WordPress - Last scanned URLs
Dec 15, 2025 Checking for 404 errors in your logs can reveal more than just broken links, it can also expose files and URLs that attackers are actively scanning for. To track this behavior, we set up hundreds of honeypots and analyzed live web traffic data, giving us insight into which files and URLs are being targeted across the internet.
The table bellow list the top URLs being scanned on WordPress sites in the past 72 hours. This list of updated daily and shows the top plugins, backdoors and files that attacker are lookin for specifically to WordPress.
| Rank | Scanned URL | Counter |
|---|---|---|
| #1 | /wp-login.php | 16,123 |
| #2 | /wp-content/plugins/simple-ajax-chat/includes/sac-check-user.php | 3,616 |
| #3 | /wp-content/video | 2,466 |
| #4 | /wp-json/oembed/1.0/embed | 2,434 |
| #5 | /wp-good.php | 2,104 |
| #6 | /wp-blog.php | 1,865 |
| #7 | /wp-content/plugins/admin.php | 1,815 |
| #8 | /wp-content/autoload_classmap.php | 1,801 |
| #9 | /wp-admin/js/autoload_classmap.php | 1,747 |
| #10 | /wp-content/themes/about.php | 1,670 |
| #11 | /wp-content/admin.php | 1,667 |
| #12 | /wp-content/admin-header.php | 1,605 |
| #13 | /wp-admin/classwithtostring.php | 1,522 |
| #14 | /wp-content/themes/admin.php | 1,483 |
| #15 | /wp-admin/css/about.php | 1,454 |
| #16 | /wp-admin/includes/colour.php | 1,385 |
| #17 | /wp-conflg/function.php | 1,361 |
| #18 | /wp-content/backups-dup-lite | 1,338 |
| #19 | /wp-cron.php | 1,302 |
| #20 | /wp.php | 1,199 |
| #21 | /wp-content/plugins/pwnd/pwnd.php | 1,175 |
| #22 | /wp-admin | 1,168 |
| #23 | /wp-content/plugins/pwnd/as.php | 1,043 |
| #24 | /wp-json/commerce/paypal/payments/payment-token | 997 |
| #25 | /wp-content/languages/index.php | 991 |
| #26 | /wp-json/commerce/paypal/payments/start-trial | 979 |
| #27 | /wp-json/commerce/paypal/payments/order | 974 |
| #28 | /wp-json/commerce/paypal/payments/confirm | 931 |
| #29 | /wp-admin/wp-admins.php | 919 |
| #30 | /wp-admin/css/colors/blue/atomlib.php | 897 |
| #31 | /wp-admin/index.php | 879 |
| #32 | /wp-user.php | 855 |
| #33 | /wp-admin/css | 854 |
| #34 | /wp-signin.php | 853 |
| #35 | /wp-content/index.php | 762 |
| #36 | /wp-json/commerce/paypal/payments/cancel | 758 |
| #37 | /wp-admin/images/index.php | 719 |
| #38 | /wp-content/languages | 718 |
| #39 | /wp-includes/wlwmanifest.xml | 714 |
| #40 | /wp-admin/js | 688 |
| #41 | /wp-admin/includes/index.php | 652 |
| #42 | /wp-admin/js/widgets | 640 |
| #43 | /wp-content/uploads | 636 |
| #44 | /wp-content/upgrade/index.php | 624 |
| #45 | /wp-admin/css/colors/blue | 615 |
| #46 | /web/wp-includes/wlwmanifest.xml | 602 |
| #47 | /wordpress/wp-includes/wlwmanifest.xml | 600 |
| #48 | /wp/wp-includes/wlwmanifest.xml | 598 |
| #49 | /wp-includes/IXR | 595 |
| #50 | /wp-content/uploads/2025 | 591 |
| #51 | /2019/wp-includes/wlwmanifest.xml | 575 |
| #52 | /shop/wp-includes/wlwmanifest.xml | 568 |
| #53 | /blog/wp-includes/wlwmanifest.xml | 565 |
| #54 | /wp-admin/network/admin.php | 554 |
