Web logs 404 analysis

Web logs 404 analysis - all time

May 15, 2026

Automatically updated daily

Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.

The table bellow list the top URLs being scanned all time and is updated daily. Most of the data contain WordPress specific URLs, certain plugins and config files that attackers can use.

Rank	Scanned URL	Counter
#1	/wp-login.php	614,051
#2	/autodiscover/autodiscover.xml	288,532
#3	/xmlrpc.php	143,462
#4	/index.php	107,438
#5	/.env	103,331
#6	/.well-known/traffic-advice	100,867
#7	/sitemap.xml	85,427
#8	/api/v2/auth	71,306
#9	/2012	57,492
#10	/404	47,803
#11	/wp-json/oembed/1.0/embed	46,676
#12	/.git/config	42,927
#13	/module/ngmercadolivre/notificacao	36,550
#14	/info.php	35,577
#15	/manager/html	32,846
#16	/file.php	32,829
#17	/admin.php	32,331
#18	/login	30,492
#19	/about.php	28,191
#20	/chosen.php	27,117
#21	/en/AutoDiscover/autodiscover.xml	25,966
#22	/wp-cron.php	25,571
#23	/wordpress	24,043
#24	/backup	22,852
#25	/wp-content/plugins/hellopress/wp_filemanager.php	22,677
#26	/wp-admin	21,793
#27	/wp	20,867
#28	/api/catalog_system/pub/products/search	19,153
#29	/alfa.php	18,721
#30	/classwithtostring.php	18,281
#31	/.well-known/passkey-endpoints	18,248
#32	/old	18,183
#33	/wp-content/plugins/fix/up.php	17,737
#34	/ioxi-o.php	17,650
#35	/.well-known/nodeinfo	17,640
#36	/wp.php	17,404
#37	/_profiler/phpinfo	17,365
#38	/aa.php	17,279
#39	/goods.php	17,141
#40	/1.php	16,990
#41	/admin	16,871
#42	/404testpage4525d2fdc	16,810
#43	/wp-includes/wlwmanifest.xml	16,760
#44	/autoload_classmap.php	16,746
#45	/en/autodiscover/autodiscover.xml	16,601
#46	/atomlib.php	16,567
#47	/phpinfo	16,358
#48	/bk	16,276
#49	/new	16,223
#50	/api/v2/marketplace/sellers/376/products/status-batch	16,186
#51	/api/v2/marketplace/sellers/376/products/stock-batch	16,088
#52	/api/v2/marketplace/sellers/376/products/price-batch	16,073
#53	/bc	16,072
#54	/.well-known/acme-challenge/about.php	15,786
#55	/api/.env	15,763
#56	/main	15,213
#57	/rest/V1/store/storeViews	15,033
#58	/flower.php	14,860
#59	/edit.php	14,805
#60	/simple.php	14,756
#61	/test.php	14,747
#62	/file2.php	14,562
#63	/-/-/-/-/-/-/-/-/-/-	14,347
#64	/lock360.php	14,311
#65	/web/wp-includes/wlwmanifest.xml	14,162
#66	/admin/config.php	14,058
#67	/wordpress/wp-includes/wlwmanifest.xml	14,025
#68	/api/v2/categories/65	13,887
#69	/shop	13,883
#70	/wp/wp-includes/wlwmanifest.xml	13,798
#71	/backend/.env	13,456
#72	/blog/wp-includes/wlwmanifest.xml	13,365
#73	/app_dev.php/_profiler/phpinfo	13,309
#74	/2019/wp-includes/wlwmanifest.xml	13,216
#75	/app	13,201
#76	/admin/.env	13,179
#77	/cong.php	13,143
#78	/shop/wp-includes/wlwmanifest.xml	13,126
#79	/[object%20Object]	13,063
#80	/cdn-cgi/rum	12,934
#81	/debug/default/view	12,833
#82	/buy.php	12,791
#83	/web_api/auth	12,758
#84	/makeasmtp.php	12,756
#85	/AutoDiscover/autodiscover.xml	12,482
#86	/.env.example	12,479
#87	/website/wp-includes/wlwmanifest.xml	12,441
#88	/abcd.php	12,431
#89	/pagamento/mercadopago/ipn.php	12,329
#90	/news/wp-includes/wlwmanifest.xml	12,275
#91	/saiga.php	12,240
#92	/contrato/wap/crons/enviar-email.php	12,192
#93	/v2/_catalog	12,190
#94	/feed	12,145
#95	/test	12,121
