Web logs 404 analysis - past 72 hours

Oct 28, 2025

Automatically updated daily

Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.

This table bellow list the top URLs being scanned in the past 72 hours. Some of them may show what attacker are actively looking for and new vulnerabilities in the wild.

Rank	Scanned URL	Counter
#1	/wp-login.php	46,875
#2	/autodiscover/autodiscover.xml	24,882
#3	/manager/html	14,797
#4	/app	12,136
#5	/.well-known/traffic-advice	9,438
#6	/login	8,185
#7	/xmlrpc.php	5,028
#8	/index.php	3,072
#9	/.env	2,950
#10	/module/ngmercadolivre/notificacao	2,581
#11	/cdn-cgi/rum	2,573
#12	/web_api/auth	2,042
#13	/api/v2/marketplace/sellers/376/products/status-batch	1,797
#14	/api/v2/marketplace/sellers/376/products/stock-batch	1,796
#15	/api/v2/marketplace/sellers/376/products/price-batch	1,795
#16	/casa.html	1,671
#17	/AutoDiscover/autodiscover.xml	1,661
#18	/admin/config.php	1,514
#19	/CDGServer3/SystemConfig	1,401
#20	/sitemap.xml	1,331
#21	/jmx-console	1,229
#22	/.git/config	1,220
#23	/wp-json/oembed/1.0/embed	1,130
#24	/info.php	1,098
#25	/rest/V1/store/storeViews	1,089
#26	/chosen.php	1,073
#27	/cabelo/marcas-de-salao/wella-professionals/wella-professionals-invigo-color-brilliance-2-produtos	1,073
#28	/wp-cron.php	1,069
#29	/wordpress	1,059
#30	/wp-content/plugins/WordPressCore/include.php	1,040
#31	/api/auth/login	961
#32	/backup	937
#33	/wp	925
#34	/realms/master/protocol/openid-connect/auth	900
#35	/bk	896
#36	/file.php	892
#37	/bc	887
#38	/about.php	866
#39	/1.php	857
#40	/web_api/products	850
#41	/wp-includes/wlwmanifest.xml	818
#42	/api/sessions	815
#43	/.env.example	802
#44	/api/.env	788
#45	/web/wp-includes/wlwmanifest.xml	785
#46	/admin.php	782
#47	/wordpress/wp-includes/wlwmanifest.xml	777
#48	/web/rest/v1/login/sessions	773
#49	/wp/wp-includes/wlwmanifest.xml	769
#50	/tytyd.php	749
#51	/blog/wp-includes/wlwmanifest.xml	743
#52	/2019/wp-includes/wlwmanifest.xml	736
#53	/shop/wp-includes/wlwmanifest.xml	731
#54	/api/v2/categories/65	730
#55	/.well-known/passkey-endpoints	725
#56	/contrato/wap/crons/enviar-email.php	721
#57	/backend/.env	718
#58	/abcd.php	695
#59	/404	693
#60	/old	689
#61	/api/v2/customers/login	671
#62	/admin/.env	671
#63	/api	662
#64	/api/authentication/login	661
#65	/en/autodiscover/autodiscover.xml	658
#66	/graphql	656
#67	/test.php	656
#68	/test	656
#69	/kids.html	654
#70	/app_dev.php/_profiler/phpinfo	650
#71	/website/wp-includes/wlwmanifest.xml	647
#72	/news/wp-includes/wlwmanifest.xml	646
#73	/main	638
#74	/.well-known/acme-challenge/about.php	633
#75	/new	593
#76	/default/en_US/status.html	583
#77	/shop	578
#78	/feed	576
#79	/simular	572
#80	/alfa.php	568
#81	/akcc.php	560
#82	/api/graphql	558
#83	/flower.php	524
#84	/install.php	510
#85	/atomlib.php	509
#86	/api/gql	508
#87	/bless.php	508
#88	/.well-known/acme-challenge/mariju.php	506
#89	/_session	505
#90	/Users/authenticatebyname	505
#91	/wp-admin	502
#92	/api/v1/677e09724f0e2df9b6c000b75b5da10d/conectala/freight	498
#93	/wp-cli.php	498
#94	/css.php	495
#95	/phpinfo	490
#96	/graphql/api	489
#97	/wp-content/plugins/hellopress/wp_filemanager.php	481
#98	/api/v2/brands/4718	480
#99	/v2/_catalog	477
#100	/home	476
#101	/goods.php	475
