Are you sure you acknowledged the password change ?
Because if it resets to default name/password there sure is something not correct.
Depending on the ISP’s policy you should at least be able to change the password.
As for how avast scans/checks, that is for someone from avast to answer.
I suspect your ISP is responsible for the name/password.
They almost always have a “back-door” so they can remotely login/run firmware updates.
I would say ask them and see what they tell you.
Keep in mind that they are not always exactly honest about things like this
Size of the ISP doesn’t matter.
They all have (sort of) the same policy and way they are working.
Yes, they do have a back-door build into their modems/routers.
Guess what it will cost if the need to send someone to all their customers to update the firmware
Wish to report the same problem with Avast and my TP-Link modem/router.
It’s my device - never owned or touched by the ISP. The out-of-the-box userid/password is admin/admin. That was changed in the first hour. It is not possible to log into the device with those values.
Avast claimed that I have a weak router password. So I was like haha, what a bullshit I am not stupid and have strong password. But then I looked to the log file and realized that my router has another user/user.
So I changed that one as well. I am afraid it’s configured by the manufacturer. It has less rights, but still can turn on/off wifi etc…
But the worst is this:
The network scan as part of Smart-Scan told me, that my router is ok. But the HNS-scan means, my router isn’t configuered quite right and I have a WEAK_PW!!!
I’m waiting for a fix since Dec, sent pm to lukor twice, no answer, but since March 3 I contacted KL by pm and he promised to help (talking to the devs). Since then, I’m still waiting.
Looks like I have a similar issue with my modem/router: TP-Link TD-W9970.
When running a network scan with Avast Free, I initially got two warning messages:
Weak service password
Weak wifi password
The latter was fair enough, and has gone away now that I have changed the wifi password on my router.
But the first is wrong, claiming that my login and password are both “admin”. These were the default values which I have already changed to less obvious things. I have just checked that admin/admin does not log into my router, so I am not sure why Avast is giving this warning.
Ok, I too have a TP-Link Wi-Fi Card, a modem-router from ARRIS (motorola) and AVAST. Same false positive result. AVAST states my router is vulnerable, because it can be “accessed by my ISP”. Now, clearly, if my ISP (MIDCO) could not communicate with my modem router, then certainly could not even type these very words.
Same old security problem: If something is allowed to go from here to there, then something else might tag along without a permit. I don’t know how to fix this,
one either is overprotective, or not protective enough. But meanwhile, AVAST should slightly expand its "whitelist.
You clearly don’t understand things.
Having a connection and a ISP that can access the router are two different things.
The last one means your ISP can access the router settings (and likely also the OS).
No, things like this should never be “whitelisted” as it is a security risk.
If your ISP can access the router settings, so can bad guys.