#96	/server-status	11,996
#97	/style.php	11,972
#98	/api	11,619
#99	/radio.php	11,552
#100	/akcc.php	11,487
#101	/inputs.php	11,482
#102	/asasx.php	11,473
#103	/akc.php	11,466
#104	/.well-known/apple-app-site-association	11,425
#105	/telescope/requests	11,247
#106	/autoload_classmap/function.php	11,104
#107	/acessorios-cameras	10,809
#108	/dropdown.php	10,714
#109	/wp-admin/css	10,553
#110	/k.php	10,497
#111	/wp-plain.php	10,470
#112	/adminfuns.php	10,410
#113	/css.php	10,274
#114	/api/v2/categories/64	10,248
#115	/api/graphql	10,132
#116	/as.php	10,053
#117	/phpinfo.php	10,025
#118	/home	9,962
#119	/login.action	9,960
#120	/user/login	9,744
#121	/about	9,731
#122	/w.php	9,669
#123	/api/sessions	9,604
#124	/bless.php	9,522
#125	/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application	9,479
#126	/404.php	9,195
#127	/server	9,181
#128	/@vite/env	9,141
#129	/_all_dbs	9,131
#130	/actuator/env	9,111
#131	/api/v2/customers/login	9,058
#132	/goat.php	9,049
#133	/loja/login_layout.php	8,897
#134	/HNAP1	8,777
#135	/cgi-bin/luci/;stok=/locale	8,702
#136	/wp-json/sfwd-assignment/1	8,681
#137	/gecko.php	8,658
#138	/files	8,624
#139	/wordpress/wp-admin/setup-config.php	8,594
#140	/lv.php	8,555
#141	/loja/catalogo.php	8,457
#142	/bolt.php	8,451
#143	/php.php	8,447
#144	/upload/banner	8,383
#145	/config.php	8,303
#146	/administrator	8,291
#147	/themes.php	8,240
#148	/wp-content/index.php	8,170
#149	/manager.php	8,168
#150	/wp-admin/classwithtostring.php	8,122
#151	/07550e18	8,071
#152	/wp-sitemap.xml	8,064
#153	/.well-known/acme-challenge/cloud.php	8,054
#154	/nc4.php	8,050
#155	/403.php	8,046
#156	/appWP/lab/wp-admin/css/colors/blue/blue.php	8,003
#157	/wp-content/plugins/woocommerce/includes/gateways/locks.php	7,910
#158	/wp-admin/images/moon.php	7,876
#159	/wp-content/wp-conflg.php	7,791
#160	/index/function.php	7,773
#161	/contato	7,733
#162	/wp-admin/setup-config.php	7,725
#163	/wsa.php	7,710
#164	/wiki	7,503
#165	/f35.php	7,501
#166	/wp-content/themes/seotheme/db.php	7,495
#167	/images/images/cache.php	7,490
#168	/g/collect	7,453
#169	/gg.php	7,436
#170	/gmo.php	7,427
#171	/admin/index.php	7,425
#172	/mar.php	7,372
#173	/pb	7,370
#174	/content.php	7,363
#175	/doc.php	7,356
#176	/tinyfilemanager.php	7,323
#177	/new.php	7,259
#178	/users.php	7,250
#179	/zwso.php	7,207
#180	/api/v2/products/stock-batch	7,200
#181	/blog	7,197
#182	/wp-content/admin.php	7,112
#183	/filemanager.php	7,111
#184	/mm.php	7,106
#185	/api/v3/community	7,103
#186	/shell.php	7,102
#187	/wp-content/themes/admin.php	7,072
#188	/wp-admin/index.php	7,071
#189	/s/1313e2236313e20373e2538313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties	7,037
#190	/images	7,016
#191	/moon.php	6,954
#192	/null	6,951
#193	/wp-content/autoload_classmap.php	6,947
#194	/2018/wp-includes/wlwmanifest.xml	6,920
#195	/system_log.php	6,877
#196	/class.php	6,867
#197	/cms	6,826
#198	/wp-admin/css/colors/blue/index.php	6,786
#199	/wp-admin/js/index.php	6,754
#200	/.env.bak	6,735
#201	/wp-content/themes/about.php	6,727
#202	/cc.php	6,701
#203	/wp-content/video	6,672
#204	/boaform/admin/formLogin	6,615
#205	/install.php	6,614
#206	/feed/mnpodcast	6,574
#207	/wp-admin/wp-conflg.php	6,557
