Web logs 404 analysis

Web logs 404 analysis - all time

Oct 28, 2025

Automatically updated daily

Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.

The table bellow list the top URLs being scanned all time and is updated daily. Most of the data contain WordPress specific URLs, certain plugins and config files that attackers can use.

Rank	Scanned URL	Counter
#1	/wp-login.php	510,962
#2	/autodiscover/autodiscover.xml	224,482
#3	/xmlrpc.php	132,989
#4	/.env	87,404
#5	/index.php	83,925
#6	/sitemap.xml	79,391
#7	/.well-known/traffic-advice	69,840
#8	/2012	57,487
#9	/404	38,543
#10	/wp-json/oembed/1.0/embed	38,288
#11	/.git/config	37,062
#12	/module/ngmercadolivre/notificacao	33,962
#13	/info.php	28,943
#14	/login	27,299
#15	/file.php	25,411
#16	/en/AutoDiscover/autodiscover.xml	23,690
#17	/admin.php	23,177
#18	/wordpress	21,507
#19	/chosen.php	21,287
#20	/wp-cron.php	21,113
#21	/wp-content/plugins/hellopress/wp_filemanager.php	20,869
#22	/about.php	20,789
#23	/backup	19,662
#24	/api/catalog_system/pub/products/search	18,910
#25	/wp	18,771
#26	/wp-admin	18,517
#27	/manager/html	18,371
#28	/.well-known/nodeinfo	17,447
#29	/_profiler/phpinfo	16,369
#30	/bk	16,178
#31	/old	16,102
#32	/bc	16,072
#33	/wp-content/plugins/fix/up.php	16,042
#34	/404testpage4525d2fdc	15,655
#35	/phpinfo	15,208
#36	/main	15,113
#37	/.well-known/acme-challenge/about.php	14,874
#38	/alfa.php	14,832
#39	/en/autodiscover/autodiscover.xml	14,631
#40	/wp-includes/wlwmanifest.xml	14,528
#41	/new	14,350
#42	/1.php	14,010
#43	/autoload_classmap.php	14,007
#44	/atomlib.php	13,891
#45	/wp.php	13,832
#46	/rest/V1/store/storeViews	13,522
#47	/admin	13,510
#48	/lock360.php	13,035
#49	/api/v2/categories/65	13,016
#50	/app	12,932
#51	/test.php	12,866
#52	/file2.php	12,741
#53	/flower.php	12,670
#54	/api/v2/marketplace/sellers/376/products/status-batch	12,478
#55	/api/v2/marketplace/sellers/376/products/stock-batch	12,382
#56	/api/v2/marketplace/sellers/376/products/price-batch	12,370
#57	/classwithtostring.php	12,332
#58	/web/wp-includes/wlwmanifest.xml	12,193
#59	/simple.php	12,179
#60	/aa.php	12,143
#61	/wordpress/wp-includes/wlwmanifest.xml	12,070
#62	/goods.php	12,068
#63	/-/-/-/-/-/-/-/-/-/-	12,016
#64	/wp/wp-includes/wlwmanifest.xml	11,861
#65	/debug/default/view	11,592
#66	/admin/config.php	11,573
#67	/blog/wp-includes/wlwmanifest.xml	11,501
#68	/api/.env	11,478
#69	/2019/wp-includes/wlwmanifest.xml	11,363
#70	/makeasmtp.php	11,344
#71	/shop/wp-includes/wlwmanifest.xml	11,293
#72	/test	11,246
#73	/v2/_catalog	11,045
#74	/server-status	10,877
#75	/acessorios-cameras	10,809
#76	/website/wp-includes/wlwmanifest.xml	10,780
#77	/ioxi-o.php	10,757
#78	/news/wp-includes/wlwmanifest.xml	10,631
#79	/pagamento/mercadopago/ipn.php	10,549
#80	/edit.php	10,291
#81	/feed	10,173
#82	/app_dev.php/_profiler/phpinfo	10,172
#83	/telescope/requests	10,163
#84	/style.php	10,150
#85	/akc.php	10,085
#86	/.well-known/apple-app-site-association	10,067
#87	/cong.php	9,878
#88	/web_api/auth	9,813
#89	/api/v2/categories/64	9,787
#90	/AutoDiscover/autodiscover.xml	9,759
#91	/api	9,579
#92	/backend/.env	9,513
#93	/admin/.env	9,453
#94	/asasx.php	9,276