| #55 | /website/wp-includes/wlwmanifest.xml | 540 |
| #56 | /wp-content/style.php | 535 |
| #57 | /wp-includes/block-bindings | 534 |
| #58 | /news/wp-includes/wlwmanifest.xml | 532 |
| #59 | /wp-content/themes/twentytwentytwo/index.php | 531 |
| #60 | /wp-editor.php | 525 |
| #61 | /wp-plain.php | 489 |
| #62 | /wp-includes/customize/chosen.php | 487 |
| #63 | /wp-includes/sitemaps/autoload_classmap.php | 478 |
| #64 | /wp-admin/js/index.php | 474 |
| #65 | /public/wp-content/index.php | 459 |
| #66 | /wp-includes/rest-api/fields | 447 |
| #67 | /public/wp-content | 445 |
| #68 | /wp-includes/images | 442 |
| #69 | /wp-content/themes | 439 |
| #70 | /wp-includes/ID3 | 424 |
| #71 | /2018/wp-includes/wlwmanifest.xml | 424 |
| #72 | /wp-includes/js/dist/development | 422 |
| #73 | /wp-content/plugins/fix/up.php | 415 |
| #74 | /wp-content/plugins/hellopress/wp_filemanager.php | 407 |
| #75 | /wp-includes/Text | 405 |
| #76 | /wp-includes/Text/Diff/Engine | 400 |
| #77 | /wp-admin/css/colors/ocean/about.php | 396 |
| #78 | /wp-content/classwithtostring.php | 392 |
| #79 | /wp-content/plugins/cartflows/assets/fonts | 389 |
| #80 | /wp-content/edit.php | 384 |
| #81 | /wp-includes/js/dist | 378 |
| #82 | /wp-content/themes/twentytwentyfour/system_cache.php | 378 |
| #83 | /wp-content/themes/pridmag/install.php | 375 |
| #84 | /wp-content/themes/tflow/as.php | 374 |
| #85 | /.well-known/acme-challenge/wp-login.php | 369 |
| #86 | /wp-includes/assets/autoload_classmap.php | 363 |
| #87 | /wordpress | 362 |
| #88 | /wp-includes/style-engine/autoload_classmap.php | 358 |
| #89 | /wp-includes/theme-compat | 357 |
| #90 | /wp-includes/style-engine/wp-conflg.php | 356 |
| #91 | /wp-includes/index.php | 355 |
| #92 | /wp-includes/block-supports | 354 |
| #93 | /wp-includes/SimplePie/autoload_classmap.php | 352 |
| #94 | /wp-includes/css/autoload_classmap.php | 348 |
| #95 | /wp | 342 |
| #96 | /wp-links-opml.php | 330 |
| #97 | /wp-content/themes/twentytwentytwo | 327 |
| #98 | /wp-includes/ID3/simi.php | 318 |
| #99 | /wp-includes/js/jquery/jquery.php | 309 |
| #100 | /wp-includes/SimplePie/index.php | 305 |
| #101 | /wp-includes/js/crop | 304 |
| #102 | /wp-includes/PHPMailer/index.php | 304 |
| #103 | /wp-json/commerce/paypal/payments/cards | 299 |
| #104 | /wp1/wp-includes/wlwmanifest.xml | 295 |
| #105 | /wp-admin/autoload_classmap.php | 293 |
| #106 | /wp-includes/Text/autoload_classmap.php | 291 |
| #107 | /wp-includes/html-api/index.php | 289 |
| #108 | /wp-includes/pomo/index.php | 287 |
| #109 | /wp-content/uploads/env.php | 280 |
| #110 | /wp-content/themes/seotheme/db.php | 266 |
| #111 | /wp-content/txets.php | 265 |
| #112 | /wp-includes/bk/index.php | 263 |
| #113 | /wp-content/uploads/index.php | 260 |
| #114 | /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts | 260 |
| #115 | /wp-includes/blocks/code | 257 |
| #116 | /appWP/lab/wp-admin/css/colors/blue/blue.php | 251 |
| #117 | /wp-includes/certificates | 250 |
| #118 | /test/wp-includes/wlwmanifest.xml | 249 |