#208	/.aws/credentials	6,498
#209	/mah.php	6,486
#210	/wp-api.php	6,455
#211	/2020/wp-includes/wlwmanifest.xml	6,438
#212	/wp-admin/js/autoload_classmap.php	6,428
#213	/api/v2/freights/316	6,427
#214	/g.php	6,376
#215	/222.php	6,373
#216	/wso.php	6,352
#217	/wp-setup.php	6,289
#218	/wp-includes/fonts/admin.php	6,257
#219	/mini.php	6,249
#220	/app/.env	6,218
#221	/php_info.php	6,209
#222	/rest/V1/inventory/source-items	6,203
#223	/wp-json/mod/v1/check-site	6,198
#224	/api/shared/config/config.env	6,163
#225	/laravel/.env	6,148
#226	/.well-known/acme-challenge/xmrlpc.php	6,099
#227	/loja/busca.php	6,073
#228	/file17.php	6,072
#229	/xmrlpc.php	6,056
#230	/uploads	6,049
#231	/ahax.php	6,038
#232	/wp-content/about.php	6,025
#233	/.env.local	5,985
#234	/admin/controller/extension/extension	5,979
#235	/file5.php	5,973
#236	/sdk	5,959
#237	/admin/function.php	5,930
#238	/contact	5,921
#239	/evox/about	5,886
#240	/wp-admin/maint/about.php	5,855
#241	/foq.php	5,827
#242	/core/.env	5,784
#243	/assets/images/accesson.php	5,784
#244	/Form	5,778
#245	/sitemap_index.xml	5,771
#246	/default.php	5,765
#247	/wp-good.php	5,721
#248	/wp-includes/fonts/index.php	5,685
#249	/wp-content/style.php	5,646
#250	/wp-content	5,633
#251	/wp-editor.php	5,611
#252	/wp-includes/IXR/autoload_classmap.php	5,585
#253	/13.php	5,475
#254	/wp-json/sfwd-lessons/1	5,437
#255	/undefined	5,410
#256	/loja/cartService.php	5,395
#257	/item.php	5,384
#258	/about/function.php	5,373
#259	/a.php	5,358
#260	/byp.php	5,322
#261	/wp-json/sfwd-topic/1	5,302
#262	/wp-admin/edit-tags.php	5,257
#263	/function/function.php	5,244
#264	/files.php	5,229
#265	/sk_es/vozik	5,216
#266	/wp-content/plugins/WordPressCore/include.php	5,210
#267	/wp-content/plugins/wpterm.php	5,198
#268	/comment.php	5,183
#269	/pinfo.php	5,170
#270	/wp-admin/admin-ajax.php	5,168
#271	/.git/HEAD	5,151
#272	/s.php	5,148
#273	/.env.prod	5,140
#274	/api/v2/products/1659371462	5,136
#275	/api/v2/products/1659370143	5,121
#276	/password.php	5,117
#277	/api/v2/products/1659369592	5,112
#278	/api/v2/products/1659372022	5,109
#279	/api/v2/products/1659371194	5,094
#280	/api/v2/products/1659370690	5,092
#281	/api/v2/products/1659370649	5,078
#282	/api/v2/products/1659370315	5,076
#283	/wp-trackback.php	5,074
#284	/api/v2/products/1659370540	5,072
#285	/api/v2/products/1659369318	5,072
#286	/api/v2/products/1659369485	5,071
#287	/api/v2/products/1659369765	5,065
#288	/api/v2/products/1659371884	5,056
#289	/api/v2/products/1659369941	5,056
#290	/api/v2/products/1659371029	5,055
#291	/api/v2/products/1659371489	5,054
#292	/api/v2/products/1659371730	5,053
#293	/api/v2/products/1659370539	5,049
#294	/api/v2/products/1659371950	5,039
#295	/api/v2/products/1659371217	5,037
#296	/api/v2/products/1659369366	5,019
#297	/apps/.env	5,018
#298	/.git/index	5,000
#299	/api/v2/products/1659369038	4,996
#300	/m.php	4,966
#301	/wp-json/custom/v1	4,922
#302	/form.html	4,913
#303	/wp-content/plugins/admin.php	4,907
#304	/api/v2/products/1659368975	4,901
#305	/pesca/login/index.php	4,896
#306	/api/v2/products/386	4,889
#307	/ty.php	4,851
#308	/tytyd.php	4,839
#309	/index.html	4,832
#310	/sites/default/files	4,813
#311	/api/v2/marketplace/sellers/615/products/queue	4,810
