I do not know where is best to post this but it is a php file so I will start here.
Looking through some website stats I notice over 500 visits to wp-login.php but the website does not use Wordpress and looking at the site via FTP there is not a file called wp-login.php So the link should have generated a 404 error.
Has anyone else seen this? So far the hosts have brushed it of with “we would not put it there” so I am giving them a bit of a prod to look into it.
I have not entered the capture as I do not know what will happen!
Still no reply from the hosts but I had a thought. This sites cpanel has a lot of “oneclick script setups” and I wonder if the page is installed when that is setup? I checked out about 6 other sites with the same IP and they all have the same page.
I have had a reply from the hosts and it is a default screen and it is on the server directly and not our webspace and that is why I could not find it.
Good idea; it would save all those 404 errors on my stats page as well! At the moment I have something setup in mod_security.
To be fair this isn’t unique to Wordpress, or even PHP powered CMS systems. Any system with a large enough install base has at least a couple attack scripts out there for it.