I wonder if you get a new ISP IP address on the WAN side of the router, if the IP address report will stop?
Any IP I can get will be within my ISP's range of IPs, and I suspect people are just scanning common ports over IP ranges.
Now, I have someone from France and someone from New York trying to access my camera:
2015-12-23 17:24:11 User from 85.25.43.227 login failed & lock web service
2015-12-27 01:56:29 User from 104.238.135.26 login failed & lock web service
Do you guys run your cameras on port 80 as well?