(16 messages not shown)
apr/21/2020 06:40:55 system,error,critical login failure for user admina from 1.0.206.
158 via api
apr/21/2020 06:44:20 system,error,critical login failure for user admin2 from 1.55.245
.18 via api
apr/21/2020 08:09:55 system,error,critical login failure for user user from 14.233.58.
101 via api
apr/21/2020 08:11:07 system,error,critical login failure for user Administrator from 1
13.53.77.232 via api
apr/21/2020 09:08:09 system,error,critical login failure for user 888888 from 113.53.1
2.228 via api
apr/21/2020 09:27:08 system,error,critical login failure for user root from 14.161.39.
168 via api
apr/21/2020 09:36:12 system,error,critical login failure for user sniffer from 113.160
.222.180 via api
apr/21/2020 10:07:38 system,error,critical login failure for user avanthi from 27.66.2
04.216 via api
You should NOT have admin access from internet to your router.
VPN is the way to go.
If you can not use VPN, here are some tip to prevent problems.
- Use another port than default.
- Use port knocking. This prevents someone from seeing open ports.
- Use a long and good password.
- Use access list to prevent any random internet from accessing your router.
- Log everything. (See my signature for example.)
- If possible setup the remote router to connect using VPN to an admin site.
7.++++
Also, under IP services disable the ones you do not use, e.g. the API… 
No, not me, it looks like it’s a hacked server attempt from outside
And that is because roter are not secured. Port to administrate the router is way open on the outside. Bad configuration.
Concur reset to defaults and then ask for help
- disable API in “ip services”
- why is your firewall gone?
- see what all others posted above