#102	/wp-plain.php	462
#103	/wp-cli.phar	457
#104	/classwithtostring.php	450
#105	/debug/default/view	449
#106	/wp.php	449
#107	/gifclass.php	447
#108	/2018/wp-includes/wlwmanifest.xml	446
#109	/cong.php	445
#110	/filter	441
#111	/api/v2/products/386	433
#112	/bolt.php	419
#113	/moon.php	417
#114	/phpinfo.php	414
#115	/saude-ocupacional/doencas-que-dao-atestado-de-7-dias	409
#116	http:/aws.oast.online/latest/meta-data	408
#117	http:/alibaba.oast.pro/2016-01-01/dynamic/instance-identity/document	408
#118	http:/100.100.100.200/2016-01-01/dynamic/instance-identity/document	404
#119	http:/100.100.100.200/latest/dynamic/instance-identity/document	404
#120	http:/alibaba.oast.pro/latest/dynamic/instance-identity/document	404
#121	http:/169.254.169.254/latest/meta-data	403
#122	http:/169.254.169.254/metadata/v1.json	403
#123	http:/2852039166/latest/meta-data	402
#124	/wp-content/plugins/fix/up.php	401
#125	http:/169.254.169.254.nip.io/latest/meta-data	401
#126	/api/v2/freights/316	399
#127	http:/169.254.169.254/computeMetadata/v1/project	399
#128	/telescope/requests	393
#129	/aa.php	393
#130	/autoload_classmap.php	392
#131	http:/169.254.169.254/metadata/instance	391
#132	http:/aws.oast.online/computeMetadata/v1/project	390
#133	http:/aws.oast.online/metadata/v1.json	389
#134	/admin	388
#135	http:/169.254.169.254/openstack/latest	388
#136	http:/aws.oast.online/metadata/instance	387
#137	http:/aws.oast.online/opc/v1/instance	386
#138	http:/169.254.169.254/v1/metadata/private-networks	386
#139	/i.php	385
#140	http:/aws.oast.online/v1/metadata/private-networks	384
#141	http:/aws.oast.online/openstack/latest	383
#142	/server-status	381
#143	/lock360.php	381
#144	http:/169.254.169.254/opc/v1/instance	381
#145	/buy.php	378
#146	/zwso.php	377
#147	/api/v2/products/531	375
#148	/login.php	375
#149	/style.php	373
#150	/makeasmtp.php	368
#151	/lv.php	365
#152	/api/v2/marketplace/sellers/566/products/queue	362
#153	/gmo.php	362
#154	/api/v2/marketplace/sellers/425/products/queue	361
#155	/api/v2/marketplace/sellers/537/products/queue	361
#156	/api/v2/marketplace/sellers/376/products/batch	361
#157	/null	360
#158	/api/v2/marketplace/sellers/615/products/queue	360
#159	/api/v2/marketplace/sellers/655/products/queue	360
#160	/api/v2/marketplace/sellers/376/products/queue	360
#161	/api/v2/marketplace/sellers/534/products/queue	359
#162	/server	358
#163	/_profiler/phpinfo	358
#164	/console	355
#165	/wp-json/intercom/v1/webhook	354
#166	/akc.php	354
#167	/actuator/env	353
#168	/api/v2/batch/1111	352
#169	/api/v2/batch/1110	351
#170	/administrator	349
#171	/inputs.php	346
#172	/wp-admin/css	345
#173	/.well-known/acme-challenge/index.php	345
#174	/api/v2/products/248	345
#175	/console/j_security_check	345
#176	/simular-credito-trabalhador	343
#177	/webjars/swagger-ui/index.html	334
#178	/swagger/index.html	334
#179	/swagger-ui.html	334
#180	/miscadmin	330
#181	/busca	329
#182	/file2.php	329
#183	/swagger/swagger-ui.html	324
#184	/pagamento/mercadopago/ipn.php	321
#185	/login.action	321
#186	/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application	319
#187	/appWP/lab/wp-admin/css/colors/blue/blue.php	318
#188	/a.php	318
#189	/wp-content/style.php	317
