Web logs 404 analysis - all time
Oct 28, 2025
Automatically updated daily

Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.


The table bellow list the top URLs being scanned all time and is updated daily. Most of the data contain WordPress specific URLs, certain plugins and config files that attackers can use.


Rank Scanned URL Counter
#1 /wp-login.php510,962
#2 /autodiscover/autodiscover.xml224,482
#3 /xmlrpc.php132,989
#4 /.env87,404
#5 /index.php83,925
#6 /sitemap.xml79,391
#7 /.well-known/traffic-advice69,840
#8 /201257,487
#9 /40438,543
#10 /wp-json/oembed/1.0/embed38,288
#11 /.git/config37,062
#12 /module/ngmercadolivre/notificacao33,962
#13 /info.php28,943
#14 /login27,299
#15 /file.php25,411
#16 /en/AutoDiscover/autodiscover.xml23,690
#17 /admin.php23,177
#18 /wordpress21,507
#19 /chosen.php21,287
#20 /wp-cron.php21,113
#21 /wp-content/plugins/hellopress/wp_filemanager.php20,869
#22 /about.php20,789
#23 /backup19,662
#24 /api/catalog_system/pub/products/search18,910
#25 /wp18,771
#26 /wp-admin18,517
#27 /manager/html18,371
#28 /.well-known/nodeinfo17,447
#29 /_profiler/phpinfo16,369
#30 /bk16,178
#31 /old16,102
#32 /bc16,072
#33 /wp-content/plugins/fix/up.php16,042
#34 /404testpage4525d2fdc15,655
#35 /phpinfo15,208
#36 /main15,113
#37 /.well-known/acme-challenge/about.php14,874
#38 /alfa.php14,832
#39 /en/autodiscover/autodiscover.xml14,631
#40 /wp-includes/wlwmanifest.xml14,528
#41 /new14,350
#42 /1.php14,010
#43 /autoload_classmap.php14,007
#44 /atomlib.php13,891
#45 /wp.php13,832
#46 /rest/V1/store/storeViews13,522
#47 /admin13,510
#48 /lock360.php13,035
#49 /api/v2/categories/6513,016
#50 /app12,932
#51 /test.php12,866
#52 /file2.php12,741
#53 /flower.php12,670
#54 /api/v2/marketplace/sellers/376/products/status-batch12,478
#55 /api/v2/marketplace/sellers/376/products/stock-batch12,382
#56 /api/v2/marketplace/sellers/376/products/price-batch12,370
#57 /classwithtostring.php12,332
#58 /web/wp-includes/wlwmanifest.xml12,193
#59 /simple.php12,179
#60 /aa.php12,143
#61 /wordpress/wp-includes/wlwmanifest.xml12,070
#62 /goods.php12,068
#63 /-/-/-/-/-/-/-/-/-/-12,016
#64 /wp/wp-includes/wlwmanifest.xml11,861
#65 /debug/default/view11,592
#66 /admin/config.php11,573
#67 /blog/wp-includes/wlwmanifest.xml11,501
#68 /api/.env11,478
#69 /2019/wp-includes/wlwmanifest.xml11,363
#70 /makeasmtp.php11,344
#71 /shop/wp-includes/wlwmanifest.xml11,293
#72 /test11,246
#73 /v2/_catalog11,045
#74 /server-status10,877
#75 /acessorios-cameras10,809
#76 /website/wp-includes/wlwmanifest.xml10,780
#77 /ioxi-o.php10,757
#78 /news/wp-includes/wlwmanifest.xml10,631
#79 /pagamento/mercadopago/ipn.php10,549
#80 /edit.php10,291
#81 /feed10,173
#82 /app_dev.php/_profiler/phpinfo10,172
#83 /telescope/requests10,163
#84 /style.php10,150
#85 /akc.php10,085
#86 /.well-known/apple-app-site-association10,067
#87 /cong.php9,878
#88 /web_api/auth9,813
#89 /api/v2/categories/649,787
#90 /AutoDiscover/autodiscover.xml9,759
#91 /api9,579
#92 /backend/.env9,513
