Web logs 404 analysis

Web logs 404 analysis - all time

Sep 17, 2025

Automatically updated daily

Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.

The table bellow list the top URLs being scanned all time and is updated daily. Most of the data contain WordPress specific URLs, certain plugins and config files that attackers can use.

Rank	Scanned URL	Counter
#1	/wp-login.php	333,233
#2	/autodiscover/autodiscover.xml	149,876
#3	/xmlrpc.php	76,174
#4	/index.php	60,512
#5	/.env	51,769
#6	/sitemap.xml	40,526
#7	/404	29,937
#8	/wp-json/oembed/1.0/embed	26,091
#9	/.git/config	21,169
#10	/.well-known/traffic-advice	20,858
#11	/info.php	19,641
#12	/api/catalog_system/pub/products/search	18,801
#13	/file.php	18,681
#14	/wp-content/plugins/hellopress/wp_filemanager.php	17,019
#15	/admin.php	16,160
#16	/chosen.php	15,206
#17	/en/AutoDiscover/autodiscover.xml	14,680
#18	/wordpress	14,365
#19	/about.php	14,052
#20	/.well-known/nodeinfo	13,329
#21	/wp	12,990
#22	/bk	12,418
#23	/backup	12,365
#24	/bc	12,291
#25	/wp-admin	11,987
#26	/alfa.php	11,642
#27	/.well-known/acme-challenge/about.php	11,578
#28	/login	11,534
#29	/module/ngmercadolivre/notificacao	11,493
#30	/_profiler/phpinfo	11,333
#31	/autoload_classmap.php	10,827
#32	/old	10,675
#33	/wp.php	10,510
#34	/acessorios-cameras	10,453
#35	/file2.php	10,368
#36	/simple.php	10,020
#37	/main	9,986
#38	/lock360.php	9,913
#39	/goods.php	9,784
#40	/atomlib.php	9,778
#41	/new	9,540
#42	/1.php	9,424
#43	/classwithtostring.php	9,346
#44	/phpinfo	9,258
#45	/aa.php	9,210
#46	/admin	8,734
#47	/-/-/-/-/-/-/-/-/-/-	8,658
#48	/edit.php	8,608
#49	/makeasmtp.php	8,560
#50	/flower.php	8,435
#51	/ioxi-o.php	8,355
#52	/.well-known/apple-app-site-association	8,174
#53	/wp-content/plugins/woocommerce/includes/gateways/locks.php	7,910
#54	/wp-content/plugins/fix/up.php	7,704
#55	/test.php	7,656
#56	/debug/default/view	7,650
#57	/w.php	7,642
#58	/inputs.php	7,461
#59	/cgi-bin/luci/;stok=/locale	7,353
#60	/asasx.php	7,293
#61	/cong.php	7,259
#62	/wp-includes/wlwmanifest.xml	7,243
#63	/en/autodiscover/autodiscover.xml	7,214
#64	/goat.php	7,132
#65	/radio.php	7,081
#66	/wp-cron.php	7,037
#67	/as.php	7,026
#68	/server-status	6,937
#69	/api/v3/community	6,780
#70	/v2/_catalog	6,761
#71	/gecko.php	6,754
#72	/wordpress/wp-admin/setup-config.php	6,716
#73	/config.php	6,628
#74	/akc.php	6,606
#75	/wp-admin/images/moon.php	6,582
#76	/css.php	6,563
#77	/AutoDiscover/autodiscover.xml	6,411
#78	/telescope/requests	6,342
#79	/feed	6,313
#80	/autoload_classmap/function.php	6,113
#81	/f35.php	6,095
#82	/404testpage4525d2fdc	6,094
#83	/dropdown.php	6,040
#84	/api	6,028
#85	/wsa.php	6,025
#86	/k.php	6,005
#87	/style.php	5,997
#88	/mm.php	5,993
#89	/web/wp-includes/wlwmanifest.xml	5,939
#90	/web_api/auth	5,932
#91	/.well-known/acme-challenge/cloud.php	5,928
#92	/users.php	5,919
#93	/wordpress/wp-includes/wlwmanifest.xml	5,881
#94	/wp/wp-includes/wlwmanifest.xml	5,804
#95	/wp-content/wp-conflg.php	5,741
#96	/403.php	5,715
#97	/wp-plain.php	5,702
#98	/buy.php	5,702
#99	/wp-admin/classwithtostring.php	5,681
#100	/login.action	5,641
#101	/lv.php	5,632
#102	/blog/wp-includes/wlwmanifest.xml	5,607