| #119 | /wp-admin/txets.php | 247 |
| #120 | /wp-includes/rest-api | 227 |
| #121 | /docs/wp-login.php | 224 |
| #122 | /wp-includes/Text/Diff/Renderer/index.php | 223 |
| #123 | /cms/wp-includes/wlwmanifest.xml | 218 |
| #124 | /site/wp-includes/wlwmanifest.xml | 218 |
| #125 | /wp-admin/includes/themes.php | 210 |
| #126 | /wp-includes/js/codemirror/index.php | 209 |
| #127 | /wp-content/themes/twentytwentythree/patterns/index.php | 208 |
| #128 | /wp-includes/Requests/index.php | 207 |
| #129 | /wp-admin/includes | 190 |
| #130 | /wp-admin/network/index.php | 182 |
| #131 | /wp2/wp-includes/wlwmanifest.xml | 179 |
| #132 | /wp-admin/images | 173 |
| #133 | /sito/wp-includes/wlwmanifest.xml | 170 |
| #134 | /wp-includes/rest-api/index.php | 169 |
| #135 | /wp-json/buddypress/v1/members | 169 |
| #136 | /wp-includes/pomo | 168 |
| #137 | /wp-json/commerce/paypal/payments/capture | 168 |
| #138 | /wp-includes/sitemaps/providers/index.php | 166 |
| #139 | /wp-json/commerce/paypal/payments/setup-token | 166 |
| #140 | /wp-content/themes/style.php | 165 |
| #141 | /wp-json/bbp-api/v1/users | 164 |
| #142 | /wp-includes/random_compat/index.php | 161 |
| #143 | /wp-includes/Requests/about.php | 161 |
| #144 | /wp-includes/random_compat | 158 |
| #145 | /wp-json/ldlms/v2/users | 155 |
| #146 | /wp-content/plugins/hellopress/wp_mna.php | 152 |
| #147 | /2020/wp-includes/wlwmanifest.xml | 149 |
| #148 | /wp-content/postnews.php | 149 |
| #149 | /wp-includes | 148 |
| #150 | /wp-conflg.php | 147 |
| #151 | /wp-admin/maint/maint/ajax-actions.php | 147 |
| #152 | /wp-admin/ajax-actions.php | 147 |
| #153 | /wp-includes/ID3/about.php | 142 |
| #154 | /wp-admin/style.php | 141 |
| #155 | /wp-content/upgrade | 139 |
| #156 | /wp-includes/fonts/index.php | 138 |
| #157 | /wp-configs.php | 138 |
| #158 | /wp-json/wc/v3/customers | 136 |
| #159 | /wp-content/wso112233.php | 135 |
| #160 | /wp-content/plugins/wso112233.php | 135 |
| #161 | /wp-admin/postnews.php | 134 |
| #162 | /wp-includes/html-api | 132 |
| #163 | /wp-includes/assets/index.php | 131 |
| #164 | /wp-content/themes/wso112233.php | 130 |
| #165 | /wp-admin/wso112233.php | 130 |
| #166 | /wp-content/plugins/shell20211028.php | 128 |
| #167 | /blog/wp-content/themes/.env | 127 |
| #168 | /wp-includes/widgets/autoload_classmap.php | 127 |
| #169 | /wp-includes/PHPMailer | 126 |
| #170 | /wp-content/plugins/about.php | 125 |
| #171 | /wp-includes/fonts/autoload_classmap.php | 124 |
| #172 | /wp-content | 124 |
| #173 | /wp-content/plugins | 122 |
| #174 | /wp-includes/style-engine/index.php | 122 |
| #175 | /wordpress/wp-login.php | 122 |
| #176 | /wp-content/backup-db | 120 |
| #177 | /wp-content/plugins/.env | 120 |
| #178 | /wp-admin/wp-conflg.php | 119 |
| #179 | /wp-content/plugins/simple-ajax-chat/simple-ajax-chat-core.php | 119 |
| #180 | /wp-includes/SimplePie/chosen.php | 118 |
| #181 | /wp-content/cache/supercache | 118 |
| #182 | /wp-content/w3tc | 118 |
| #183 | /wp-includes/js/dist/development/index.php | 117 |