#93 /admin/.env9,453
#94 /asasx.php9,276
#95 /phpinfo.php9,266
#96 /contrato/wap/crons/enviar-email.php9,261
#97 /shop9,229
#98 /.env.example9,215
#99 /home9,183
#100 /wp-plain.php9,180
#101 /login.action9,130
#102 /w.php9,121
#103 /inputs.php9,105
#104 /.well-known/passkey-endpoints8,967
#105 /user/login8,956
#106 /as.php8,935
#107 /css.php8,927
#108 /goat.php8,797
#109 /radio.php8,748
#110 /api/graphql8,686
#111 /about8,668
#112 /wp-admin/css8,601
#113 /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application8,576
#114 /server8,384
#115 /@vite/env8,383
#116 /_all_dbs8,346
#117 /cgi-bin/luci/;stok=/locale8,341
#118 /actuator/env8,298
#119 /cdn-cgi/rum8,154
#120 /wordpress/wp-admin/setup-config.php8,091
#121 /gecko.php8,052
#122 /loja/login_layout.php8,039
#123 /buy.php7,928
#124 /wp-content/plugins/woocommerce/includes/gateways/locks.php7,910
#125 /dropdown.php7,853
#126 /07550e187,842
#127 /wp-sitemap.xml7,831
#128 /HNAP17,829
#129 /lv.php7,772
#130 /wp-admin/images/moon.php7,719
#131 /config.php7,623
#132 /wp-json/sfwd-assignment/17,595
#133 /k.php7,592
#134 /autoload_classmap/function.php7,478
#135 /wiki7,329
#136 /wp-admin/setup-config.php7,311
#137 /wsa.php7,307
#138 /tinyfilemanager.php7,187
#139 /mar.php7,110
#140 /php.php7,104
#141 /api/v3/community7,103
#142 /api/v2/customers/login7,055
#143 /users.php6,999
#144 /contato6,991
#145 /f35.php6,950
#146 /mm.php6,942
#147 /.well-known/acme-challenge/cloud.php6,928
#148 /appWP/lab/wp-admin/css/colors/blue/blue.php6,880
#149 /wp-content/wp-conflg.php6,848
#150 /admin/index.php6,816
#151 /403.php6,789
#152 /gmo.php6,742
#153 /wp-content/themes/seotheme/db.php6,688
#154 /cms6,645
#155 /nc4.php6,510
#156 /system_log.php6,505
#157 /zwso.php6,472
#158 /doc.php6,445
#159 /s/1313e2236313e20373e2538313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties6,414
#160 /akcc.php6,406
#161 /wp-content/index.php6,352
#162 /api/sessions6,319
#163 /wp-api.php6,311
#164 /administrator6,291
#165 /404.php6,260
#166 /wp-admin/classwithtostring.php6,223
#167 /feed/mnpodcast6,156
#168 /index/function.php6,153
#169 /wp-setup.php6,148
#170 /wp-includes/fonts/admin.php6,097
#171 /filemanager.php6,093
#172 /.env.bak6,081
#173 /wp-admin/css/colors/blue/index.php6,048
#174 /loja/catalogo.php6,033
#175 /boaform/admin/formLogin6,012
#176 /php_info.php5,990
#177 /g.php5,984
#178 /class.php5,976
#179 /api/shared/config/config.env5,973
#180 /api/v2/freights/3165,973
#181 /images/images/cache.php5,967
#182 /wp-admin/wp-conflg.php5,965
#183 /file17.php5,883
#184 /pb5,843
#185 /2020/wp-includes/wlwmanifest.xml5,830
#186 /foq.php5,827
#187 /shell.php5,817
#188 /blog5,777
#189 /.aws/credentials5,765
#190 /Form5,749
#191 /manager.php5,731
#192 /2018/wp-includes/wlwmanifest.xml5,704
#193 /abcd.php5,652
#194 /wp-admin/js/index.php5,649
#195 /contact5,645
#196 /cc.php5,637
#197 /files5,634
#198 /wp-includes/IXR/autoload_classmap.php5,539
#199 /.well-known/acme-challenge/xmrlpc.php5,528
#200 /gg.php5,503
#201 /laravel/.env5,484
