Some users have reported that their Avast Free is blocking surveytime.io (our website) because of phishing.
This is a screenshot using the latest version of avast for windows - https://www.screencast.com/t/aQMEnIlGdd95

The URLs being blocked by Avast are:
https://api.surveytime.io/translation
https://api.surveytime.io/translation/available-language-codes

The website itself is clean:
https://sitecheck.sucuri.net/results/https/surveytime.io
https://www.virustotal.com/gui/url/b54f1524a9447b3910d5f2cfcd5b7545cd8b113ad68d0d20ccf2460de2cf3f42/detection
https://www.virustotal.com/gui/url/c4a452ef9d98ea7a33ddfe6f9bb0a3edab148d58c5529b09bb26b1b81e2de932/detection

We did move the server to another IP 4 days ago, but have updated DNS.

We have submitted a request to whitelist, but it wasn’t done yet.
What is the issue here, why it blocks these innocent URLs?

Hello,
did you use https://www.avast.com/false-positive-file-form.php for the “request to whitelist”?

Milos

There is certainly room for further implementation of known best policies on that website:

[quote]
Security Checks for https://api.surveytime.io/translation
Susceptible to man-in-the-middle attacks
e.g. HSTS header not prepared for preload list inclusion
Vulnerabilities can be uncovered more easily
e.g. Server information header exposed Server: nginx/1.11.0
See: https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=fHBbLnN1fXZ7eXRbbXsuW11gdH18bnNsfHRbXW4%3D~enc

polonus (volunteer 3rd part cold reconnaissance website security analyst and website error-hunter)

Yes, we did use this form, got no response yet

This has been resolved yesterday. Detection disabled.