#95	/phpinfo.php	9,266
#96	/contrato/wap/crons/enviar-email.php	9,261
#97	/shop	9,229
#98	/.env.example	9,215
#99	/home	9,183
#100	/wp-plain.php	9,180
#101	/login.action	9,130
#102	/w.php	9,121
#103	/inputs.php	9,105
#104	/.well-known/passkey-endpoints	8,967
#105	/user/login	8,956
#106	/as.php	8,935
#107	/css.php	8,927
#108	/goat.php	8,797
#109	/radio.php	8,748
#110	/api/graphql	8,686
#111	/about	8,668
#112	/wp-admin/css	8,601
#113	/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application	8,576
#114	/server	8,384
#115	/@vite/env	8,383
#116	/_all_dbs	8,346
#117	/cgi-bin/luci/;stok=/locale	8,341
#118	/actuator/env	8,298
#119	/cdn-cgi/rum	8,154
#120	/wordpress/wp-admin/setup-config.php	8,091
#121	/gecko.php	8,052
#122	/loja/login_layout.php	8,039
#123	/buy.php	7,928
#124	/wp-content/plugins/woocommerce/includes/gateways/locks.php	7,910
#125	/dropdown.php	7,853
#126	/07550e18	7,842
#127	/wp-sitemap.xml	7,831
#128	/HNAP1	7,829
#129	/lv.php	7,772
#130	/wp-admin/images/moon.php	7,719
#131	/config.php	7,623
#132	/wp-json/sfwd-assignment/1	7,595
#133	/k.php	7,592
#134	/autoload_classmap/function.php	7,478
#135	/wiki	7,329
#136	/wp-admin/setup-config.php	7,311
#137	/wsa.php	7,307
#138	/tinyfilemanager.php	7,187
#139	/mar.php	7,110
#140	/php.php	7,104
#141	/api/v3/community	7,103
#142	/api/v2/customers/login	7,055
#143	/users.php	6,999
#144	/contato	6,991
#145	/f35.php	6,950
#146	/mm.php	6,942
#147	/.well-known/acme-challenge/cloud.php	6,928
#148	/appWP/lab/wp-admin/css/colors/blue/blue.php	6,880
#149	/wp-content/wp-conflg.php	6,848
#150	/admin/index.php	6,816
#151	/403.php	6,789
#152	/gmo.php	6,742
#153	/wp-content/themes/seotheme/db.php	6,688
#154	/cms	6,645
#155	/nc4.php	6,510
#156	/system_log.php	6,505
#157	/zwso.php	6,472
#158	/doc.php	6,445
#159	/s/1313e2236313e20373e2538313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties	6,414
#160	/akcc.php	6,406
#161	/wp-content/index.php	6,352
#162	/api/sessions	6,319
#163	/wp-api.php	6,311
#164	/administrator	6,291
#165	/404.php	6,260
#166	/wp-admin/classwithtostring.php	6,223
#167	/feed/mnpodcast	6,156
#168	/index/function.php	6,153
#169	/wp-setup.php	6,148
#170	/wp-includes/fonts/admin.php	6,097
#171	/filemanager.php	6,093
#172	/.env.bak	6,081
#173	/wp-admin/css/colors/blue/index.php	6,048
#174	/loja/catalogo.php	6,033
#175	/boaform/admin/formLogin	6,012
#176	/php_info.php	5,990
#177	/g.php	5,984
#178	/class.php	5,976
#179	/api/shared/config/config.env	5,973
#180	/api/v2/freights/316	5,973
#181	/images/images/cache.php	5,967
#182	/wp-admin/wp-conflg.php	5,965
#183	/file17.php	5,883
#184	/pb	5,843
#185	/2020/wp-includes/wlwmanifest.xml	5,830
#186	/foq.php	5,827
#187	/shell.php	5,817
#188	/blog	5,777
#189	/.aws/credentials	5,765
#190	/Form	5,749
#191	/manager.php	5,731
#192	/2018/wp-includes/wlwmanifest.xml	5,704
#193	/abcd.php	5,652
#194	/wp-admin/js/index.php	5,649
#195	/contact	5,645
#196	/cc.php	5,637
#197	/files	5,634
#198	/wp-includes/IXR/autoload_classmap.php	5,539
#199	/.well-known/acme-challenge/xmrlpc.php	5,528
#200	/gg.php	5,503
#201	/laravel/.env	5,484
#202	/wso.php	5,398
#203	/wp-admin/maint/about.php	5,381
#204	/admin/function.php	5,370
