January 24, 2021

Hacking attempt to my router?

Hello,

I have a **Tenda AC23** router, and recently I found out that it has an open port, **5500**. In router’ settings I didn’t find any configuration related to this port or its purpose, so I forwarded it to my raspberry pi, where I created a python server that prints out everything received on that port. After a few days, I’ve seen this output:

`b’x03x00x00/*xe0x00x00x00x00x00Cookie: mstshash=Administrrnx01x00x08x00x03x00x00x00’`

from this IP address (a possible “attacker”?): **45.134.26.78**

I’m a little bit worried and don’t know exactly what to do, cause I think in the past there were more requests like this. I tried to send manually this buffer to my router, after disabling the forwarding, but I didn’t receive any response. Also, I didn’t find any custom firmware (eg dd-wrt) for my router, in order to fix this issue by disabling the port.

Any other suggestions? Thanks

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.