Google IP addresses trying to access malicious paths that does not exist

What is the name of the domain?

coreortodontia.com.br

What is the issue you’re encountering

Google IP addresses trying to access malicious paths that does not exist

What steps have you taken to resolve the issue?

Blocking the malicious path on cloudflare waf.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Flexible

What are the steps to reproduce the issue?

There is no error at this moment but we can see the information below in the traffic analisis.
We are asking for help for trying to understand and track this issue for having this fixed asap.
IP de origem
Host
Caminho
66.249.74.36
coreortodontia.com.br
/script+dragon+soul+mobile+2024-4/
66.249.74.34
coreortodontia.com.br
/animal%20mais%20barulhento%20do%20mundo%20230%20decibeis-8/
66.249.74.34
coreortodontia.com.br
/35+bet-1/
66.249.74.34
coreortodontia.com.br
/8959bet.com%20paga-2/
66.249.74.35
coreortodontia.com.br
/betano%207-8/
66.249.74.36
coreortodontia.com.br
/o%20que%20comentar%20na%20foto%20do%20amigo%20jogador-9/
66.249.74.35
coreortodontia.com.br
/xp+animes+dublado-9/
66.249.74.36
coreortodontia.com.br
/Descobrindo%20o%208897.c

Screenshot of the error

Hello, just block the IP if you suspect it to be malicious. If the IPs are scattered but originate from the same ASN, you can block them by ASN.

Even though this might not be a DDoS but a scanning vulnerable activity, I always recommend that customers refer to this documentation, which provides general best practices.