Today all my customers router attacked once!

Got this email from 22 rb routers. Same attacker ip. Attacked once per router. Propably searching for blank password.

“system,error,critical login failure for user admin from 81.177.231.210 via winbox”

Of course my routers are password protected and unused services disabled (ip-services)

This is normal if you have no protection on your device. Secure your router, follow these suggestions:
https://wiki.mikrotik.com/wiki/Manual:Securing_Your_Router