| #184 | /wp-content/et-cache | 117 |
| #185 | /wp-json/hr/v1/viewers | 117 |
| #186 | /wp-includes/assets/about.php | 117 |
| #187 | /wp-includes/images/wlw | 116 |
| #188 | /wp-includes/sitemaps/providers | 114 |
| #189 | /wp-content/updraft | 113 |
| #190 | /wp-includes/Requests/Auth | 113 |
| #191 | /wp-admin/js/about.php | 113 |
| #192 | /wp-includes/Text/Diff/Renderer | 113 |
| #193 | /wp-admin/meta | 113 |
| #194 | /wp-content/themes/twentytwentythree/patterns | 111 |
| #195 | /wp-admin/edit.php | 110 |
| #196 | /wp-admin/zwso.php | 110 |
| #197 | /wp-content/plugins/WordPressCore/include.php | 110 |
| #198 | /wp-includes/fonts | 109 |
| #199 | /wp-content/wflogs | 108 |
| #200 | /wp-content/ai1wm-backups | 106 |
| #201 | /wp-includes/SimplePie/Content | 105 |
| #202 | /wp-includes/assets | 105 |
| #203 | /wp-content/plugins/apikey/apikey.php | 102 |
| #204 | /wp-includes/SimplePie | 101 |
| #205 | /wp-includes/css | 100 |
| #206 | /wp-includes/Requests | 100 |
| #207 | /wp-includes/customize/index.php | 100 |
| #208 | /wp-includes/Text/Diff/index.php | 100 |
| #209 | /wp-includes/js/codemirror | 100 |
| #210 | /wp-content/themes/include.php | 100 |
| #211 | /wp-content/cache | 99 |
| #212 | /wp-admin/js/wp-login.php | 99 |
| #213 | /wp-includes/bk | 98 |
| #214 | /wp-content/plugins/include.php | 98 |
| #215 | /wp-content/backups/.env | 98 |
| #216 | /wp-content/plugins/WordPressCore-1/include.php | 97 |
| #217 | /blog/wp-login.php | 97 |
| #218 | /wordpress/wp-admin/setup-config.php | 97 |
| #219 | /wp-admin/js/wp-conflg.php | 96 |
| #220 | /wp-includes/customize | 94 |
| #221 | /wp-includes/block-patterns | 94 |
| #222 | /wp-includes/sitemaps | 94 |
| #223 | /wp-includes/js | 94 |
| #224 | /wp-content/plugins/pwnd-1/pwnd.php | 94 |
| #225 | /wp-includes/rest-api/search | 93 |
| #226 | /wp-includes/images/media | 92 |
| #227 | /wp-2019.php | 91 |
| #228 | /wp-admin/admin-ajax.php | 91 |
| #229 | /wp-includes/Text/Diff | 90 |
| #230 | /media/wp-includes/wlwmanifest.xml | 90 |
| #231 | /wp-includes/sodium_compat | 89 |
| #232 | /wp-includes/php-compat | 89 |
| #233 | /wp-includes/images/smilies | 89 |
| #234 | /wp-includes/images/crystal | 89 |
| #235 | /wp-content/plugins/apikey/apikey.php.suspected | 89 |
| #236 | /wp-includes/images/smilies/about.php | 88 |
| #237 | /wp-includes/rest-api/endpoints | 87 |
| #238 | /wp-admin/profile.php | 87 |
| #239 | /wp-includes/customize/sx.php | 87 |
| #240 | /wp-includes/rest-api/search/index.php | 86 |
| #241 | /wp-admin/plugins.php | 86 |
| #242 | /wp-includes/sodium_compat/src | 85 |
| #243 | /wp-json | 85 |
| #244 | /wp-includes/IXR/index.php | 84 |
| #245 | /wp-update.php | 84 |
| #246 | /wp-content/plugins/HelloDollyV2-1/hello_dolly_v2.php | 83 |
| #247 | /wp-content/plugins/HelloDollyV2/hello_dolly_v2.php | 83 |
| #248 | /wp-themes.php | 83 |
| #249 | /wp-content/plugins/hello_dolly_v2.php | 82 |
| #250 | /wp-content/themes/hello_dolly_v2.php | 82 |
| #251 | /wp-includes/sitemaps/wp-conflg.php | 82 |