#312	/upl.php	4,807
#313	/graphql	4,793
#314	/wp1/wp-includes/wlwmanifest.xml	4,791
#315	/web/.env	4,790
#316	/error.php	4,784
#317	/.well-known/change-password	4,779
#318	/x.php	4,777
#319	/systembc/password.php	4,774
#320	/t4	4,767
#321	/geoip	4,765
#322	/wp-admin.php	4,751
#323	/we.php	4,744
#324	/.well-known/web-identity	4,721
#325	/gifclass.php	4,709
#326	/dev/.env	4,705
#327	/ws.php	4,702
#328	/elp.php	4,694
#329	/wp-admin/js	4,689
#330	/.well-known/resource-that-should-not-exist-whose-status-code-should-not-be-200	4,680
#331	/.well-known/webauthn	4,678
#332	/public/.env	4,672
#333	/wp-admin/includes/index.php	4,632
#334	/sitemap.php	4,628
#335	/SistemaEAD_CPREM/login/index.php	4,624
#336	/wp-content/plugins/pwnd/pwnd.php	4,592
#337	/cgi-bin	4,587
#338	/version	4,572
#339	/new/.env	4,564
#340	/wp-admin/style.php	4,531
#341	/comment-subscriptions	4,515
#342	/NewFile.php	4,502
#343	/0x.php	4,485
#344	/wp-admin/profile.php	4,481
#345	/site	4,458
#346	/api/v2/brands/4718	4,454
#347	/ab2g	4,450
#348	/api/v2/marketplace/sellers/655/products/queue	4,450
#349	/ab2h	4,448
#350	/info	4,430
#351	/alive.php	4,414
#352	/teorema505	4,407
#353	/wp-conflg.php	4,406
#354	/ar.php	4,405
#355	/wordpress/wp-login.php	4,391
#356	/wp-admin/js/widgets/cloud.php	4,387
#357	/admin/admin.php	4,383
#358	/portal/.env	4,368
#359	/wp-admin/install.php	4,352
#360	/i.php	4,348
#361	/fox.php	4,339
#362	/.well-known/acme-challenge/mariju.php	4,336
#363	/wp-content/themes/style.php	4,301
#364	/wp-admin/plugins.php	4,297
#365	/wp-admin/edit.php	4,286
#366	/wp-admin/file.php	4,285
#367	/web	4,274
#368	/wp-admin/js/about.php	4,273
#369	/10.php	4,251
#370	/num.php	4,243
#371	/al.php	4,242
#372	/wp-admin/includes/colour.php	4,186
#373	/wp-admin/css/colors/blue	4,166
#374	/2.php	4,163
#375	/file15.php	4,148
#376	/wp-signin.php	4,144
#377	/wp-json/sfwd-courses	4,142
#378	/backend	4,135
#379	/sts.php	4,131
#380	/application/.env	4,072
#381	/api/v2/products/1659372042	4,064
#382	/file9.php	4,046
#383	/fr	4,029
#384	/wp-blog.php	4,020
#385	/wp-content/plugins/pwnd/as.php	4,007
#386	/test1.php	3,987
#387	/.well-known	3,976
#388	/aws.yml	3,964
#389	/wp-admin/css/colors/blue/atomlib.php	3,954
#390	/dashboard	3,944
#391	/infos.php	3,943
#392	/ini.php	3,939
#393	/wp-admin/wp-admins.php	3,921
#394	/gelay.php	3,916
#395	/api/v2/products/1659370940	3,912
#396	/groups%22%22	3,893
#397	/themes/zMousse/otuz1.php	3,876
#398	/api/v2/marketplace/sellers/376/products/queue	3,871
#399	/not_found	3,867
#400	/php8.php	3,862
#401	/pp.php	3,835
#402	/simular	3,822
#403	/config/aws.yml	3,819
#404	/fix.php	3,815
#405	/gel4y.php	3,806
#406	/api/config.env	3,791
#407	/function.php	3,782
#408	/wp-admin/css/about.php	3,781
#409	/www/.env	3,777
#410	/panel	3,769
#411	/ee.php	3,766
#412	/login.php	3,759
#413	/wp-includes/blocks/about.php	3,754
#414	/_phpinfo.php	3,754
#415	/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	3,753
#416	/docker/.env	3,742
#417	/wp-admin/network/network.php	3,738
#418	/member-signup	3,734
#419	/crm/.env	3,729
#420	/ola-mundo	3,723
#421	/js/.env	3,715
#422	/moddofuns.php	3,714
#423	/api/shared/config.env	3,714
#424	/images/class-config.php	3,712