#205	/mini.php	5,308
#206	/wp-content/about.php	5,296
#207	/core/.env	5,291
#208	/wp-includes/fonts/index.php	5,290
#209	/sdk	5,261
#210	/wp-admin/index.php	5,227
#211	/app/.env	5,222
#212	/sk_es/vozik	5,216
#213	/wp-content/plugins/wpterm.php	5,198
#214	/evox/about	5,197
#215	/themes.php	5,182
#216	/file5.php	5,113
#217	/wp-content	5,043
#218	/wp-admin/edit-tags.php	5,033
#219	/assets/images/accesson.php	5,018
#220	/.git/HEAD	5,015
#221	/undefined	4,975
#222	/byp.php	4,955
#223	/images	4,941
#224	/wp-content/autoload_classmap.php	4,928
#225	/wp-json/custom/v1	4,922
#226	/loja/busca.php	4,918
#227	/.env.local	4,900
#228	/wp-json/sfwd-lessons/1	4,899
#229	/about/function.php	4,873
#230	/moon.php	4,870
#231	/wp-json/sfwd-topic/1	4,819
#232	/install.php	4,782
#233	/adminfuns.php	4,725
#234	/ty.php	4,717
#235	/password.php	4,676
#236	/admin/controller/extension/extension	4,671
#237	/wp-content/style.php	4,669
#238	/pinfo.php	4,636
#239	/.git/index	4,628
#240	/a.php	4,623
#241	/null	4,588
#242	/index.html	4,557
#243	/apps/.env	4,541
#244	/loja/cartService.php	4,504
#245	/wp-admin/js/autoload_classmap.php	4,502
#246	/uploads	4,491
#247	/bless.php	4,481
#248	/.well-known/change-password	4,456
#249	/form.html	4,455
#250	/.well-known/web-identity	4,414
#251	/error.php	4,374
#252	/.well-known/webauthn	4,372
#253	/web/.env	4,370
#254	/.well-known/resource-that-should-not-exist-whose-status-code-should-not-be-200	4,362
#255	/upl.php	4,361
#256	/wp-admin/js/widgets/cloud.php	4,344
#257	/mah.php	4,341
#258	/systembc/password.php	4,334
#259	/wp-content/themes/about.php	4,334
#260	/default.php	4,332
#261	/t4	4,326
#262	/geoip	4,325
#263	/site	4,313
#264	/.env.prod	4,297
#265	/version	4,297
#266	/m.php	4,293
#267	/wp-admin/file.php	4,277
#268	/wp-admin/admin-ajax.php	4,275
#269	/s.php	4,265
#270	/pesca/login/index.php	4,241
#271	/content.php	4,231
#272	/13.php	4,228
#273	/wp-content/plugins/WordPressCore/include.php	4,227
#274	/public/.env	4,196
#275	/we.php	4,178
#276	/ar.php	4,170
#277	/.well-known/acme-challenge/mariju.php	4,169
#278	/wp-admin/install.php	4,156
#279	/NewFile.php	4,145
#280	/dev/.env	4,125
#281	/sites/default/files	4,117
#282	/x.php	4,109
#283	/wp-content/admin.php	4,098
#284	/wordpress/wp-login.php	4,091
#285	/sitemap_index.xml	4,079
#286	/web	4,065
#287	/backend	4,058
#288	/new/.env	4,033
#289	/al.php	4,015
#290	/wp-admin/profile.php	4,004
#291	/file15.php	4,003
#292	/ws.php	3,996
#293	/function/function.php	3,993
#294	/i.php	3,991
#295	/sitemap.php	3,981
#296	/info	3,980
#297	/wp-content/themes/admin.php	3,979
#298	/wp-admin.php	3,973
#299	/fox.php	3,971
#300	/wp-admin/style.php	3,971
#301	/wp-editor.php	3,969
#302	/ab2g	3,960
#303	/ab2h	3,958
#304	/wp1/wp-includes/wlwmanifest.xml	3,955
#305	/new.php	3,953
#306	/10.php	3,951
#307	/api/v2/marketplace/sellers/615/products/queue	3,950
#308	/alive.php	3,930
#309	/teorema505	3,923
#310	/gifclass.php	3,920
#311	/api/v2/products/386	3,917
#312	/SistemaEAD_CPREM/login/index.php	3,912
#313	/wp-admin/js/about.php	3,912
#314	/wp-admin/plugins.php	3,902
#315	/222.php	3,900
#316	/infos.php	3,881
#317	/wp-admin/includes/index.php	3,875