| #252 | /wp-includes/images/smilies/admin.php | 82 |
| #253 | /wp-admin/maint | 82 |
| #254 | /wp-includes/images/index.php | 81 |
| #255 | /wp-admin/css/index.php | 81 |
| #256 | /wp-includes/fonts/admin.php | 81 |
| #257 | /wp-includes/block-bindings/index.php | 80 |
| #258 | /wp-includes/block-bindings/radio.php | 80 |
| #259 | /wp/wp-login.php | 80 |
| #260 | /wp-includes/customize/class-wp-customize-media-icon-control.php | 79 |
| #261 | /wp-includes/Text/xwx1.php | 79 |
| #262 | /wp-admin/css/colors | 79 |
| #263 | /wp-json/intercom/v1/webhook | 79 |
| #264 | /wp-admin/dropdown.php | 78 |
| #265 | /wp-includes/class-wp-locale-switcher-less.php | 77 |
| #266 | /wp-admin/maint/about.php | 77 |
| #267 | /wp-content/plugins/HelloDollyV2_ncvt/hello_dolly_v2.php | 76 |
| #268 | /wp-content/themes/travel/issue.php | 75 |
| #269 | /wp-includes/wp-db-array.php | 75 |
| #270 | /wp-includes/style-engine | 74 |
| #271 | /cms/wp-login.php | 74 |
| #272 | /wp-content/shell20211028.php | 73 |
| #273 | /wp-includes/style-engine/about.php | 73 |
| #274 | /wp-content/plugins/HelloDollyV2_tuga/hello_dolly_v2.php | 73 |
| #275 | /wp-content/1.php | 73 |
| #276 | /wp-json/wp/v2/users/10249 | 72 |
| #277 | /wp-content/plugins/WordPressCore_lvig/include.php | 72 |
| #278 | /wp-json/wp/v2/users | 72 |
| #279 | /wp-json/wp/v2/users/10246 | 71 |
| #280 | /wp-json/wp/v2/users/10245 | 71 |
| #281 | /wp-json/wp/v2/users/10244 | 71 |
| #282 | /wp-json/wp/v2/users/10386 | 70 |
| #283 | /wp-info.php | 69 |
| #284 | /wp-content/plugins/pwnd-2/pwnd.php | 69 |
| #285 | /wp-admin/css/colors/ectoplasm | 69 |
| #286 | /wp-content/themes/classic/inc | 69 |
| #287 | /wp-content/mu-plugins-old | 68 |
| #288 | /wp-content/mu-plugins | 67 |
| #289 | /wp-content/plugins/ninja-forms | 67 |
| #290 | /wp-admin/user/about.php | 66 |
| #291 | /wp-includes/Requests/Exception | 65 |
| #292 | /wp-includes/Text/Diff/Engine/Engine | 65 |
| #293 | /wp-trackback.php | 65 |
| #294 | /wp-includes/Requests/Utility | 64 |
| #295 | /wp-includes/Requests/Transport | 64 |
| #296 | /wp-includes/Requests/Response | 64 |
| #297 | /wp-includes/Requests/Proxy | 64 |
| #298 | /wp-includes/widgets | 63 |
| #299 | /wp-login | 63 |
| #300 | /wp-includes/Text/index.php | 62 |
| #301 | /wp-includes/Requests/Exception/HTTP | 62 |
| #302 | /wp-includes/Requests/Cookie | 62 |
| #303 | /wp-content/themes/seotheme/mar.php | 61 |
| #304 | /wp-includes/css/index.php | 61 |
| #305 | /wp-includes/blocks/calendar/index.php | 61 |
| #306 | /wp-includes/SimplePie/Content/Type | 61 |
| #307 | /wp-includes/SimplePie/Cache | 61 |
| #308 | /wp-includes/ID3/about.php/wp-content/x/index.php | 59 |
| #309 | /wpssl.php | 59 |
| #310 | /wp-admin/network | 58 |
| #311 | /wp-includes/js/index.php | 58 |
| #312 | /wp-content/plugins/Cache/Cache.php | 57 |
| #313 | /wp-content/wp-conflg.php | 57 |
| #314 | /wp-includes/style.php | 57 |
| #315 | /wp-includes/rest-api/endpoints/index.php | 57 |
| #316 | /wp-cron | 57 |
| #317 | /wp-mail.php | 56 |
