Nov  7 01:28:37 prd-ubuntu1804-docker-4c-4g-9727 passwd[924]: password for 'ubuntu' changed by 'root'
Nov  7 01:28:37 prd-ubuntu1804-docker-4c-4g-9727 systemd-logind[969]: Watching system buttons on /dev/input/event0 (Power Button)
Nov  7 01:28:37 prd-ubuntu1804-docker-4c-4g-9727 systemd-logind[969]: Watching system buttons on /dev/input/event1 (AT Translated Set 2 keyboard)
Nov  7 01:28:37 prd-ubuntu1804-docker-4c-4g-9727 systemd-logind[969]: New seat seat0.
Nov  7 01:28:37 prd-ubuntu1804-docker-4c-4g-9727 sshd[1199]: Server listening on 0.0.0.0 port 22.
Nov  7 01:28:37 prd-ubuntu1804-docker-4c-4g-9727 sshd[1199]: Server listening on :: port 22.
Nov  7 01:28:41 prd-ubuntu1804-docker-4c-4g-9727 sshd[1433]: Did not receive identification string from 10.32.4.5 port 33924
Nov  7 01:28:50 prd-ubuntu1804-docker-4c-4g-9727 sshd[1479]: Invalid user jenkins from 10.32.4.5 port 33934
Nov  7 01:28:50 prd-ubuntu1804-docker-4c-4g-9727 sshd[1479]: Received disconnect from 10.32.4.5 port 33934:11: Closed due to user request. [preauth]
Nov  7 01:28:50 prd-ubuntu1804-docker-4c-4g-9727 sshd[1479]: Disconnected from invalid user jenkins 10.32.4.5 port 33934 [preauth]
Nov  7 01:28:52 prd-ubuntu1804-docker-4c-4g-9727 sshd[1483]: Invalid user jenkins from 10.32.4.5 port 33938
Nov  7 01:28:52 prd-ubuntu1804-docker-4c-4g-9727 sshd[1483]: Received disconnect from 10.32.4.5 port 33938:11: Closed due to user request. [preauth]
Nov  7 01:28:52 prd-ubuntu1804-docker-4c-4g-9727 sshd[1483]: Disconnected from invalid user jenkins 10.32.4.5 port 33938 [preauth]
Nov  7 01:28:54 prd-ubuntu1804-docker-4c-4g-9727 sshd[1485]: Invalid user jenkins from 10.32.4.5 port 33940
Nov  7 01:28:54 prd-ubuntu1804-docker-4c-4g-9727 sshd[1485]: Received disconnect from 10.32.4.5 port 33940:11: Closed due to user request. [preauth]
Nov  7 01:28:54 prd-ubuntu1804-docker-4c-4g-9727 sshd[1485]: Disconnected from invalid user jenkins 10.32.4.5 port 33940 [preauth]
Nov  7 01:28:56 prd-ubuntu1804-docker-4c-4g-9727 sshd[1487]: Invalid user jenkins from 10.32.4.5 port 33964
Nov  7 01:28:56 prd-ubuntu1804-docker-4c-4g-9727 sshd[1487]: Received disconnect from 10.32.4.5 port 33964:11: Closed due to user request. [preauth]
Nov  7 01:28:56 prd-ubuntu1804-docker-4c-4g-9727 sshd[1487]: Disconnected from invalid user jenkins 10.32.4.5 port 33964 [preauth]
Nov  7 01:28:58 prd-ubuntu1804-docker-4c-4g-9727 sshd[1489]: Invalid user jenkins from 10.32.4.5 port 33972
Nov  7 01:28:58 prd-ubuntu1804-docker-4c-4g-9727 sshd[1489]: Received disconnect from 10.32.4.5 port 33972:11: Closed due to user request. [preauth]
Nov  7 01:28:58 prd-ubuntu1804-docker-4c-4g-9727 sshd[1489]: Disconnected from invalid user jenkins 10.32.4.5 port 33972 [preauth]
Nov  7 01:29:01 prd-ubuntu1804-docker-4c-4g-9727 sshd[1689]: Invalid user jenkins from 10.32.4.5 port 33974
Nov  7 01:29:01 prd-ubuntu1804-docker-4c-4g-9727 sshd[1689]: Received disconnect from 10.32.4.5 port 33974:11: Closed due to user request. [preauth]
Nov  7 01:29:01 prd-ubuntu1804-docker-4c-4g-9727 sshd[1689]: Disconnected from invalid user jenkins 10.32.4.5 port 33974 [preauth]
