Sep  4 11:05:30 prd-ubuntu1804-docker-4c-4g-4216 passwd[937]: password for 'ubuntu' changed by 'root'
Sep  4 11:05:30 prd-ubuntu1804-docker-4c-4g-4216 systemd-logind[987]: Watching system buttons on /dev/input/event0 (Power Button)
Sep  4 11:05:30 prd-ubuntu1804-docker-4c-4g-4216 systemd-logind[987]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Sep  4 11:05:30 prd-ubuntu1804-docker-4c-4g-4216 systemd-logind[987]: New seat seat0.
Sep  4 11:05:30 prd-ubuntu1804-docker-4c-4g-4216 sshd[1100]: Server listening on 0.0.0.0 port 22.
Sep  4 11:05:30 prd-ubuntu1804-docker-4c-4g-4216 sshd[1100]: Server listening on :: port 22.
Sep  4 11:05:36 prd-ubuntu1804-docker-4c-4g-4216 sshd[1489]: Did not receive identification string from 10.32.4.5 port 38410
Sep  4 11:05:40 prd-ubuntu1804-docker-4c-4g-4216 sshd[1511]: Invalid user jenkins from 10.32.4.5 port 38414
Sep  4 11:05:40 prd-ubuntu1804-docker-4c-4g-4216 sshd[1511]: Received disconnect from 10.32.4.5 port 38414:11: Closed due to user request. [preauth]
Sep  4 11:05:40 prd-ubuntu1804-docker-4c-4g-4216 sshd[1511]: Disconnected from invalid user jenkins 10.32.4.5 port 38414 [preauth]
Sep  4 11:05:42 prd-ubuntu1804-docker-4c-4g-4216 sshd[1515]: Invalid user jenkins from 10.32.4.5 port 38416
Sep  4 11:05:42 prd-ubuntu1804-docker-4c-4g-4216 sshd[1515]: Received disconnect from 10.32.4.5 port 38416:11: Closed due to user request. [preauth]
Sep  4 11:05:42 prd-ubuntu1804-docker-4c-4g-4216 sshd[1515]: Disconnected from invalid user jenkins 10.32.4.5 port 38416 [preauth]
Sep  4 11:05:44 prd-ubuntu1804-docker-4c-4g-4216 sshd[1517]: Invalid user jenkins from 10.32.4.5 port 38424
Sep  4 11:05:44 prd-ubuntu1804-docker-4c-4g-4216 sshd[1517]: Received disconnect from 10.32.4.5 port 38424:11: Closed due to user request. [preauth]
Sep  4 11:05:44 prd-ubuntu1804-docker-4c-4g-4216 sshd[1517]: Disconnected from invalid user jenkins 10.32.4.5 port 38424 [preauth]
Sep  4 11:05:46 prd-ubuntu1804-docker-4c-4g-4216 sshd[1519]: Invalid user jenkins from 10.32.4.5 port 38426
Sep  4 11:05:46 prd-ubuntu1804-docker-4c-4g-4216 sshd[1519]: Received disconnect from 10.32.4.5 port 38426:11: Closed due to user request. [preauth]
Sep  4 11:05:46 prd-ubuntu1804-docker-4c-4g-4216 sshd[1519]: Disconnected from invalid user jenkins 10.32.4.5 port 38426 [preauth]
Sep  4 11:05:48 prd-ubuntu1804-docker-4c-4g-4216 sshd[1521]: Invalid user jenkins from 10.32.4.5 port 38428
Sep  4 11:05:48 prd-ubuntu1804-docker-4c-4g-4216 sshd[1521]: Received disconnect from 10.32.4.5 port 38428:11: Closed due to user request. [preauth]
Sep  4 11:05:48 prd-ubuntu1804-docker-4c-4g-4216 sshd[1521]: Disconnected from invalid user jenkins 10.32.4.5 port 38428 [preauth]
Sep  4 11:05:50 prd-ubuntu1804-docker-4c-4g-4216 sshd[1523]: Invalid user jenkins from 10.32.4.5 port 38430
Sep  4 11:05:50 prd-ubuntu1804-docker-4c-4g-4216 sshd[1523]: Received disconnect from 10.32.4.5 port 38430:11: Closed due to user request. [preauth]
Sep  4 11:05:50 prd-ubuntu1804-docker-4c-4g-4216 sshd[1523]: Disconnected from invalid user jenkins 10.32.4.5 port 38430 [preauth]
Sep  4 11:05:52 prd-ubuntu1804-docker-4c-4g-4216 sshd[1535]: Invalid user jenkins from 10.32.4.5 port 38436
Sep  4 11:05:52 prd-ubuntu1804-docker-4c-4g-4216 sshd[1535]: Received disconnect from 10.32.4.5 port 38436:11: Closed due to user request. [preauth]
Sep  4 11:05:52 prd-ubuntu1804-docker-4c-4g-4216 sshd[1535]: Disconnected from invalid user jenkins 10.32.4.5 port 38436 [preauth]
Sep  4 11:05:55 prd-ubuntu1804-docker-4c-4g-4216 sshd[1759]: Invalid user jenkins from 10.32.4.5 port 38438