#202 /wso.php5,398
#203 /wp-admin/maint/about.php5,381
#204 /admin/function.php5,370
#205 /mini.php5,308
#206 /wp-content/about.php5,296
#207 /core/.env5,291
#208 /wp-includes/fonts/index.php5,290
#209 /sdk5,261
#210 /wp-admin/index.php5,227
#211 /app/.env5,222
#212 /sk_es/vozik5,216
#213 /wp-content/plugins/wpterm.php5,198
#214 /evox/about5,197
#215 /themes.php5,182
#216 /file5.php5,113
#217 /wp-content5,043
#218 /wp-admin/edit-tags.php5,033
#219 /assets/images/accesson.php5,018
#220 /.git/HEAD5,015
#221 /undefined4,975
#222 /byp.php4,955
#223 /images4,941
#224 /wp-content/autoload_classmap.php4,928
#225 /wp-json/custom/v14,922
#226 /loja/busca.php4,918
#227 /.env.local4,900
#228 /wp-json/sfwd-lessons/14,899
#229 /about/function.php4,873
#230 /moon.php4,870
#231 /wp-json/sfwd-topic/14,819
#232 /install.php4,782
#233 /adminfuns.php4,725
#234 /ty.php4,717
#235 /password.php4,676
#236 /admin/controller/extension/extension4,671
#237 /wp-content/style.php4,669
#238 /pinfo.php4,636
#239 /.git/index4,628
#240 /a.php4,623
#241 /null4,588
#242 /index.html4,557
#243 /apps/.env4,541
#244 /loja/cartService.php4,504
#245 /wp-admin/js/autoload_classmap.php4,502
#246 /uploads4,491
#247 /bless.php4,481
#248 /.well-known/change-password4,456
#249 /form.html4,455
#250 /.well-known/web-identity4,414
#251 /error.php4,374
#252 /.well-known/webauthn4,372
#253 /web/.env4,370
#254 /.well-known/resource-that-should-not-exist-whose-status-code-should-not-be-2004,362
#255 /upl.php4,361
#256 /wp-admin/js/widgets/cloud.php4,344
#257 /mah.php4,341
#258 /systembc/password.php4,334
#259 /wp-content/themes/about.php4,334
#260 /default.php4,332
#261 /t44,326
#262 /geoip4,325
#263 /site4,313
#264 /.env.prod4,297
#265 /version4,297
#266 /m.php4,293
#267 /wp-admin/file.php4,277
#268 /wp-admin/admin-ajax.php4,275
#269 /s.php4,265
#270 /pesca/login/index.php4,241
#271 /content.php4,231
#272 /13.php4,228
#273 /wp-content/plugins/WordPressCore/include.php4,227
#274 /public/.env4,196
#275 /we.php4,178
#276 /ar.php4,170
#277 /.well-known/acme-challenge/mariju.php4,169
#278 /wp-admin/install.php4,156
#279 /NewFile.php4,145
#280 /dev/.env4,125
#281 /sites/default/files4,117
#282 /x.php4,109
#283 /wp-content/admin.php4,098
#284 /wordpress/wp-login.php4,091
#285 /sitemap_index.xml4,079
#286 /web4,065
#287 /backend4,058
#288 /new/.env4,033
#289 /al.php4,015
#290 /wp-admin/profile.php4,004
#291 /file15.php4,003
#292 /ws.php3,996
#293 /function/function.php3,993
#294 /i.php3,991
#295 /sitemap.php3,981
#296 /info3,980
#297 /wp-content/themes/admin.php3,979
#298 /wp-admin.php3,973
#299 /fox.php3,971
#300 /wp-admin/style.php3,971
#301 /wp-editor.php3,969
#302 /ab2g3,960
#303 /ab2h3,958
#304 /wp1/wp-includes/wlwmanifest.xml3,955
#305 /new.php3,953
#306 /10.php3,951
#307 /api/v2/marketplace/sellers/615/products/queue3,950
#308 /alive.php3,930
#309 /teorema5053,923
#310 /gifclass.php3,920
#311 /api/v2/products/3863,917
#312 /SistemaEAD_CPREM/login/index.php3,912
#313 /wp-admin/js/about.php3,912
