What does event 2002 mean

  • Resolved sybok

    (@sybok)


    5 years, 5 months ago

    I have just installed the plugin. I am seeing a lot of 2002 events indicating that events in my system are being updated. For example:

    2002
    09-25-2019
    10:32:01.222 PM System
    173.201.92.128
    Modified the published ai1ec_event titled Leonids Meteor Shower. URL is: https://www.saguaroastro.org/event/leonids-meteor-shower-8/. View the post.

    The … popup shows
    array(
    ClientIP=>173.201.92.128
    PostDate=>2019-01-04 12:23:56
    date -8mo UTC
    PostID=>2203
    PostStatus=>publish
    PostTitle=>Leonids Meteor Shower
    PostType=>ai1ec_event
    PostUrl=>https://www.saguaroastro.org/event/leonids-meteor-shower-8/
    Severity=>5
    UserAgent=>WordPress/5.2.3; https://www.saguaroastro.org
    )

    Clicking the IP address gives
    Details for 173.201.92.128
    IP: 173.201.92.128
    Decimal: 2915654784
    Hostname: p3nlhg44c083.shr.prod.phx3.secureserver.net
    ASN: 26496
    ISP: GoDaddy.com, LLC
    Organization: GoDaddy.com, LLC
    Services: None detected
    Type: Corporate
    Assignment: Likely Static IP
    Blacklist:
    Continent: North America
    Country: United States us flag
    State/Region: Arizona
    City: Scottsdale
    Latitude: 33.6013 (33° 36′ 4.68″ N)
    Longitude: -111.8867 (111° 53′ 12.12″ W)
    Postal Code: 85260

    I don’t know what this is trying to tell me. Is someone updating my events, attacking my website? Or, is this a crawler like google indexing pages so it is OK? How is my event being updated? I don’t see anything wrong in the event itself….

Viewing 1 replies (of 1 total)
  • Plugin Support robertabela

    (@robert681)

    Thank you for using our plugin @sybok. Below is an explanation of what those events mean:

    1) You are using the plugin https://www.ads-software.com/plugins/all-in-one-event-calendar/.

    2) This plugin creates the events as post with custom post type: ai1ec_event

    3) You or the plugin is doing changes to existing events (triggered by some automated process etc) and our plugin is keeping a log of these changes.

    4) In fact that changes are originated from your own website, hence why the user is system. You can confirm this because of the IP address. The IP reported in the event (173.201.92.128) is actually the IP address of the server where your website is hosted.

    If you do not want the WP Security Audit Log plugin to keep a log of such background / under the hood changes, I’d recommend you to exclude the monitoring of changes on posts with custom post type ai1ec_event.

    Refer to how to exclude logging of posts with specific post type for detailed information of how you can do this.

    I hope the above answers your question. Should you require any further information please do not hesitate to ask.

Viewing 1 replies (of 1 total)
  • The topic ‘What does event 2002 mean’ is closed to new replies.