#103	/wp-admin/setup-config.php	5,595
#104	/wp-admin/wp-conflg.php	5,580
#105	/home	5,533
#106	/wp-api.php	5,489
#107	/2019/wp-includes/wlwmanifest.xml	5,475
#108	/tinyfilemanager.php	5,468
#109	/api/graphql	5,454
#110	/php.php	5,441
#111	/shop/wp-includes/wlwmanifest.xml	5,427
#112	/404.php	5,395
#113	/mar.php	5,379
#114	/loja/login_layout.php	5,369
#115	/test	5,342
#116	/filemanager.php	5,334
#117	/about	5,323
#118	/wp-includes/fonts/admin.php	5,301
#119	/website/wp-includes/wlwmanifest.xml	5,298
#120	/wp-setup.php	5,289
#121	/system_log.php	5,275
#122	/api/shared/config/config.env	5,264
#123	/wp-admin/css/colors/blue/index.php	5,244
#124	/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application	5,237
#125	/cc.php	5,226
#126	/news/wp-includes/wlwmanifest.xml	5,192
#127	/wp-content/index.php	5,163
#128	/actuator/env	5,141
#129	/_all_dbs	5,133
#130	/wp-admin/maint/about.php	5,125
#131	/phpinfo.php	5,111
#132	/server	5,106
#133	/class.php	5,087
#134	/index/function.php	5,048
#135	/.well-known/acme-challenge/xmrlpc.php	5,029
#136	/@vite/env	5,006
#137	/api/v2/categories/64	4,893
#138	/file17.php	4,883
#139	/g.php	4,818
#140	/admin/index.php	4,793
#141	/appWP/lab/wp-admin/css/colors/blue/blue.php	4,765
#142	/wp-admin/js/index.php	4,752
#143	/api/.env	4,737
#144	/.well-known/passkey-endpoints	4,731
#145	/admin/function.php	4,726
#146	/wp-includes/IXR/autoload_classmap.php	4,709
#147	/gmo.php	4,676
#148	/mini.php	4,663
#149	/app_dev.php/_profiler/phpinfo	4,661
#150	/HNAP1	4,604
#151	/wp-content/about.php	4,562
#152	/wp-includes/fonts/index.php	4,561
#153	/wso.php	4,554
#154	/gg.php	4,528
#155	/api/v2/categories/65	4,464
#156	/file5.php	4,440
#157	/contato	4,407
#158	/wp-content/themes/seotheme/db.php	4,406
#159	/wp-content/autoload_classmap.php	4,394
#160	/php_info.php	4,341
#161	/wp-admin/css	4,334
#162	/doc.php	4,299
#163	/wp-admin/js/widgets/cloud.php	4,268
#164	/about/function.php	4,267
#165	/wp-admin/file.php	4,240
#166	/wp-admin/js/autoload_classmap.php	4,220
#167	/images/images/cache.php	4,176
#168	/wp-admin/index.php	4,156
#169	/wp-content/plugins/wpterm.php	4,145
#170	/ty.php	4,130
#171	/wp-json/custom/v1	4,107
#172	/rest/V1/store/storeViews	4,106
#173	/byp.php	4,095
#174	/nc4.php	4,045
#175	/wordpress/wp-login.php	3,990
#176	/manager.php	3,986
#177	/m.php	3,960
#178	/zwso.php	3,957
#179	/.well-known/change-password	3,955
#180	/.well-known/web-identity	3,947
#181	/user/login	3,934
#182	/themes.php	3,911
#183	/.well-known/webauthn	3,910
#184	/s/1313e2236313e20373e2538313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties	3,880
#185	/undefined	3,877
#186	/.well-known/resource-that-should-not-exist-whose-status-code-should-not-be-200	3,861
#187	/wp-admin/includes/index.php	3,778
#188	/wiki	3,776
#189	/loja/catalogo.php	3,754
#190	/.env.bak	3,747
#191	/contact	3,701
#192	/blog	3,689
#193	/al.php	3,677
#194	/wp-admin/network/network.php	3,665
#195	/administrator	3,656
#196	/admin/admin.php	3,651
#197	/moddofuns.php	3,649
#198	/s.php	3,645
#199	/adminfuns.php	3,636
#200	/shell.php	3,634
#201	/.well-known/acme-challenge/mariju.php	3,630
#202	/pinfo.php	3,613