#190	/_all_dbs	317
#191	/2020/wp-includes/wlwmanifest.xml	317
#192	/wp-content/themes/style.php	316
#193	/@vite/env	315
#194	/manager.php	309
#195	/mah.php	307
#196	/fm.php	306
#197	/php.php	305
#198	/about	304
#199	/wp-admin/style.php	301
#200	/class-t.api.php	299
#201	/wpc.php	298
#202	/inter/ajax.php	295
#203	/wp-content/themes/seotheme/db.php	294
#204	/404testpage4525d2fdc	291
#205	/api/v2/categories/64	291
#206	/api/tokens	291
#207	/wp-editor.php	290
#208	/author-sitemap.xml	289
#209	/blurbs.php	286
#210	/files.php	285
#211	/ioxi-o.php	284
#212	/shop-2/page/15	284
#213	/mail.php	279
#214	/wp1/wp-includes/wlwmanifest.xml	279
#215	/wp-content/plugins/hellopress/wp_mna.php	278
#216	/zoo.php	275
#217	/install	273
#218	/shlo.php	272
#219	/simple.php	272
#220	/v2/api-docs	270
#221	/default.php	269
#222	/loja/login_layout.php	268
#223	/loja/busca.php	268
#224	/login/index.php	264
#225	/wp-json/bbp-api/v1/users	263
#226	/vu.php	263
#227	/dropdown.php	260
#228	/HNAP1	260
#229	/en/AutoDiscover/autodiscover.xml	260
#230	/uploads	257
#231	/403.php	256
#232	/w.php	256
#233	/FPURL.xml	256
#234	/v3/api-docs	255
#235	/s/1313e2236313e20373e2538313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties	255
#236	/portal/.env	254
#237	/themes.php	249
#238	/wp-json/buddypress/v1/members	249
#239	/404.php	248
#240	/system_log.php	248
#241	/ahax.php	246
#242	/we.php	246
#243	/admin/index.php	243
#244	/.env.local	243
#245	/4ec82611	241
#246	/0x.php	240
#247	/asasx.php	240
#248	/config/aws.yml	239
#249	/as.php	238
#250	/wp-admin/index.php	237
#251	/SistemaEAD_CPREM/login/index.php	236
#252	/login.cgi	229
#253	/pesca/login/index.php	225
#254	/aab8	224
#255	/wp-json/ldlms/v2/users	224
#256	/lowpr.php	222
#257	/aaa9	222
#258	/edit.php	221
#259	/build.php	219
#260	/NewFile.php	218
#261	/api/v2/customers/null	218
#262	/ee.php	218
#263	/api/v2/batch/1145	217
#264	/api/v2/batch/1146	217
#265	/radio.php	217
#266	/kylin/api/user/authentication	217
#267	/info	213
#268	/file4.php	212
#269	/my-account	211
#270	/public/.env	211
#271	/tinyfilemanager.php	211
#272	/222.php	210
#273	/0.php	210
#274	/tplus/ajaxpro/RecoverPassword,App_Web_recoverpassword.aspx.cdcab7d2.ashx	210
#275	/test/wp-includes/wlwmanifest.xml	209
#276	/phpversion.php	209
#277	/libs/granite/core/content/login.html/j_security_check	208
#278	/wp-content/plugins/one_images_user/one_images_user.php	207
#279	/sites/web_vhost_domain_list.php	205
#280	/wp-content/plugins/one_images_usder/oned_images_user.php	204
#281	/dex.php	203
#282	/evox/about	201
#283	/doc.php	200
#284	/a2.php	200
#285	/oauth/token	200
#286	/sdk	199
#287	/.git/credentials	199
#288	/api/v1/ranking	198
#289	/post.php	198
#290	/site/wp-includes/wlwmanifest.xml	198
#291	/cms/wp-includes/wlwmanifest.xml	197
#292	/undefined	196
#293	/123.php	196
#294	/central-de-atendimento/trocadevolucao	196
#295	/getcfg.php	193
#296	/.aws/credentials	192
#297	/nc4.php	192
#298	/user/login	191
#299	/Form	191
#300	/cp/.env	191
#301	/ads/.env	189
#302	/staticfiles/.env	188
#303	/psnlink/.env	187
#304	/App/.env	187
#305	/Api/.env	187
#306	/opt/.env	187
#307	/images	186
#308	/stag/.env	186
#309	/theme/.env	186
#310	/div/.env	186
#311	/error/.env	186
#312	/ftpmaster/.env	186
