Why is my AV reporting a network security issue?

Hi, Further to the points i made, i wish to point out one thing. If the scan by grc.com and (shield up) total service scan option, and common ports scan show no vulnerability, please leave it. No antivirus other than avast is giving this vulnerability messages. I am going to use mse or other antivirus.
My service provider says that we should not be bothered about these messages. I leave it to your ISP. He says not revealing the network password is the best option. Normally the dsl line connection thro isp is naturally protected and leaves nothing to hijack. I am one like you and even replaced the router to new edition. But still getting this.
Further one of the fourm members clarified my dns change, as not hacked , but when dhcp ip is not assigned any ip, windows would auto create ip to get internet access. This was totally news to me and i checked the link and to find about the same.
Your lan connection could not be hacked if you have dynamic ip and also under a reputed ISP. No need to change the admin password. I received this advice from service provider.
If your check at grc.com is fine, then leave this.
It is also a fact that no other av is giving these alerts, as they do not touch upon router.
you have pointed out that you have changed the pw and still get the same alert.
Regarding link
https://forum.avast.com/index.php?topic=182469.0

Just to update... I took UsernameIssues' advice and posted on the AVAST forum. They responded by asking me to record and send them the log files from the HNS scan. OR, to just send the following file: "C:\ProgramData\AVAST Software\Avast\log\HnsStats.json.lzma" , as it contains most of the important information related to the HNS scans.

So I'm wondering whether or not this is wise?

jraju said:

...
If your check at grc.com is fine, then leave this.
It is also a fact that no other av is giving these alerts, as they do not touch upon router.
you have pointed out that you have changed the pw and still get the same alert.

Thanks jraju, never heard of grc shield up prior to your recommendation.

Open up notepad. Open up Windows Explorer. Drag that HnsStats.json.lzma file from the Explorer windows and drop it into the open notepad window.

It might not be text - but you might be able to determine if there is any personal info in there. If it looks like something that you don't mind them having, then I would say to post it

Hi, username..
I have sent to them the log files in their support form. But no use. They stick to their views that I am having vulnerability.
I want to know from you. Is it possible to hack your broadband password and got connected to your line , if you are provided network thro reputed ISP. They say that it is totally secured and one cannot peep in to your line, lan, allotted to you , by the ISP.
The second concern is about the wifi network. If you are having combo, bb and wifi in the same modem, then it is possible to know the password from some source and can access your wifi and enjoy free internet access. This is on the condition, that he knows the password from the owner of the computer.
I think this could be resolved by obtaining password from grc.com and it could not be remembered as easily . So, no body in theory could attack you.I am also of the view the admin password need not be changed, as it will have to be reset, once it is having some problem. The router password is only for entering the router page. If you type the access point, it is capturing the details of your router and with NAT firewall, it is just impossible to hack the individual broadband and get access to files in the system. Would you give your view on this
I thought that my dns has changed , but it was clarified by a geek from this forum, that it is Apapi, which i do not know previously. It is assigned automatically, when the computer Dhcp is not able to allot ip to the computer. It is also noted, that once, your internet dhcp gets enabled, this vanishes.
I also wish you to go to the link i gave in my previous post, that it shows postive and -ve results in two times on the same day by Avast scan.
Think that there is a glitch.
Moreover avast point port 80, and 21 in their diagrammatic representation in the scanned page. checking those ports in grc.com shows mine as stealthy.

The only other things i can think of is that Avast, is checking on the password style.
ie are they
all lower case
all alpha
all numeric
any non alpha/numeric characters
less than x characters long.

As in reality they should not be able to read it at all.

Roy

Most things are possible. The question is: how probable is something?

I don't know the security measures taken by your ISP, so I don't know how probable it might be for someone to find out your broadband password and then use it to connect to your line.

Finding the key to a Wi-Fi network is not that hard. Again, I'm not going to know the likelihood of this happening. If internet service is expensive, then people might go to the trouble to get free service from someone close by. It sounds like you are saying that even if someone did connect to your Wi-Fi, they would still need to authenticate to the ISP before gain access to the Internet. That extra step should help prevent people from breaking into wireless networks.

If someone does get access to your router, getting to your files should be blocked by the firewall on your computer.

The grc.com website is nice, but it only scans a small portion of possible ports. I do not understand your comment "obtaining password from grc.com".

I did look at the link to your AVAST forum thread. I am not a member, so I cannot see attachments. From what I have read in this thread and the AVAST forum thread, you don't know how the AVAST software is checking the router. I don't know how it does it either.

The GRC website asks to make connections to your public IP address on various ports. Your AVAST software is probably checking the private side of your router. I don't know what/how AVAST checks; so, I cannot say what you should expect to see in the log files.

jraju said:

Hi, username..
I am also of the view the admin password need not be changed, as it will have to be reset, once it is having some problem. The router password is only for entering the router page. If you type the access point, it is capturing the details of your router and with NAT firewall, it is just impossible to hack the individual broadband and get access to files in the system.

Are you sure about this? I have strong passwords for BOTH. The irony (regarding your statement) is that the MAX password length for the WiFi connection is 33 characters, while the router login password (admin password), can be set to a max of 64. A 64 character password should be miles stronger than a 33 character password. So IF the WiFi password is the more 'significant' of the two, shouldn't it be the opposite?

Layback Bear said:

My answer is much simpler.
Change your anti virus program. Use one that is a anti virus program and stays the hell out of your router.
As of late Avast is sticking it's fingers into things it shouldn't. Avast has been screwing up VSS, clouds and now routers. Avast should go back to being a great anti virus program and leave the rest of the computer alone.

Just my opinion.

I plan on changing, trust me! I have a little over 30 days left on my active license and the only reason I paid for a license in the first place was because I used their free AV for a few yrs & liked it. With that said, I still want to be 100% sure that I have a relatively secure network setup!

Hi, Thanks for the pointers to the essence of the topic i raised.
To, benteke,
wifi pw set up differ from router to router. My router supports 63 alpha numeric. ISP said that admin pw need not be changed as it will be difficult if any lengthy secured password is not known, if any issue arises and it has be reset to reconfigure the router.
Hi, Layback , i have tried panda free, and its cloudy thing , i changed to avast, which was best. But , when i asked how the vulnerabilities have been checked , there is no reply from them.
Would avira be my next alternative ... please.
I tried AVG, and i was informed that it is somewhat aggressive and would delete some system files. Once, I was the user of AVG.
Avast is very good, but their online popups, to change to paid version, and use their paid secure dns and also grime fighters without user consent, and particularly the latest introduced network scan, producing the vulnerabilities report but not solutions make me thing to change to some other.
I want a av program with lesser online annoyance popups , using less resource. MSE finds, but only limited items. Most av does not touch browser hijacks and redirects. Pl share your thought.
Hi, username..
obtaining pw from grc.com means that their pw are allotted once you browse their password page. You find different kinds of pw suitable to routers, which are hard to crack. But you have to copy to your pen drive , and in your pc and tablet, if you want to use it on many devices. The passwords are tested and very hard to crack. Pl. see this link
5 Free Password Generators For Nearly Unhackable Passwords
Please read this , i could not get you the grc.com link from my browser.

While we're on the topic, IS there a program (or some other means) to check/scan a home network setup for vulnerabilities?