| #318 | /wp-content/plugins/index.php | 56 |
| #319 | /wp-includes/Requests/Text/admin.php | 56 |
| #320 | /wp-content/uploads/2023 | 56 |
| #321 | /wp-admin/css/colors/midnight/about.php | 56 |
| #322 | /wp-admin/js/widgets/index.php | 55 |
| #323 | /wp-content/themes/wp-pridmag/init.php | 55 |
| #324 | /wp-content/plugins/dummyyummy/wp-signup.php | 54 |
| #325 | /wp-content/plugins/HelloDollyV2 | 54 |
| #326 | /wp-content/about.php | 54 |
| #327 | /wp-content/uploads/wp-conflg.php | 54 |
| #328 | /wp-content/uploads/2024 | 54 |
| #329 | /wp-content/themes/themes.php | 53 |
| #330 | /wp-includes/blocks | 53 |
| #331 | /wp-content/BypassBest.php | 52 |
| #332 | /wp-content/uploads/woocommerce | 51 |
| #333 | /wp-includes/Text/wp-conflg.php | 51 |
| #334 | /wp-admin/user | 51 |
| #335 | /wp-content/plugins/wp-help/mini.php | 51 |
| #336 | /wp-includes/js/jcrop/jcrop.php | 50 |
| #337 | /wp-includes/css/dist/alam.php | 50 |
| #338 | /wp-content/themes/jaida/lang.php | 50 |
| #339 | /wp-content/plugins/shell/about.php | 50 |
| #340 | /wp-content/uploads/wc-logs | 49 |
| #341 | /wp-includes/IXR/test1.php | 49 |
| #342 | /wp-content/uploads/Geforce.php | 49 |
| #343 | /wp-is.php | 49 |
| #344 | /wp-includes/js/crop/zmFM.php | 49 |
| #345 | /wp-content/plugins/root-file-manager/wp-file.php | 49 |
| #346 | /wp-content/plugins/ph-file-manager/wp-file.php | 49 |
| #347 | /wp-content/uploads/woocommerce_uploads | 48 |
| #348 | /wp-includes/rest-api/fields/index.php | 48 |
| #349 | /wp-includes/autoload_classmap.php | 48 |
| #350 | /wp-admin/shell20211028.php | 48 |
| #351 | /wp-remote-api | 47 |
| #352 | /wp-content/plugins/wps-hide-login/wps-hide-login.php | 47 |
| #353 | /wp-json/litespeed/v1/cdn_status | 46 |
| #354 | /features/wordpress-management-tools | 46 |
| #355 | /wp-admin/maint/index.php | 46 |
| #356 | /wp-json/wp/v2/users/10421 | 45 |
| #357 | /wp-json/wp | 45 |
| #358 | /wp-admin/js/widgets/about.php7 | 45 |
| #359 | /wp-json/wp/v2/users/10595 | 44 |
| #360 | /wp-content/themes/divi | 44 |
| #361 | /wp-content/themes/oceanwp | 44 |
| #362 | /wp-admin/repeater.php | 44 |
| #363 | /wp-admin/bala.php | 44 |
| #364 | /wp-content/themes/pridmag/db.php | 43 |
| #365 | /wp-content/themes/neve | 43 |
| #366 | /wp-content/themes/astra | 43 |
| #367 | /revendedor/wp-login.php | 42 |
| #368 | /wp-includes/ID3/index.php | 41 |
| #369 | /wp-admin/css/colors/index.php | 41 |
| #370 | /wp-admin/edit-tags.php | 41 |
| #371 | /wp-content/plugins/wordfence | 41 |
| #372 | /wp-includes/sodium_compat/index.php | 40 |
| #373 | /wp-content/themes/index.php | 40 |
| #374 | /wp-includes/IXR/about.php | 40 |
| #375 | /wp-content/plugins/elementor | 40 |
| #376 | /wp-includes/rest-api/about.php | 39 |
| #377 | /wp-includes/blocks/shortcode/index.php | 38 |
| #378 | /wp-includes/IXR/admin.php | 38 |
| #379 | /wp-content/plugins/wpforms-lite | 38 |
| #380 | /wp-content/plugins/woocommerce | 38 |
| #381 | /wp-content/plugins/updraftplus | 38 |
| #382 | /wp-content/themes/shell20211028.php | 38 |