#313	/public_html/.env	185
#314	/old.env	185
#315	/well-known/.env	185
#316	/environments/local/.env	184
#317	/gfile.php	183
#318	/sitemap_index.xml	183
#319	/.env.production	183
#320	/wp-2019.php	183
#321	/.env.bak	183
#322	/.env-sample	183
#323	/.env_bak	183
#324	/inc/.env	183
#325	/styles/.env	183
#326	/scripts/.env	183
#327	/environments/production/.env	183
#328	/133.php	182
#329	/fastlane/.env	182
#330	/2.php	181
#331	/api/v2/batch/162620	181
#332	/api/v2/batch/162569	181
#333	/api/v2/batch/162561	181
#334	/api/v2/batch/162547	181
#335	/api/v2/batch/162546	181
#336	/api/v2/marketplace/sellers/566/orders/queue	181
#337	/api/v2/batch/162545	181
#338	/api/v2/batch/162531	181
#339	/api/v2/batch/162529	181
#340	/api/v2/batch/162525	181
#341	/api/v2/batch/162453	181
#342	/api/v2/marketplace/sellers/537/orders/queue	181
#343	/api/v2/marketplace/sellers/615/orders/queue	181
#344	/api/v2/batch/162432	181
#345	/api/v2/batch/162431	181
#346	/api/v2/batch/162208	181
#347	/api/v2/batch/162131	181
#348	/api/v2/batch/162130	181
#349	/api/v2/batch/162115	181
#350	/api/v2/batch/162113	181
#351	/api/v2/batch/162009	181
#352	/api/v2/batch/162008	181
#353	/api/v2/batch/162007	181
#354	/api/v2/batch/162003	181
#355	/api/v2/batch/162001	181
#356	/api/v2/batch/162000	181
#357	/api/v2/batch/161997	181
#358	/api/v2/batch/161990	181
#359	/api/v2/batch/161989	181
#360	/api/v2/batch/161988	181
#361	/api/v2/batch/161981	181
#362	/api/v2/batch/158339	181
#363	/api/v2/batch/158226	181
#364	/api/v2/batch/468701	181
#365	/api/v2/batch/157927	181
#366	/wp-cron	181
#367	/api/v2/batch/461108	181
#368	/api/v2/batch/3315	181
#369	/api/v2/batch/461107	181
#370	/api/v2/batch/467781	181
#371	/api/v2/batch/310229	181
#372	/api/v2/batch/461100	181
#373	/api/v2/batch/467777	181
#374	/api/v2/batch/464781	181
#375	/api/v2/batch/461096	181
#376	/api/v2/marketplace/sellers/534/orders/queue	181
#377	/api/v2/products/1659370997	181
#378	/index.html	181
#379	/aku.php	180
#380	/index/function.php	180
#381	/api/v2/batch/162570	180
#382	/api/v2/batch/162560	180
#383	/api/v2/batch/162530	180
#384	/api/v2/batch/162524	180
#385	/api/v2/batch/162452	180
#386	/api/v2/batch/162451	180
#387	/api/v2/batch/162129	180
#388	/api/v2/batch/161999	180
#389	/api/v2/batch/161998	180
#390	/api/v2/batch/161980	180
#391	/api/v2/batch/161979	180
#392	/api/v2/batch/161971	180
#393	/api/v2/batch/161969	180
#394	/api/v2/batch/161877	180
#395	/api/v2/batch/161876	180
#396	/api/v2/batch/161865	180
#397	/api/v2/batch/161864	180
#398	/api/v2/batch/161863	180
#399	/api/v2/batch/161859	180
#400	/api/v2/batch/161857	180
#401	/api/v2/batch/161762	180
#402	/api/v2/batch/161761	180
#403	/api/v2/batch/161760	180
#404	/api/v2/batch/161563	180
#405	/api/v2/batch/161562	180
#406	/api/v2/batch/161551	180
#407	/api/v2/batch/161396	180
#408	/api/v2/batch/160897	180
#409	/api/v2/batch/160672	180
#410	/api/v2/batch/160670	180
#411	/api/v2/batch/160590	180
#412	/api/v2/batch/160589	180
#413	/api/v2/batch/160367	180
#414	/api/v2/batch/160365	180
#415	/api/v2/batch/160247	180
#416	/api/v2/batch/160246	180
#417	/api/v2/batch/160232	180
#418	/api/v2/batch/160231	180
#419	/api/v2/batch/160225	180
#420	/api/v2/batch/160224	180