Sep  4 11:05:56 prd-ubuntu1804-docker-4c-4g-4216 sshd[1759]: Received disconnect from 10.32.4.5 port 38438:11: Closed due to user request. [preauth]
Sep  4 11:05:56 prd-ubuntu1804-docker-4c-4g-4216 sshd[1759]: Disconnected from invalid user jenkins 10.32.4.5 port 38438 [preauth]
Sep  4 11:05:58 prd-ubuntu1804-docker-4c-4g-4216 sshd[1799]: Invalid user jenkins from 10.32.4.5 port 38440
Sep  4 11:05:58 prd-ubuntu1804-docker-4c-4g-4216 sshd[1799]: Received disconnect from 10.32.4.5 port 38440:11: Closed due to user request. [preauth]
Sep  4 11:05:58 prd-ubuntu1804-docker-4c-4g-4216 sshd[1799]: Disconnected from invalid user jenkins 10.32.4.5 port 38440 [preauth]
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 sshd[1811]: Invalid user jenkins from 10.32.4.5 port 38442
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 sshd[1811]: Received disconnect from 10.32.4.5 port 38442:11: Closed due to user request. [preauth]
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 sshd[1811]: Disconnected from invalid user jenkins 10.32.4.5 port 38442 [preauth]
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 useradd[1819]: new group: name=jenkins, GID=1001
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 useradd[1819]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 usermod[1826]: add 'jenkins' to group 'docker'
Sep  4 11:06:00 prd-ubuntu1804-docker-4c-4g-4216 usermod[1826]: add 'jenkins' to shadow group 'docker'
Sep  4 11:06:02 prd-ubuntu1804-docker-4c-4g-4216 CRON[1869]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  4 11:06:02 prd-ubuntu1804-docker-4c-4g-4216 CRON[1869]: pam_unix(cron:session): session closed for user root
Sep  4 11:06:02 prd-ubuntu1804-docker-4c-4g-4216 sshd[1877]: Accepted publickey for jenkins from 10.32.4.5 port 38444 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Sep  4 11:06:02 prd-ubuntu1804-docker-4c-4g-4216 sshd[1877]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Sep  4 11:06:02 prd-ubuntu1804-docker-4c-4g-4216 systemd-logind[987]: New session 2 of user jenkins.
Sep  4 11:06:02 prd-ubuntu1804-docker-4c-4g-4216 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Sep  4 11:07:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[2651]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  4 11:07:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[2651]: pam_unix(cron:session): session closed for user root
Sep  4 11:08:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[4453]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  4 11:08:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[4453]: pam_unix(cron:session): session closed for user root
Sep  4 11:09:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[9098]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  4 11:09:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[9098]: pam_unix(cron:session): session closed for user root
Sep  4 11:10:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[11107]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  4 11:10:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[11107]: pam_unix(cron:session): session closed for user root
Sep  4 11:11:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[11499]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  4 11:11:01 prd-ubuntu1804-docker-4c-4g-4216 CRON[11499]: pam_unix(cron:session): session closed for user root
Sep  4 11:11:06 prd-ubuntu1804-docker-4c-4g-4216 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/aiml-fw-athp-data-extraction-docker-docker-verify-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Sep  4 11:11:06 prd-ubuntu1804-docker-4c-4g-4216 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)