Происходит что-то странное, есть подозрение компрометации системы. Что делать?

PRETTY_NAME="Debian GNU/Linux 9 (stretch)"
NAME="Debian GNU/Linux"
VERSION_ID="9"
VERSION="9 (stretch)"
ID=debian

ssh user@192.168.101.10
Received disconnect from 192.168.101.10 port 22:2: Too many authentication failures from user from 192.168.101.2 port 38000 ssh2

:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@       WARNING: POSSIBLE DNS SPOOFING DETECTED!          @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
The ECDSA host key for myhost.mydomain.net has changed,
and the key for the corresponding IP address 192.168.101.10
is unchanged. This could either mean that
DNS SPOOFING is happening or the IP address for the host
and its host key have changed at the same time.
Offending key for IP in /home/user/.ssh/known_hosts:32
  remove with:
  ssh-keygen -f "/home/user/.ssh/known_hosts" -R 192.168.101.10
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:OHbQVtj4WsC4N9A6xhnRf2gY4QY6TcYACFuu6rBJctw.
Please contact your system administrator.
Add correct host key in /home/user/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /home/user/.ssh/known_hosts:1
  remove with:
  ssh-keygen -f "/home/user/.ssh/known_hosts" -R myhost.mydomain.net
ECDSA host key for myhost.mydomain.net has changed and you have requested strict checking.
Host key verification failed.

ssh user@192.168.101.6
Received disconnect from 192.168.101.6 port 22:2: Too many authentication failures from user from 192.168.101.2 port 38000 ssh2