#318	/themes/zMousse/otuz1.php	3,869
#319	/wp-admin/edit.php	3,845
#320	/admin/admin.php	3,822
#321	/wp-trackback.php	3,822
#322	/application/.env	3,814
#323	/fix.php	3,810
#324	/file9.php	3,787
#325	/bolt.php	3,765
#326	/wp-includes/blocks/about.php	3,731
#327	/wp-admin/network/network.php	3,730
#328	/member-signup	3,720
#329	/moddofuns.php	3,714
#330	/dashboard	3,711
#331	/wp-admin/wp-login.php	3,702
#332	/php8.php	3,701
#333	/panel	3,700
#334	/wp-content/themes/style.php	3,689
#335	/portal/.env	3,681
#336	/function.php	3,672
#337	/wp-admin/js	3,654
#338	/ola-mundo	3,640
#339	/item.php	3,639
#340	/sts.php	3,618
#341	/api/config.env	3,617
#342	/0x.php	3,605
#343	/config/aws.yml	3,596
#344	/images/class-config.php	3,595
#345	/acessorios-cameras/capa-de-silicone	3,590
#346	/contact-us	3,582
#347	/wp-l0gin.php	3,558
#348	/gel4y.php	3,541
#349	/api/shared/config.env	3,537
#350	/doiconvs.php	3,536
#351	/wp-admin/post-new.php	3,531
#352	/_phpinfo.php	3,526
#353	/g/collect	3,523
#354	/crm/.env	3,498
#355	/pp.php	3,490
#356	/.well-known/acme-challenge/makeasmtp.php	3,483
#357	/wp-admin/css/colors/ectoplasm/about.php	3,471
#358	/file3.php	3,468
#359	/ee.php	3,465
#360	/wp-includes/wp-class.php	3,464
#361	/epinyins.php	3,462
#362	/dynip/f282640c	3,456
#363	/groups%22%22	3,445
#364	/ini.php	3,437
#365	/c/linha-glass/robo-aspirador	3,421
#366	/wp-admin/css/qPyYcxpHKCu.php	3,410
#367	/2.php	3,409
#368	/cabelo/marcas-de-salao/wella-professionals/wella-professionals-invigo-color-brilliance-2-produtos	3,408
#369	/wp-admin/css/colors/blue	3,397
#370	/wp-json/sfwd-courses/1	3,363
#371	/gelay.php	3,360
#372	/wp-conflg.php	3,360
#373	/.well-known/classwithtostring.php	3,359
#374	/js/.env	3,344
#375	/wp-admin/css/colors/blue/about.php	3,334
#376	/12.php	3,333
#377	/wp-admin/mah.php	3,331
#378	/y.php	3,328
#379	/wp-aa.php	3,290
#380	/xx.php	3,290
#381	/CLA.php	3,289
#382	/local/.env	3,284
#383	/docker/.env	3,274
#384	/wp-json/sfwd-courses	3,273
#385	/en/assets/images/logos/HTB.JPG	3,257
#386	/cron/.env	3,254
#387	/b.php	3,250
#388	/loja/carrinho.php	3,246
#389	/graphql	3,244
#390	/wp-admin/chosen.php	3,237
#391	/aws.yml	3,237
#392	/a2.php	3,234
#393	/cursogratuito/ola-mundo	3,231
#394	/env/.env	3,226
#395	/item/Caique-Brudden-Explorer-Fishing-Up-.html	3,220
#396	/file7.php	3,214
#397	/pages.php	3,197
#398	/inc.php	3,196
#399	/api/config/config.yml	3,194
#400	/v.php	3,190
#401	/wp-json/oembed	3,181
#402	/.aws/config	3,179
#403	/app/config/parameters.yml	3,176
#404	/wp-includes/about.php	3,161
#405	/tytyd.php	3,160
#406	/login.php	3,158
#407	/api/v2/marketplace/sellers/376/products/queue	3,154
#408	/wp-json/wp	3,145
#409	/.AWS_/credentials	3,126
#410	/.well-known/acme-challenge/doc.php	3,123
#411	/site/.env	3,123
#412	/.well-known	3,122
#413	/setup.php	3,118
#414	/prod/.env	3,109
#415	/cabelos/creme-tratamento-silicon-mix	3,104
#416	/test1.php	3,092
#417	/wp-admin/js/wp-conflg.php	3,089
#418	/wp-signin.php	3,086
#419	/.vscode/.env	3,080
#420	/ms-edit.php	3,077
#421	/xmrlpc.php	3,072
#422	/wp-content/uploads/de_fb_uploads/b.php	3,069
#423	/files.php	3,061
#424	/not_found	3,052
#425	/www/.env	3,051
#426	/categoria-produto/aneis/feminino	3,041
