Just standard bot traffic on the internet. One giveaway, besides the known-URLs, is that they are using HTTP/1.0 which is pretty much bot-only these days.
The wlwmanifest.xml is included in WordPress for integration with Windows Live Writer. The Windows Live Writer application is now discontinued.
SOV from the 70's and 80's on DVD
There's no point in removing it. It's a static file with information on how Windows Live Writer can talk to wordpress.
I've started monitoring my webserver's logs out of pure curiosity and noticed some rather strange requests for files and directories that don't exist on my ...
Monitor screen with HTTP requests targeting WordPress files. Why are There HTTP Requests for wp wlwmanifest.xml on My Server When I Don't Use WordPress?
After inspecting logs in all containers i have found out that some malicious requests were the last events before the container has stopped.
I'm sure it was done by same person as the timing is very sequential and same file-name request, but how they were able to lunch an attack from a different IP's ...
Looks like Wordpress vulnerability scans. It's normal for a public server - bots will try to hack your server 24/7.
So it was likely a hacking attempt. Which was blocked and the IP addresses have been banned from further attempts. The settings for this ban can ...
I was amazed by the mechanism of how easily they hacked the fresh, latest version of Wordpress with 2FA and a kilometer-long password.