#314 /wp-admin/plugins.php3,902
#315 /222.php3,900
#316 /infos.php3,881
#317 /wp-admin/includes/index.php3,875
#318 /themes/zMousse/otuz1.php3,869
#319 /wp-admin/edit.php3,845
#320 /admin/admin.php3,822
#321 /wp-trackback.php3,822
#322 /application/.env3,814
#323 /fix.php3,810
#324 /file9.php3,787
#325 /bolt.php3,765
#326 /wp-includes/blocks/about.php3,731
#327 /wp-admin/network/network.php3,730
#328 /member-signup3,720
#329 /moddofuns.php3,714
#330 /dashboard3,711
#331 /wp-admin/wp-login.php3,702
#332 /php8.php3,701
#333 /panel3,700
#334 /wp-content/themes/style.php3,689
#335 /portal/.env3,681
#336 /function.php3,672
#337 /wp-admin/js3,654
#338 /ola-mundo3,640
#339 /item.php3,639
#340 /sts.php3,618
#341 /api/config.env3,617
#342 /0x.php3,605
#343 /config/aws.yml3,596
#344 /images/class-config.php3,595
#345 /acessorios-cameras/capa-de-silicone3,590
#346 /contact-us3,582
#347 /wp-l0gin.php3,558
#348 /gel4y.php3,541
#349 /api/shared/config.env3,537
#350 /doiconvs.php3,536
#351 /wp-admin/post-new.php3,531
#352 /_phpinfo.php3,526
#353 /g/collect3,523
#354 /crm/.env3,498
#355 /pp.php3,490
#356 /.well-known/acme-challenge/makeasmtp.php3,483
#357 /wp-admin/css/colors/ectoplasm/about.php3,471
#358 /file3.php3,468
#359 /ee.php3,465
#360 /wp-includes/wp-class.php3,464
#361 /epinyins.php3,462
#362 /dynip/f282640c3,456
#363 /groups%22%223,445
#364 /ini.php3,437
#365 /c/linha-glass/robo-aspirador3,421
#366 /wp-admin/css/qPyYcxpHKCu.php3,410
#367 /2.php3,409
#368 /cabelo/marcas-de-salao/wella-professionals/wella-professionals-invigo-color-brilliance-2-produtos3,408
#369 /wp-admin/css/colors/blue3,397
#370 /wp-json/sfwd-courses/13,363
#371 /gelay.php3,360
#372 /wp-conflg.php3,360
#373 /.well-known/classwithtostring.php3,359
#374 /js/.env3,344
#375 /wp-admin/css/colors/blue/about.php3,334
#376 /12.php3,333
#377 /wp-admin/mah.php3,331
#378 /y.php3,328
#379 /wp-aa.php3,290
#380 /xx.php3,290
#381 /CLA.php3,289
#382 /local/.env3,284
#383 /docker/.env3,274
#384 /wp-json/sfwd-courses3,273
#385 /en/assets/images/logos/HTB.JPG3,257
#386 /cron/.env3,254
#387 /b.php3,250
#388 /loja/carrinho.php3,246
#389 /graphql3,244
#390 /wp-admin/chosen.php3,237
#391 /aws.yml3,237
#392 /a2.php3,234
#393 /cursogratuito/ola-mundo3,231
#394 /env/.env3,226
#395 /item/Caique-Brudden-Explorer-Fishing-Up-.html3,220
#396 /file7.php3,214
#397 /pages.php3,197
#398 /inc.php3,196
#399 /api/config/config.yml3,194
#400 /v.php3,190
#401 /wp-json/oembed3,181
#402 /.aws/config3,179
#403 /app/config/parameters.yml3,176
#404 /wp-includes/about.php3,161
#405 /tytyd.php3,160
#406 /login.php3,158
#407 /api/v2/marketplace/sellers/376/products/queue3,154
#408 /wp-json/wp3,145
#409 /.AWS_/credentials3,126
#410 /.well-known/acme-challenge/doc.php3,123
#411 /site/.env3,123
#412 /.well-known3,122
#413 /setup.php3,118
#414 /prod/.env3,109
#415 /cabelos/creme-tratamento-silicon-mix3,104
#416 /test1.php3,092
#417 /wp-admin/js/wp-conflg.php3,089
#418 /wp-signin.php3,086
#419 /.vscode/.env3,080
#420 /ms-edit.php3,077
