Imho Mendix should fix these. They should filter these URL's already on all incoming traffic. All the logs of all the Mendix applications are crawling with these exact same URL's so they should have a pretty good picture on which URL's they should block.
Regards,
Ronald
Personally I *do* want to see in my logs when someone is scanning my application.
What I would appreciate as a feature is if Mendix provided an option to directly blacklist TCP connections from addresses listed on a few reliable IP blocklists. That should cut out most of the log noise caused by botnets.