#421	/api/v2/batch/159980	180
#422	/api/v2/batch/159979	180
#423	/api/v2/batch/159899	180
#424	/api/v2/batch/159853	180
#425	/api/v2/batch/159851	180
#426	/api/v2/batch/159833	180
#427	/api/v2/batch/159624	180
#428	/api/v2/batch/159488	180
#429	/api/v2/batch/159479	180
#430	/api/v2/batch/159472	180
#431	/api/v2/batch/159471	180
#432	/api/v2/batch/159463	180
#433	/api/v2/batch/159453	180
#434	/api/v2/batch/159452	180
#435	/api/v2/batch/159445	180
#436	/api/v2/batch/159434	180
#437	/api/v2/batch/159424	180
#438	/api/v2/batch/159250	180
#439	/api/v2/batch/159248	180
#440	/api/v2/batch/159142	180
#441	/api/v2/batch/159141	180
#442	/api/v2/batch/159137	180
#443	/api/v2/batch/159135	180
#444	/api/v2/batch/159124	180
#445	/api/v2/batch/159123	180
#446	/api/v2/batch/159118	180
#447	/api/v2/batch/430891	180
#448	/api/v2/batch/158823	180
#449	/api/v2/batch/158821	180
#450	/api/v2/batch/158816	180
#451	/api/v2/batch/470200	180
#452	/api/v2/batch/158815	180
#453	/api/v2/batch/158678	180
#454	/api/v2/batch/430880	180
#455	/api/v2/batch/470014	180
#456	/api/v2/batch/470003	180
#457	/api/v2/batch/468848	180
#458	/api/v2/batch/430878	180
#459	/api/v2/batch/430877	180
#460	/api/v2/batch/430876	180
#461	/api/v2/batch/158591	180
#462	/api/v2/batch/430875	180
#463	/api/v2/batch/158354	180
#464	/api/v2/batch/158353	180
#465	/api/v2/batch/158352	180
#466	/api/v2/batch/158341	180
#467	/api/v2/batch/468806	180
#468	/api/v2/batch/468784	180
#469	/api/v2/batch/430868	180
#470	/api/v2/batch/468709	180
#471	/api/v2/batch/468705	180
#472	/api/v2/batch/157937	180
#473	/api/v2/batch/468692	180
#474	/api/v2/batch/157910	180
#475	/api/v2/batch/468687	180
#476	/api/v2/batch/468677	180
#477	/api/v2/batch/468474	180
#478	/api/v2/batch/157894	180
#479	/api/v2/batch/468361	180
#480	/api/v2/batch/468357	180
#481	/api/v2/batch/1398	180
#482	/api/v2/batch/1149	180
#483	/api/v2/batch/1148	180
#484	/api/v2/batch/1119	180
#485	/api/v2/batch/1114	180
#486	/api/v2/batch/1113	180
#487	/api/v2/batch/1109	180
#488	/api/v2/batch/1112	180
#489	/api/v2/batch/461112	180
#490	/api/v2/batch/467782	180
#491	/api/v2/batch/310233	180
#492	/api/v2/batch/162523	180
#493	/api/v2/batch/162002	180
#494	/register	180
#495	/bak.php	179
#496	/api/v2/batch/162619	179
#497	/api/v2/batch/162571	179
#498	/api/v2/batch/162562	179
#499	/api/v2/batch/161970	179
#500	/api/v2/batch/161875	179

Data was last updated on: Oct 28, 2025

Logging Research

We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.

Trunc Logging

Logging for fun and a good night of sleep.

Real time search
Google simple
Cheap
Just works
PCI compliance

Trunc Research

Latest log-based threat analysis added.

2025-09-03WordPress - Last scanned URLs
2025-08-22Web logs 404 analysis - past 72 hours
2025-08-21WordPress most scanned URLs - all time
2025-08-21Web logs 404 analysis - all time

Contact us!

Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org

Tired of price gouging

Clear pricing
No need to guess
Real people
Real logging

Web logs 404 analysis - past 72 hours

Logging Research

Trunc Logging

Trunc Research

Contact us!

Tired of price gouging

Simple, Affordable, Log Management and Analysis.

PRODUCTS

USEFUL LINKS

CONTACT US