#421 /xmrlpc.php3,072
#422 /wp-content/uploads/de_fb_uploads/b.php3,069
#423 /files.php3,061
#424 /not_found3,052
#425 /www/.env3,051
#426 /categoria-produto/aneis/feminino3,041
#427 /awstats/.env3,028
#428 /api/v2/marketplace/sellers/655/products/queue3,023
#429 /.env.old3,020
#430 /settings.py3,019
#431 /wp-admin/admin.php3,008
#432 /api/objects/codes.php.save3,006
#433 /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php3,000
#434 /.env.production.local2,997
#435 /wp-admin/css/colors/blue/atomlib.php2,980
#436 /bugz.php2,979
#437 /.env.stage2,979
#438 /ova.php2,976
#439 /fr2,974
#440 /file6.php2,971
#441 /wp-admin/wp-admins.php2,968
#442 /assets/images/doc.php2,968
#443 /wp-includes/ID3/index.php2,967
#444 /wp-admin/wp.php2,967
#445 /robots.php2,965
#446 /conf/.env2,965
#447 /dashboard/phpinfo.php2,965
#448 /geju.php2,963
#449 /wp-content/video2,962
#450 /tool/view/phpinfo.view.php2,954
#451 /h.php2,947
#452 /alfanew.php2,930
#453 /wp-config.php.bak2,925
#454 /wp-content/plugins/autoload_classmap.php2,909
#455 /wp-content/plugins/about.php2,907
#456 /log.php2,907
#457 /main/.env2,899
#458 /wp-admin/css/colors/light/wp-login.php2,887
#459 /post.php2,883
#460 /wp-content/plugins/pwnd/pwnd.php2,875
#461 /wp-content/plugins/pwnd/as.php2,872
#462 /sitemap_index_16.xml2,866
#463 /plugins.php2,864
#464 /mail/.env2,854
#465 /new/.env.staging2,854
#466 /server-info.php2,853
#467 /development/.env2,849
#468 /.well-known/acme-challenge/muse.php2,844
#469 /aws-secret.yaml2,835
#470 /search2,835
#471 /busca2,830
#472 /fm.php2,822
#473 /mailer/.env2,814
#474 /wp-admin/autoload_classmap.php2,807
#475 /composer.php2,793
#476 /auth.php2,783
#477 /wp-content/classwithtostring.php2,782
#478 /_profiler/phpinfo/phpinfo.php2,781
#479 /lara/info.php2,781
#480 /wp-includes/html-api/about.php2,774
#481 /.bod/.ll/ss.php2,772
#482 /server-info2,768
#483 /api/v2/products/16593709972,768
#484 /.well-known/acme-challenge/index.php2,761
#485 /bak.php2,759
#486 /xampp/phpinfo.php2,758
#487 /loja/arquivos/1049375/sitemaps/sitemap_1.xml2,758
#488 /cgi-bin2,756
#489 /_profiler/phpinfo/info.php2,753
#490 /lara/phpinfo.php2,744
#491 /laravel/core/.env2,743
#492 /v12,741
#493 /.env_sample2,740
#494 /new/.env.local2,739
#495 /env.backup2,736
#496 /ALFA_DATA/alfacgiapi/perl.alfa2,735
#497 /blog/fw.php2,733
#498 /contato.html2,733
#499 /test/wp-includes/wlwmanifest.xml2,729
#500 /.env.production2,725


Data was last updated on: Oct 28, 2025



Logging Research

We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.

Trunc Logging

Logging for fun and a good night of sleep.

  • Real time search
  • Google simple
  • Cheap
  • Just works
  • PCI compliance
Trunc Research

Latest log-based threat analysis added.

Contact us!

Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org

Tired of price gouging
  • Clear pricing
  • No need to guess
  • Real people
  • Real logging

Simple, Affordable, Log Management and Analysis.

14 days free trial. No credit card required.