh服务?

松心心

还好，我把原来备份的/etc全部弄了过来。后面装的程序有可能无法运行。慢慢查了。其它的好象还正常了。这下把密码改的怪怪了。

我现在是用diff -r  一一查找不同之处。恢复了一大半了，明天才弄了。累死人。

好了，全部搞定。平时还是把ssh服务关了的好。