#425	/xx.php	3,710
#426	/wp-admin/wp-login.php	3,708
#427	/fm.php	3,708
#428	/en/assets/images/logos/HTB.JPG	3,703
#429	/wp-l0gin.php	3,699
#430	/mah/function.php	3,674
#431	/customer/account/create	3,670
#432	/env/.env	3,669
#433	/app/config/parameters.yml	3,652
#434	/contact-us	3,648
#435	/wp-admin/post-new.php	3,642
#436	/cron/.env	3,640
#437	/cursogratuito/ola-mundo	3,629
#438	/wp-content/plugins/simple-ajax-chat/includes/sac-check-user.php	3,616
#439	/12.php	3,612
#440	/CLA.php	3,606
#441	/item/Caique-Brudden-Explorer-Fishing-Up-.html	3,603
#442	/file3.php	3,595
#443	/acessorios-cameras/capa-de-silicone	3,590
#444	/wp-includes/wp-class.php	3,586
#445	/checkout/cart/add	3,570
#446	/wp-content/plugins/about.php	3,569
#447	/loja/carrinho.php	3,566
#448	/rest/V1/orders	3,566
#449	/ss.php	3,551
#450	/alfanew.php	3,540
#451	/doiconvs.php	3,536
#452	/api/v2/batch/1110	3,536
#453	/epinyins.php	3,523
#454	/api/v2/products/5518	3,517
#455	/dynip/f282640c	3,517
#456	/wp-admin/includes	3,517
#457	/build.php	3,513
#458	/local/.env	3,510
#459	/wp-admin/js/wp-conflg.php	3,506
#460	/wp-content/uploads	3,504
#461	/wp-content/classwithtostring.php	3,500
#462	/.well-known/acme-challenge/makeasmtp.php	3,500
#463	/file7.php	3,499
#464	/y.php	3,493
#465	/api/v2/products/1659369863	3,490
#466	/log.php	3,475
#467	/wp-admin/css/colors/ectoplasm/about.php	3,474
#468	/a2.php	3,473
#469	/v.php	3,472
#470	/wp-admin/css/colors/blue/about.php	3,470
#471	/.vscode/.env	3,451
#472	/awstats/.env	3,450
#473	/search	3,450
#474	/.aws/config	3,432
#475	/wp-json/oembed	3,427
#476	/c/linha-glass/robo-aspirador	3,421
#477	/wp-json/wp	3,420
#478	/test/wp-includes/wlwmanifest.xml	3,412
#479	/wp-admin/css/qPyYcxpHKCu.php	3,410
#480	/api/v2/products/531	3,410
#481	/site/.env	3,409
#482	/cabelo/marcas-de-salao/wella-professionals/wella-professionals-invigo-color-brilliance-2-produtos	3,408
#483	/mail.php	3,404
#484	/.well-known/classwithtostring.php	3,398
#485	/wp-json/sfwd-lessons	3,394
#486	/inc.php	3,393
#487	/api/v2/batch/1111	3,389
#488	/b.php	3,382
#489	/wp-aa.php	3,375
#490	/settings.py	3,368
#491	/wp-json/sfwd-courses/1	3,363
#492	/wp-admin/autoload_classmap.php	3,358
#493	/.env.old	3,353
#494	/wp-admin/mah.php	3,348
#495	/api/config/config.yml	3,346
#496	/mini	3,333
#497	/lowpr.php	3,330
#498	/bak.php	3,320
#499	/jp.php	3,317
#500	/submissions	3,317

Data was last updated on: May 15, 2026

Logging Research

We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.

Trunc Logging

Logging for fun and a good night of sleep.

Real time search
Google simple
Cheap
Just works
PCI compliance

Trunc Research

Latest log-based threat analysis added.

2025-09-03WordPress - Last scanned URLs
2025-08-22Web logs 404 analysis - past 72 hours
2025-08-21WordPress most scanned URLs - all time
2025-08-21Web logs 404 analysis - all time

Contact us!

Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org

Tired of price gouging

Clear pricing
No need to guess
Real people
Real logging

Web logs 404 analysis - all time

Logging Research

Trunc Logging

Trunc Research

Contact us!

Tired of price gouging

Simple, Affordable, Log Management and Analysis.

PRODUCTS

USEFUL LINKS

CONTACT US