Aug  5 05:03:57 prd-ubuntu1804-docker-4c-4g-140 passwd[925]: password for 'ubuntu' changed by 'root'
Aug  5 05:03:57 prd-ubuntu1804-docker-4c-4g-140 systemd-logind[994]: Watching system buttons on /dev/input/event0 (Power Button)
Aug  5 05:03:57 prd-ubuntu1804-docker-4c-4g-140 systemd-logind[994]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Aug  5 05:03:57 prd-ubuntu1804-docker-4c-4g-140 systemd-logind[994]: New seat seat0.
Aug  5 05:03:57 prd-ubuntu1804-docker-4c-4g-140 sshd[1070]: Server listening on 0.0.0.0 port 22.
Aug  5 05:03:57 prd-ubuntu1804-docker-4c-4g-140 sshd[1070]: Server listening on :: port 22.
Aug  5 05:04:00 prd-ubuntu1804-docker-4c-4g-140 sshd[1398]: Did not receive identification string from 10.32.4.5 port 36700
Aug  5 05:04:01 prd-ubuntu1804-docker-4c-4g-140 CRON[1448]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug  5 05:04:01 prd-ubuntu1804-docker-4c-4g-140 CRON[1448]: pam_unix(cron:session): session closed for user root
Aug  5 05:04:05 prd-ubuntu1804-docker-4c-4g-140 sshd[1497]: Invalid user jenkins from 10.32.4.5 port 36704
Aug  5 05:04:05 prd-ubuntu1804-docker-4c-4g-140 sshd[1497]: Received disconnect from 10.32.4.5 port 36704:11: Closed due to user request. [preauth]
Aug  5 05:04:05 prd-ubuntu1804-docker-4c-4g-140 sshd[1497]: Disconnected from invalid user jenkins 10.32.4.5 port 36704 [preauth]
Aug  5 05:04:07 prd-ubuntu1804-docker-4c-4g-140 sshd[1501]: Invalid user jenkins from 10.32.4.5 port 36708
Aug  5 05:04:07 prd-ubuntu1804-docker-4c-4g-140 sshd[1501]: Received disconnect from 10.32.4.5 port 36708:11: Closed due to user request. [preauth]
Aug  5 05:04:07 prd-ubuntu1804-docker-4c-4g-140 sshd[1501]: Disconnected from invalid user jenkins 10.32.4.5 port 36708 [preauth]
Aug  5 05:04:09 prd-ubuntu1804-docker-4c-4g-140 sshd[1503]: Invalid user jenkins from 10.32.4.5 port 36712
Aug  5 05:04:10 prd-ubuntu1804-docker-4c-4g-140 sshd[1503]: Received disconnect from 10.32.4.5 port 36712:11: Closed due to user request. [preauth]
Aug  5 05:04:10 prd-ubuntu1804-docker-4c-4g-140 sshd[1503]: Disconnected from invalid user jenkins 10.32.4.5 port 36712 [preauth]
Aug  5 05:04:12 prd-ubuntu1804-docker-4c-4g-140 sshd[1505]: Invalid user jenkins from 10.32.4.5 port 36716
Aug  5 05:04:12 prd-ubuntu1804-docker-4c-4g-140 sshd[1505]: Received disconnect from 10.32.4.5 port 36716:11: Closed due to user request. [preauth]
Aug  5 05:04:12 prd-ubuntu1804-docker-4c-4g-140 sshd[1505]: Disconnected from invalid user jenkins 10.32.4.5 port 36716 [preauth]
Aug  5 05:04:14 prd-ubuntu1804-docker-4c-4g-140 sshd[1507]: Invalid user jenkins from 10.32.4.5 port 36720
Aug  5 05:04:14 prd-ubuntu1804-docker-4c-4g-140 sshd[1507]: Received disconnect from 10.32.4.5 port 36720:11: Closed due to user request. [preauth]
Aug  5 05:04:14 prd-ubuntu1804-docker-4c-4g-140 sshd[1507]: Disconnected from invalid user jenkins 10.32.4.5 port 36720 [preauth]
Aug  5 05:04:16 prd-ubuntu1804-docker-4c-4g-140 sshd[1509]: Invalid user jenkins from 10.32.4.5 port 36724
Aug  5 05:04:16 prd-ubuntu1804-docker-4c-4g-140 sshd[1509]: Received disconnect from 10.32.4.5 port 36724:11: Closed due to user request. [preauth]
Aug  5 05:04:16 prd-ubuntu1804-docker-4c-4g-140 sshd[1509]: Disconnected from invalid user jenkins 10.32.4.5 port 36724 [preauth]
Aug  5 05:04:18 prd-ubuntu1804-docker-4c-4g-140 sshd[1511]: Invalid user jenkins from 10.32.4.5 port 36728
Aug  5 05:04:18 prd-ubuntu1804-docker-4c-4g-140 sshd[1511]: Received disconnect from 10.32.4.5 port 36728:11: Closed due to user request. [preauth]
Aug  5 05:04:18 prd-ubuntu1804-docker-4c-4g-140 sshd[1511]: Disconnected from invalid user jenkins 10.32.4.5 port 36728 [preauth]
Aug  5 05:04:21 prd-ubuntu1804-docker-4c-4g-140 sshd[1623]: Invalid user jenkins from 10.32.4.5 port 36734