| #383 | /wp-includes/images/media/index.php | 37 |
| #384 | /wp-admin/includes/xmrlpc.php | 37 |
| #385 | /wp-admin/about.php | 37 |
| #386 | /wp-mn.php | 37 |
| #387 | /wp-content/themes/twentytwentythree | 37 |
| #388 | /wp-json/wp-site-health | 36 |
| #389 | /wp-json/wp-block-editor | 36 |
| #390 | /wp-content/packed.php | 36 |
| #391 | /wp-content/themes/hello-elementor | 36 |
| #392 | /wp-content/plugins/seoo/alfa-ioxi.php | 36 |
| #393 | /wp-content/themes/bala.php | 36 |
| #394 | /wp-json/oembed | 35 |
| #395 | /wp-content/plugins/ioxi/ioxi/dropdown.php | 35 |
| #396 | /2021/wp-includes/wlwmanifest.xml | 35 |
| #397 | /wp-p.php7 | 35 |
| #398 | /wp-content/plugins/bala.php | 35 |
| #399 | /wp-consar.php | 35 |
| #400 | /wp-content/plugins/seoo/wsoyanz1.php | 35 |
| #401 | /wp-aa.php | 34 |
| #402 | /wp-json/wp/v2/posts | 34 |
| #403 | /wp-content/plugins/cartflows-pro/assets/images | 34 |
| #404 | /wp-content/plugins/contact-form-7 | 34 |
| #405 | /wp-content/plugins/seoo/wsoyanz.php | 34 |
| #406 | /wp-content/dropdown.php | 34 |
| #407 | /wp-content/bala.php | 34 |
| #408 | /wp-json/litespeed | 33 |
| #409 | /wp-json/yoast | 33 |
| #410 | /wp-json/redirection | 33 |
| #411 | /wp-json/coauthors | 33 |
| #412 | /wp-content/uploads/shell20211028.php | 33 |
| #413 | /wp-content/repeater.php | 33 |
| #414 | /wp-content/plugins/classic-editor/wp-login.php | 33 |
| #415 | /wp-admin/images/about.php | 32 |
| #416 | /wp-class.php | 32 |
| #417 | /wp-content/uploads/bala.php | 32 |
| #418 | /wp-includes/shell20211028.php | 32 |
| #419 | /wp-content/uploads/wso112233.php | 32 |
| #420 | /wp-json/instawp-connect/v1/config | 32 |
| #421 | /wp-signup.php | 31 |
| #422 | /wp-includes/repeater.php | 31 |
| #423 | /wp-includes/dropdown.php | 31 |
| #424 | /wp-includes/bala.php | 31 |
| #425 | /wp-includes/wso112233.php | 31 |
| #426 | /wp-includes/Text/about.php | 30 |
| #427 | /wp-admin/css/colors/blue/about.php | 30 |
| #428 | /wp-logiin.php | 30 |
| #429 | /wp-admin/setup-config.php | 30 |
| #430 | /wp-admin/includes/about.php | 29 |
| #431 | /wp-includes/rest-api/alfa-rex.php7 | 29 |
| #432 | /wp-content/uploads/autoload_classmap.php | 29 |
| #433 | /wp-content/uploads/2025/11/Alert-LRCAP-2026_2.pdf | 29 |
| #434 | /wp-l0gin.php | 29 |
| #435 | /wp-includes/SimplePie/about.php | 28 |
| #436 | /wp-sigunq.php | 28 |
| #437 | /wpc.php | 28 |
| #438 | /wp-includes/html-api/wp-conflg.php | 28 |
| #439 | /wp-content/themes/theme-check/main.php | 28 |
| #440 | /exposicoes/wp-content/thumb/timthumb.php | 27 |
| #441 | /wp-includes/images/wp-login.php | 26 |
| #442 | /wp-admin.php | 26 |
| #443 | /wp-admin/network/plugins.php | 26 |
| #444 | /wp-confiq.php | 26 |
| #445 | /wp-content/plugins/erinyani/default.php | 26 |
| #446 | /wp-content/themes/classwithtostring.php | 26 |
| #447 | /wp-content/plugins/bntx/bntx.php | 25 |
| #448 | /wp-json/wp/v2/media/522 | 25 |
| #449 | /wp-json/wp/v2/media/525 | 25 |
| #450 | /wp-json/wp/v2/media/571 | 25 |
| #451 | /wp-json/wp/v2/media/501 | 25 |