#203	/themes/zMousse/otuz1.php	3,606
#204	/wp-content/themes/admin.php	3,602
#205	/feed/mnpodcast	3,602
#206	/acessorios-cameras/capa-de-silicone	3,590
#207	/fox.php	3,589
#208	/php8.php	3,566
#209	/doiconvs.php	3,536
#210	/.git/HEAD	3,531
#211	/wp-content/admin.php	3,509
#212	/admin/.env	3,508
#213	/wp-content	3,494
#214	/.well-known/acme-challenge/makeasmtp.php	3,473
#215	/07550e18	3,465
#216	/function.php	3,457
#217	/.aws/credentials	3,449
#218	/function/function.php	3,441
#219	/c/linha-glass/robo-aspirador	3,421
#220	/backend/.env	3,420
#221	/wp-includes/blocks/about.php	3,413
#222	/wp-content/themes/about.php	3,413
#223	/wp-admin/css/qPyYcxpHKCu.php	3,410
#224	/images/class-config.php	3,397
#225	/Form	3,397
#226	/wp-admin/js/about.php	3,383
#227	/wp-l0gin.php	3,375
#228	/wp-includes/wp-class.php	3,373
#229	/install.php	3,366
#230	/.env.example	3,353
#231	/wp-admin/profile.php	3,332
#232	/x.php	3,327
#233	/api/v2/freights/316	3,318
#234	/wp-admin/plugins.php	3,306
#235	/10.php	3,304
#236	/files	3,296
#237	/.well-known/classwithtostring.php	3,290
#238	/infos.php	3,285
#239	/wp-admin/wp-login.php	3,279
#240	/.env.local	3,279
#241	/wp-admin/mah.php	3,268
#242	/fix.php	3,253
#243	/wp-admin/edit.php	3,251
#244	/content.php	3,249
#245	/file15.php	3,246
#246	/file3.php	3,229
#247	/a.php	3,216
#248	/new.php	3,210
#249	/13.php	3,206
#250	/gel4y.php	3,205
#251	/sdk	3,203
#252	/wp-admin.php	3,197
#253	/2020/wp-includes/wlwmanifest.xml	3,179
#254	/error.php	3,146
#255	/file9.php	3,137
#256	/evox/about	3,137
#257	/wp-admin/chosen.php	3,118
#258	/epinyins.php	3,118
#259	/app/.env	3,117
#260	/mah.php	3,114
#261	/.well-known/acme-challenge/doc.php	3,112
#262	/wp-admin/css/colors/ectoplasm/about.php	3,112
#263	/.env.prod	3,112
#264	/wp-admin/admin-ajax.php	3,108
#265	/wp-admin/css/colors/blue/about.php	3,107
#266	/pages.php	3,099
#267	/api/config.env	3,097
#268	/laravel/.env	3,095
#269	/default.php	3,083
#270	/0x.php	3,080
#271	/pb	3,069
#272	/inc.php	3,055
#273	/wp-aa.php	3,049
#274	/core/.env	3,044
#275	/categoria-produto/aneis/feminino	3,041
#276	/contrato/wap/crons/enviar-email.php	3,040
#277	/api/sessions	3,039
#278	/wp-admin/install.php	3,033
#279	/ms-edit.php	3,031
#280	/y.php	3,030
#281	/wp-sitemap.xml	3,030
#282	/wp-includes/about.php	3,024
#283	/item.php	3,004
#284	/wp-signin.php	3,001
#285	/sts.php	2,993
#286	/api/shared/config.env	2,989
#287	/dev/.env	2,983
#288	/setup.php	2,963
#289	/NewFile.php	2,961
#290	/cdn-cgi/rum	2,952
#291	/bugz.php	2,933
#292	/pagamento/mercadopago/ipn.php	2,930
#293	/wp-admin/wp-admins.php	2,913
#294	/assets/images/doc.php	2,913
#295	/wp-admin/js	2,904
#296	/ar.php	2,902
#297	/wp-content/uploads/de_fb_uploads/b.php	2,897
#298	/robots.php	2,892
#299	/wp-trackback.php	2,891
#300	/12.php	2,883
#301	/wp-admin/wp.php	2,874
#302	/b.php	2,870
#303	/pp.php	2,862
#304	/wp-content/plugins/WordPressCore/include.php	2,859
#305	/wp-includes/ID3/index.php	2,855
#306	/h.php	2,851
#307	/wp-admin/css/colors/light/wp-login.php	2,829
#308	/gelay.php	2,822
#309	/public/.env	2,815
#310	/ini.php	2,808
#311	/wp-admin/js/wp-conflg.php	2,808
#312	/wp-admin/css/colors/blue	2,805
#313	/file7.php	2,804
