It was Anigma that used it to do some kind of healthcheck. And some other client forked Anigma with the same healthcheck so we had two clients spamming these events 24/7.