Sep  2 14:35:52 prd-ubuntu1804-docker-4c-4g-4034 passwd[933]: password for 'ubuntu' changed by 'root'
Sep  2 14:35:53 prd-ubuntu1804-docker-4c-4g-4034 systemd-logind[1062]: Watching system buttons on /dev/input/event0 (Power Button)
Sep  2 14:35:53 prd-ubuntu1804-docker-4c-4g-4034 systemd-logind[1062]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Sep  2 14:35:53 prd-ubuntu1804-docker-4c-4g-4034 systemd-logind[1062]: New seat seat0.
Sep  2 14:35:53 prd-ubuntu1804-docker-4c-4g-4034 sshd[1260]: Server listening on 0.0.0.0 port 22.
Sep  2 14:35:53 prd-ubuntu1804-docker-4c-4g-4034 sshd[1260]: Server listening on :: port 22.
Sep  2 14:35:56 prd-ubuntu1804-docker-4c-4g-4034 sshd[1482]: Did not receive identification string from 10.32.4.5 port 33952
Sep  2 14:36:00 prd-ubuntu1804-docker-4c-4g-4034 sshd[1536]: Invalid user jenkins from 10.32.4.5 port 33954
Sep  2 14:36:00 prd-ubuntu1804-docker-4c-4g-4034 sshd[1536]: Received disconnect from 10.32.4.5 port 33954:11: Closed due to user request. [preauth]
Sep  2 14:36:00 prd-ubuntu1804-docker-4c-4g-4034 sshd[1536]: Disconnected from invalid user jenkins 10.32.4.5 port 33954 [preauth]
Sep  2 14:36:01 prd-ubuntu1804-docker-4c-4g-4034 CRON[1543]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  2 14:36:01 prd-ubuntu1804-docker-4c-4g-4034 CRON[1543]: pam_unix(cron:session): session closed for user root
Sep  2 14:36:02 prd-ubuntu1804-docker-4c-4g-4034 sshd[1552]: Invalid user jenkins from 10.32.4.5 port 33958
Sep  2 14:36:02 prd-ubuntu1804-docker-4c-4g-4034 sshd[1552]: Received disconnect from 10.32.4.5 port 33958:11: Closed due to user request. [preauth]
Sep  2 14:36:02 prd-ubuntu1804-docker-4c-4g-4034 sshd[1552]: Disconnected from invalid user jenkins 10.32.4.5 port 33958 [preauth]
Sep  2 14:36:05 prd-ubuntu1804-docker-4c-4g-4034 sshd[1554]: Invalid user jenkins from 10.32.4.5 port 33960
Sep  2 14:36:05 prd-ubuntu1804-docker-4c-4g-4034 sshd[1554]: Received disconnect from 10.32.4.5 port 33960:11: Closed due to user request. [preauth]
Sep  2 14:36:05 prd-ubuntu1804-docker-4c-4g-4034 sshd[1554]: Disconnected from invalid user jenkins 10.32.4.5 port 33960 [preauth]
Sep  2 14:36:07 prd-ubuntu1804-docker-4c-4g-4034 sshd[1556]: Invalid user jenkins from 10.32.4.5 port 33962
Sep  2 14:36:07 prd-ubuntu1804-docker-4c-4g-4034 sshd[1556]: Received disconnect from 10.32.4.5 port 33962:11: Closed due to user request. [preauth]
Sep  2 14:36:07 prd-ubuntu1804-docker-4c-4g-4034 sshd[1556]: Disconnected from invalid user jenkins 10.32.4.5 port 33962 [preauth]
Sep  2 14:36:09 prd-ubuntu1804-docker-4c-4g-4034 sshd[1558]: Invalid user jenkins from 10.32.4.5 port 33966
Sep  2 14:36:09 prd-ubuntu1804-docker-4c-4g-4034 sshd[1558]: Received disconnect from 10.32.4.5 port 33966:11: Closed due to user request. [preauth]
Sep  2 14:36:09 prd-ubuntu1804-docker-4c-4g-4034 sshd[1558]: Disconnected from invalid user jenkins 10.32.4.5 port 33966 [preauth]
Sep  2 14:36:11 prd-ubuntu1804-docker-4c-4g-4034 sshd[1560]: Invalid user jenkins from 10.32.4.5 port 33968
Sep  2 14:36:11 prd-ubuntu1804-docker-4c-4g-4034 sshd[1560]: Received disconnect from 10.32.4.5 port 33968:11: Closed due to user request. [preauth]
Sep  2 14:36:11 prd-ubuntu1804-docker-4c-4g-4034 sshd[1560]: Disconnected from invalid user jenkins 10.32.4.5 port 33968 [preauth]