#314	/api/config/config.yml	2,787
#315	/wp-content/plugins/pwnd/as.php	2,779
#316	/_phpinfo.php	2,772
#317	/api/v2/customers/login	2,767
#318	/wp-conflg.php	2,749
#319	/file6.php	2,747
#320	/wp-content/plugins/autoload_classmap.php	2,739
#321	/wp-includes/html-api/about.php	2,737
#322	/test1.php	2,731
#323	/composer.php	2,727
#324	/version	2,726
#325	/application/.env	2,725
#326	/form.html	2,709
#327	/ova.php	2,708
#328	/wp-admin/admin.php	2,700
#329	/wp-admin/includes/colour.php	2,669
#330	/wp-admin/includes/header.php	2,660
#331	/images/admin.php	2,653
#332	/blog/fw.php	2,645
#333	/upl.php	2,638
#334	/g/collect	2,631
#335	/t4	2,629
#336	/systembc/password.php	2,628
#337	/password.php	2,626
#338	/geoip	2,626
#339	/null	2,618
#340	/not_found	2,618
#341	/.AWS_/credentials	2,617
#342	/v.php	2,594
#343	/servicos	2,588
#344	/api/v2/products/386	2,586
#345	/.git/index	2,584
#346	/rt.php	2,581
#347	/api/objects/codes.php.save	2,575
#348	/member-signup	2,573
#349	/config/aws.yml	2,573
#350	/memberfuns.php	2,568
#351	/wp-admin/css/colors/blue/atomlib.php	2,561
#352	/wp-includes/ALFA_DATA/alfacgiapi/perl.alfa	2,550
#353	/wp-admin/includes/wp-conflg.php	2,546
#354	/.aws/config	2,543
#355	/.well-known/radio.php	2,535
#356	/privacidade	2,535
#357	/loja/busca.php	2,530
#358	/moon.php	2,523
#359	/auth.php	2,519
#360	/local/.env	2,514
#361	/assets/images/accesson.php	2,511
#362	/ms-themes.php	2,510
#363	/wp-content/languages/autoload_classmap.php	2,489
#364	/mini	2,486
#365	/admin/controller/extension/extension	2,484
#366	/web/.env	2,480
#367	/file8.php	2,467
#368	/wp-content/plugins/about.php	2,463
#369	/ws.php	2,463
#370	/we.php	2,460
#371	/projetos	2,458
#372	/wp-content/classwithtostring.php	2,453
#373	/.bod/.ll/ss.php	2,447
#374	/options-writing.php	2,445
#375	/options-reading.php	2,444
#376	/projetos/italiaetal	2,440
#377	/wp-admin/autoload_classmap.php	2,440
#378	/apps/.env	2,434
#379	/wp-content/uploads/json.php	2,428
#380	/xx.php	2,426
#381	/search	2,418
#382	/plugins.php	2,417
#383	/site/.env	2,416
#384	/aws.yml	2,414
#385	/index.bak.php	2,405
#386	/depoimentos	2,405
#387	/ab2g	2,403
#388	/13k.php	2,401
#389	/ola-mundo	2,401
#390	/ab2h	2,400
#391	/wp-logs.php	2,395
#392	/new/.env	2,395
#393	/wp-wso.php	2,393
#394	/en_en/eventi/(	2,384
#395	/alive.php	2,378
#396	/teorema505	2,377
#397	/gdftps.php	2,376
#398	/2018/wp-includes/wlwmanifest.xml	2,376
#399	/.alf.php	2,372
#400	/www/.env	2,365
#401	/prod/.env	2,363
#402	/wp-setting.php	2,359
#403	/docker/.env	2,359
#404	/87.php	2,356
#405	/wp-content/plugins/ioxi/ioxi/dropdown.php	2,355
#406	/wp-content/plugins/up/main.php	2,353
#407	/groups%22%22	2,353
#408	/wp_wrong_datlib.php	2,352
#409	/settings.py	2,351
#410	/log.php	2,336
#411	/.env.old	2,327
#412	/cron/.env	2,327
#413	/options-general.php	2,326
#414	/wp-content/plugin.php	2,320
#415	/wp-content/x.php	2,318
#416	/wp-content/1.php	2,316
#417	/crm/.env	2,314
#418	/.env.production.local	2,305
#419	/wp-content/wp.php	2,303
#420	/.well-known/about/function.php	2,299
#421	/.env.stage	2,296
#422	/main/.env	2,294
#423	/conf/.env	2,290
#424	/dashboard/phpinfo.php	2,285
#425	/mail/.env	2,271
#426	/wp-config.php.bak	2,261