#427	/awstats/.env	3,028
#428	/api/v2/marketplace/sellers/655/products/queue	3,023
#429	/.env.old	3,020
#430	/settings.py	3,019
#431	/wp-admin/admin.php	3,008
#432	/api/objects/codes.php.save	3,006
#433	/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	3,000
#434	/.env.production.local	2,997
#435	/wp-admin/css/colors/blue/atomlib.php	2,980
#436	/bugz.php	2,979
#437	/.env.stage	2,979
#438	/ova.php	2,976
#439	/fr	2,974
#440	/file6.php	2,971
#441	/wp-admin/wp-admins.php	2,968
#442	/assets/images/doc.php	2,968
#443	/wp-includes/ID3/index.php	2,967
#444	/wp-admin/wp.php	2,967
#445	/robots.php	2,965
#446	/conf/.env	2,965
#447	/dashboard/phpinfo.php	2,965
#448	/geju.php	2,963
#449	/wp-content/video	2,962
#450	/tool/view/phpinfo.view.php	2,954
#451	/h.php	2,947
#452	/alfanew.php	2,930
#453	/wp-config.php.bak	2,925
#454	/wp-content/plugins/autoload_classmap.php	2,909
#455	/wp-content/plugins/about.php	2,907
#456	/log.php	2,907
#457	/main/.env	2,899
#458	/wp-admin/css/colors/light/wp-login.php	2,887
#459	/post.php	2,883
#460	/wp-content/plugins/pwnd/pwnd.php	2,875
#461	/wp-content/plugins/pwnd/as.php	2,872
#462	/sitemap_index_16.xml	2,866
#463	/plugins.php	2,864
#464	/mail/.env	2,854
#465	/new/.env.staging	2,854
#466	/server-info.php	2,853
#467	/development/.env	2,849
#468	/.well-known/acme-challenge/muse.php	2,844
#469	/aws-secret.yaml	2,835
#470	/search	2,835
#471	/busca	2,830
#472	/fm.php	2,822
#473	/mailer/.env	2,814
#474	/wp-admin/autoload_classmap.php	2,807
#475	/composer.php	2,793
#476	/auth.php	2,783
#477	/wp-content/classwithtostring.php	2,782
#478	/_profiler/phpinfo/phpinfo.php	2,781
#479	/lara/info.php	2,781
#480	/wp-includes/html-api/about.php	2,774
#481	/.bod/.ll/ss.php	2,772
#482	/server-info	2,768
#483	/api/v2/products/1659370997	2,768
#484	/.well-known/acme-challenge/index.php	2,761
#485	/bak.php	2,759
#486	/xampp/phpinfo.php	2,758
#487	/loja/arquivos/1049375/sitemaps/sitemap_1.xml	2,758
#488	/cgi-bin	2,756
#489	/_profiler/phpinfo/info.php	2,753
#490	/lara/phpinfo.php	2,744
#491	/laravel/core/.env	2,743
#492	/v1	2,741
#493	/.env_sample	2,740
#494	/new/.env.local	2,739
#495	/env.backup	2,736
#496	/ALFA_DATA/alfacgiapi/perl.alfa	2,735
#497	/blog/fw.php	2,733
#498	/contato.html	2,733
#499	/test/wp-includes/wlwmanifest.xml	2,729
#500	/.env.production	2,725

Data was last updated on: Oct 28, 2025

Logging Research

We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.

Trunc Logging

Logging for fun and a good night of sleep.

Real time search
Google simple
Cheap
Just works
PCI compliance

Trunc Research

Latest log-based threat analysis added.

2025-09-03WordPress - Last scanned URLs
2025-08-22Web logs 404 analysis - past 72 hours
2025-08-21WordPress most scanned URLs - all time
2025-08-21Web logs 404 analysis - all time

Contact us!

Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org

Tired of price gouging

Clear pricing
No need to guess
Real people
Real logging

Web logs 404 analysis - all time

Logging Research

Trunc Logging

Trunc Research

Contact us!

Tired of price gouging

Simple, Affordable, Log Management and Analysis.

PRODUCTS

USEFUL LINKS

CONTACT US