Nov  7 01:29:02 prd-ubuntu1804-docker-4c-4g-9727 CRON[1708]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov  7 01:29:02 prd-ubuntu1804-docker-4c-4g-9727 CRON[1708]: pam_unix(cron:session): session closed for user root
Nov  7 01:29:03 prd-ubuntu1804-docker-4c-4g-9727 sshd[1752]: Invalid user jenkins from 10.32.4.5 port 33976
Nov  7 01:29:03 prd-ubuntu1804-docker-4c-4g-9727 sshd[1752]: Received disconnect from 10.32.4.5 port 33976:11: Closed due to user request. [preauth]
Nov  7 01:29:03 prd-ubuntu1804-docker-4c-4g-9727 sshd[1752]: Disconnected from invalid user jenkins 10.32.4.5 port 33976 [preauth]
Nov  7 01:29:05 prd-ubuntu1804-docker-4c-4g-9727 sshd[1772]: Invalid user jenkins from 10.32.4.5 port 33978
Nov  7 01:29:06 prd-ubuntu1804-docker-4c-4g-9727 sshd[1772]: Received disconnect from 10.32.4.5 port 33978:11: Closed due to user request. [preauth]
Nov  7 01:29:06 prd-ubuntu1804-docker-4c-4g-9727 sshd[1772]: Disconnected from invalid user jenkins 10.32.4.5 port 33978 [preauth]
Nov  7 01:29:07 prd-ubuntu1804-docker-4c-4g-9727 useradd[1788]: new group: name=jenkins, GID=1001
Nov  7 01:29:07 prd-ubuntu1804-docker-4c-4g-9727 useradd[1788]: new user: name=jenkins, UID=1001, GID=1001, home=/home/jenkins, shell=/bin/bash
Nov  7 01:29:07 prd-ubuntu1804-docker-4c-4g-9727 usermod[1795]: add 'jenkins' to group 'docker'
Nov  7 01:29:07 prd-ubuntu1804-docker-4c-4g-9727 usermod[1795]: add 'jenkins' to shadow group 'docker'
Nov  7 01:29:08 prd-ubuntu1804-docker-4c-4g-9727 sshd[1838]: Accepted publickey for jenkins from 10.32.4.5 port 33980 ssh2: RSA SHA256:MwkAMVxCcf5mjE3h3rXSsWkdX5TtX0v/kuPsZexJ1qI
Nov  7 01:29:08 prd-ubuntu1804-docker-4c-4g-9727 sshd[1838]: pam_unix(sshd:session): session opened for user jenkins by (uid=0)
Nov  7 01:29:08 prd-ubuntu1804-docker-4c-4g-9727 systemd-logind[969]: New session 2 of user jenkins.
Nov  7 01:29:08 prd-ubuntu1804-docker-4c-4g-9727 systemd: pam_unix(systemd-user:session): session opened for user jenkins by (uid=0)
Nov  7 01:30:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[2572]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov  7 01:30:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[2572]: pam_unix(cron:session): session closed for user root
Nov  7 01:31:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[3092]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov  7 01:31:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[3092]: pam_unix(cron:session): session closed for user root
Nov  7 01:32:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[3190]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov  7 01:32:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[3190]: pam_unix(cron:session): session closed for user root
Nov  7 01:33:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[3403]: pam_unix(cron:session): session opened for user root by (uid=0)
Nov  7 01:33:01 prd-ubuntu1804-docker-4c-4g-9727 CRON[3403]: pam_unix(cron:session): session closed for user root
Nov  7 01:33:16 prd-ubuntu1804-docker-4c-4g-9727 sudo:  jenkins : TTY=unknown ; PWD=/w/workspace/portal-aiml-dashboard-docker-docker-merge-master ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /tmp
Nov  7 01:33:16 prd-ubuntu1804-docker-4c-4g-9727 sudo: pam_unix(sudo:session): session opened for user root by (uid=0)