| #452 | /wp-json/wp/v2/media/524 | 25 |
| #453 | /wp-content/plugins/mainhosting/default.php | 25 |
| #454 | /wp-content/themes/aback.php | 25 |
| #455 | /wp-content/222.php | 25 |
| #456 | /wp-content/themes/covr-wpcom/assets/fonts/manrope_normal.php | 25 |
| #457 | /wp-content/plugins/so-pinyin-slugs/inc/main_json.php | 25 |
| #458 | /wp-mail.php/wp-includes/ID3/rnEPv9.php | 24 |
| #459 | /wp-admin/post-new.php | 24 |
| #460 | /wp-content/plugins/advanced-product-fields-for-woocommerce/db.php | 24 |
| #461 | /design/wp-content/thumb/timthumb.php | 23 |
| #462 | /wp-securitiy.php | 23 |
| #463 | /wp-advaced.php | 23 |
| #464 | /wpc2.php | 23 |
| #465 | /wp-blog-front.php | 23 |
| #466 | /wp-content/plugins/seoplugins/mar.php | 22 |
| #467 | /wp-content/plugins/seoplugins/db.php | 22 |
| #468 | /wp-content/plugins/linkpreview/db.php | 22 |
| #469 | /wp-content/themes/twentyfive/include.php | 22 |
| #470 | /wp-admin/x.php | 22 |
| #471 | /wp-admin/css/wp-conflg.php | 22 |
| #472 | /wp-content/plugins/edaewni/index.php | 22 |
| #473 | /wp-content/plugins/cartflows/assets/images | 22 |
| #474 | /wp-content/plugins/wp-parsidate/includes/admin/acf-fields-adyrui.php | 22 |
| #475 | /wp-admin/network/cloud.php | 21 |
| #476 | /wp-admin/images/xmrlpc.php | 21 |
| #477 | /wp-admin/user/xmrlpc.php | 21 |
| #478 | /wp-admin/network/xmrlpc.php | 21 |
| #479 | /wp-includes/Requests/Text/index.php | 21 |
| #480 | /wp-content/plugins/yanierin/akcc.php | 21 |
| #481 | /wp-content/gallery/about.php | 20 |
| #482 | /wp-apxupx.php | 20 |
| #483 | /wp-admin/includes/class_api.php | 20 |
| #484 | /wp-activate.php | 20 |
| #485 | /wp-content/403.php | 20 |
| #486 | /wp-content/* | 20 |
| #487 | /wp-content/plugins/phpad/as.php | 20 |
| #488 | /wp-content/function.php | 20 |
| #489 | /wp-content/wso.php | 19 |
| #490 | /wp-pano.php | 19 |
| #491 | /wp-content/plugins/wp-apxupx.php | 19 |
| #492 | /wp-content/plugins/core/include.php | 19 |
| #493 | /wp-head.php | 19 |
| #494 | /wp-includes/themes.php | 19 |
| #495 | /wp1.php | 19 |
| #496 | /wp-admin/css/colour.php | 19 |
| #497 | /wp-admin/maint/wp-is.php | 19 |
| #498 | /root/wp-login.php | 19 |
| #499 | /wp-admin/css/colors/blue/index.php | 19 |
| #500 | /en/wp-login.php | 18 |
Data was last updated on: Dec 15, 2025
Logging Research
We love logs. In this section we will share some of the data we are parsing from our logs and honeypots we have live.
Trunc Logging
Logging for fun and a good night of sleep.
- Real time search
- Google simple
- Cheap
- Just works
- PCI compliance
Trunc Research
Latest log-based threat analysis added.
- 2025-09-03WordPress - Last scanned URLs
- 2025-08-22Web logs 404 analysis - past 72 hours
- 2025-08-21WordPress most scanned URLs - all time
- 2025-08-21Web logs 404 analysis - all time
Contact us!
Do you have an idea for a research that is not here? See something wrong? Contact us at support@noc.org
Tired of price gouging
- Clear pricing
- No need to guess
- Real people
- Real logging
Get
Started