#427	/env/.env	2,261
#428	/site	2,249
#429	/aws-secret.yaml	2,248
#430	/jp.php	2,239
#431	/server-info	2,229
#432	/.well-known/index.php	2,223
#433	/lara/info.php	2,222
#434	/api/v2/categories/86	2,220
#435	/.vscode/.env	2,218
#436	/.well-known/acme-challenge/index.php	2,214
#437	/server-info.php	2,209
#438	/wp-content/click.php	2,207
#439	/_profiler/phpinfo/phpinfo.php	2,206
#440	/js/.env	2,205
#441	/awstats/.env	2,204
#442	/login.php	2,202
#443	/lara/phpinfo.php	2,201
#444	/images	2,201
#445	/xampp/phpinfo.php	2,200
#446	/wp-includes/widgets/autoload_classmap.php	2,199
#447	/wp-includes/fonts/autoload_classmap.php	2,199
#448	/wp-includes/IXR/chosen.php	2,198
#449	/pesca/login/index.php	2,198
#450	/development/.env	2,196
#451	/contact-us	2,196
#452	/wp-comments.php	2,195
#453	/files/index.php	2,194
#454	/mailer/.env	2,193
#455	/.travis.yml	2,182
#456	/nginx/.env	2,177
#457	/wp-includes/style-engine/autoload_classmap.php	2,176
#458	/alfanew.php	2,175
#459	/env.backup	2,169
#460	/portal/.env	2,167
#461	/apiundefined	2,163
#462	/_profiler/phpinfo/info.php	2,162
#463	/website/.env	2,160
#464	/new/.env.staging	2,160
#465	/en/assets/images/logos/HTB.JPG	2,159
#466	/app/config/parameters.yml	2,157
#467	/node_modules/.env	2,157
#468	/wp-error.php	2,152
#469	/new/.env.local	2,151
#470	/wp-includes/wp_class_datlib.php	2,149
#471	/wp-includes/css/autoload_classmap.php	2,143
#472	/admin/config	2,143
#473	/sanitas-bk/wp-json/metform/v1/forms/views/654	2,140
#474	/storage/logs/laravel.log	2,140
#475	/cms	2,135
#476	/.env_sample	2,134
#477	/i.php	2,130
#478	/wp-includes/PHPMailer/file.php	2,129
#479	/uploads	2,128
#480	/laravel/info.php	2,127
#481	/docker/app/.env	2,123
#482	/laravel/core/.env	2,123
#483	/wp-includes/js/tinymce/langs/about.php	2,122
#484	/application.properties	2,121
#485	/wp-config	2,121
#486	/post.php	2,108
#487	/wp-admin/includes/about.php	2,107
#488	/dynip/f282640c	2,106
#489	/wp-includes/pomo/about.php	2,099
#490	/secured/phpinfo.php	2,098
#491	/config.env	2,092
#492	/kyc/.env	2,089
#493	/2.php	2,088
#494	/wp-includes/certificates/chosen.php	2,086
#495	/new/.env.production	2,085
#496	/.well-known/gecko-litespeed.php	2,082
#497	/wp-content/uploads/chosen.php	2,075
#498	/wp-includes/SimplePie/chosen.php	2,073
#499	/xampp/.env	2,072
#500	/geju.php	2,070

Data was last updated on: Sep 17, 2025

Logging Research

We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.

Trunc Logging

Logging for fun and a good night of sleep.

Real time search
Google simple
Cheap
Just works
PCI compliance

Trunc Research

Latest log-based threat analysis added.

2025-09-03WordPress - Last scanned URLs
2025-08-22Web logs 404 analysis - past 72 hours
2025-08-21WordPress most scanned URLs - all time
2025-08-21Web logs 404 analysis - all time

Contact us!

Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org

Tired of price gouging

Clear pricing
No need to guess
Real people
Real logging

Web logs 404 analysis - all time

Logging Research

Trunc Logging

Trunc Research

Contact us!

Tired of price gouging

Simple, Affordable, Log Management and Analysis.

PRODUCTS

USEFUL LINKS

CONTACT US