Sep  2 14:36:13 prd-ubuntu1804-docker-4c-4g-4034 sshd[1562]: Invalid user jenkins from 10.32.4.5 port 33970
Sep  2 14:36:13 prd-ubuntu1804-docker-4c-4g-4034 sshd[1562]: Received disconnect from 10.32.4.5 port 33970:11: Closed due to user request. [preauth]
Sep  2 14:36:13 prd-ubuntu1804-docker-4c-4g-4034 sshd[1562]: Disconnected from invalid user jenkins 10.32.4.5 port 33970 [preauth]
Sep  2 14:36:15 prd-ubuntu1804-docker-4c-4g-4034 sshd[1699]: Invalid user jenkins from 10.32.4.5 port 33978
Sep  2 14:36:16 prd-ubuntu1804-docker-4c-4g-4034 sshd[1699]: Received disconnect from 10.32.4.5 port 33978:11: Closed due to user request. [preauth]
Sep  2 14:36:16 prd-ubuntu1804-docker-4c-4g-4034 sshd[1699]: Disconnected from invalid user jenkins 10.32.4.5 port 33978 [preauth]
Sep  2 14:36:18 prd-ubuntu1804-docker-4c-4g-4034 sshd[1812]: Invalid user jenkins from 10.32.4.5 port 33980
Sep  2 14:36:18 prd-ubuntu1804-docker-4c-4g-4034 sshd[1812]: Received disconnect from 10.32.4.5 port 33980:11: Closed due to user request. [preauth]
Sep  2 14:36:18 prd-ubuntu1804-docker-4c-4g-4034 sshd[1812]: Disconnected from invalid user jenkins 10.32.4.5 port 33980 [preauth]
Sep  2 14:36:20 prd-ubuntu1804-docker-4c-4g-4034 sshd[1838]: Invalid user jenkins from 10.32.4.5 port 33982
Sep  2 14:36:20 prd-ubuntu1804-docker-4c-4g-4034 sshd[1838]: Received disconnect from 10.32.4.5 port 33982:11: Closed due to user request. [preauth]
Sep  2 14:36:20 prd-ubuntu1804-docker-4c-4g-4034 sshd[1838]: Disconnected from invalid user jenkins 10.32.4.5 port 33982 [preauth]
Sep  2 14:36:21 prd-ubuntu1804-docker-4c-4g-4034 useradd[1856]: new group: name=jenkins, GID=1001
Sep  2 14:36:21 prd-ubuntu1804-docker-4c-4g-4034 useradd[1856]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Sep  2 14:36:21 prd-ubuntu1804-docker-4c-4g-4034 usermod[1863]: add 'jenkins' to group 'docker'
Sep  2 14:36:21 prd-ubuntu1804-docker-4c-4g-4034 usermod[1863]: add 'jenkins' to shadow group 'docker'
Sep  2 14:36:22 prd-ubuntu1804-docker-4c-4g-4034 sshd[1897]: Accepted publickey for jenkins from 10.32.4.5 port 33984 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Sep  2 14:36:22 prd-ubuntu1804-docker-4c-4g-4034 sshd[1897]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Sep  2 14:36:22 prd-ubuntu1804-docker-4c-4g-4034 systemd-logind[1062]: New session 2 of user jenkins.
Sep  2 14:36:22 prd-ubuntu1804-docker-4c-4g-4034 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Sep  2 14:37:02 prd-ubuntu1804-docker-4c-4g-4034 CRON[2537]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  2 14:37:02 prd-ubuntu1804-docker-4c-4g-4034 CRON[2537]: pam_unix(cron:session): session closed for user root
Sep  2 14:38:01 prd-ubuntu1804-docker-4c-4g-4034 CRON[6527]: pam_unix(cron:session): session opened for user root by (uid=0)
Sep  2 14:38:01 prd-ubuntu1804-docker-4c-4g-4034 CRON[6527]: pam_unix(cron:session): session closed for user root
Sep  2 14:38:36 prd-ubuntu1804-docker-4c-4g-4034 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/it-dep-helm-docker-verify-all ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Sep  2 14:38:36 prd-ubuntu1804-docker-4c-4g-4034 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)