Aug  5 05:04:21 prd-ubuntu1804-docker-4c-4g-140 sshd[1623]: Received disconnect from 10.32.4.5 port 36734:11: Closed due to user request. [preauth]
Aug  5 05:04:21 prd-ubuntu1804-docker-4c-4g-140 sshd[1623]: Disconnected from invalid user jenkins 10.32.4.5 port 36734 [preauth]
Aug  5 05:04:23 prd-ubuntu1804-docker-4c-4g-140 sshd[1754]: Invalid user jenkins from 10.32.4.5 port 36740
Aug  5 05:04:23 prd-ubuntu1804-docker-4c-4g-140 sshd[1754]: Received disconnect from 10.32.4.5 port 36740:11: Closed due to user request. [preauth]
Aug  5 05:04:23 prd-ubuntu1804-docker-4c-4g-140 sshd[1754]: Disconnected from invalid user jenkins 10.32.4.5 port 36740 [preauth]
Aug  5 05:04:25 prd-ubuntu1804-docker-4c-4g-140 sshd[1793]: Invalid user jenkins from 10.32.4.5 port 36744
Aug  5 05:04:25 prd-ubuntu1804-docker-4c-4g-140 sshd[1793]: Received disconnect from 10.32.4.5 port 36744:11: Closed due to user request. [preauth]
Aug  5 05:04:25 prd-ubuntu1804-docker-4c-4g-140 sshd[1793]: Disconnected from invalid user jenkins 10.32.4.5 port 36744 [preauth]
Aug  5 05:04:27 prd-ubuntu1804-docker-4c-4g-140 sshd[1797]: Invalid user jenkins from 10.32.4.5 port 36750
Aug  5 05:04:28 prd-ubuntu1804-docker-4c-4g-140 sshd[1797]: Received disconnect from 10.32.4.5 port 36750:11: Closed due to user request. [preauth]
Aug  5 05:04:28 prd-ubuntu1804-docker-4c-4g-140 sshd[1797]: Disconnected from invalid user jenkins 10.32.4.5 port 36750 [preauth]
Aug  5 05:04:29 prd-ubuntu1804-docker-4c-4g-140 useradd[1823]: new group: name=jenkins, GID=1001
Aug  5 05:04:29 prd-ubuntu1804-docker-4c-4g-140 useradd[1823]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Aug  5 05:04:29 prd-ubuntu1804-docker-4c-4g-140 usermod[1830]: add 'jenkins' to group 'docker'
Aug  5 05:04:29 prd-ubuntu1804-docker-4c-4g-140 usermod[1830]: add 'jenkins' to shadow group 'docker'
Aug  5 05:04:30 prd-ubuntu1804-docker-4c-4g-140 sshd[1841]: Received disconnect from 10.32.4.5 port 36762:11: Closed due to user request. [preauth]
Aug  5 05:04:30 prd-ubuntu1804-docker-4c-4g-140 sshd[1841]: Disconnected from authenticating user jenkins 10.32.4.5 port 36762 [preauth]
Aug  5 05:04:32 prd-ubuntu1804-docker-4c-4g-140 sshd[1877]: Accepted publickey for jenkins from 10.32.4.5 port 36768 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Aug  5 05:04:32 prd-ubuntu1804-docker-4c-4g-140 sshd[1877]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Aug  5 05:04:32 prd-ubuntu1804-docker-4c-4g-140 systemd-logind[994]: New session 2 of user jenkins.
Aug  5 05:04:32 prd-ubuntu1804-docker-4c-4g-140 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Aug  5 05:05:02 prd-ubuntu1804-docker-4c-4g-140 CRON[2413]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug  5 05:05:02 prd-ubuntu1804-docker-4c-4g-140 CRON[2413]: pam_unix(cron:session): session closed for user root
Aug  5 05:06:01 prd-ubuntu1804-docker-4c-4g-140 CRON[2471]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug  5 05:06:01 prd-ubuntu1804-docker-4c-4g-140 CRON[2471]: pam_unix(cron:session): session closed for user root
Aug  5 05:07:01 prd-ubuntu1804-docker-4c-4g-140 CRON[5900]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug  5 05:07:01 prd-ubuntu1804-docker-4c-4g-140 CRON[5900]: pam_unix(cron:session): session closed for user root
Aug  5 05:08:01 prd-ubuntu1804-docker-4c-4g-140 CRON[6932]: pam_unix(cron:session): session opened for user root by (uid=0)
Aug  5 05:08:01 prd-ubuntu1804-docker-4c-4g-140 CRON[6932]: pam_unix(cron:session): session closed for user root
Aug  5 05:08:10 prd-ubuntu1804-docker-4c-4g-140 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/it-dep-helm-docker-verify-all ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Aug  5 05:08:10 prd-ubuntu1804-docker-4c-4g-140 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)