I was checking the logs on my router and I seen this below. From what I can tell someone was trying to gain access to my router? I couldn’t find out much about this ip, looks like it can be traced back to mumbai primenet?
Should I be overly concerned.
Looks like a brute force attempt after a port scan. I would not be overly concerned unless you have very weak passwords as they’re very likely just randomly trying you because they can and not actively trying to specifically hack you, but do check out the firewalling section of the wiki and read up on securing your router to learn how to drop ssh (and winbox, telnet, etc.) from anything that couldn’t possibly be a legitimate admin.
Thanks for the advice. I checked my logs this morning and it looks like someone else was at it. This time it looks like it came from Mexico City?
it’s just bot (or botnet) - it sees your router and starts bruteforcing
follow chupaka link then change the parameter and banned 366 days 
When you have a machine with SSH open to the world you should expect this to happen frequently. It’s best to firewall SSH (port 22) off so that it is only accessible from your management network.
I was experiencing the same: Someone was trying to access my Linux box. I changed the ssh port to something other then the default (22) to maybe 2222. Haven’t had any hack attempt ever since.