Security Alert: Malware Risk Confirmed
Alvand Website Toolkit
ID: efjakogamjhdfnkhefhpcboahbcjfpli
Extension Info & Metadata
Publisher Contextual Analysis
- Author
- CubexicView Profile
- Privacy
- Privacy Policy
- Help
- Help Center
- MX records exist
- Yes
- Domain exists
- Yes
- Is disposable
- No
- Is role-based
- No
- Mailbox exists
- Yes
Server IP, country, security, performance and site analysis for visited websites
🚀 Discover the Truth Behind Every Website — Instantly! 🧠🌍🔒 Introducing your new favorite browser companion — a powerful, free extension that turns your browsing into an intelligent, secure, and insightful experience! 🔍 Know Where You’re Browsing See the flag, IP address, and exact server location of any website you visit — all visualized on an interactive map. Ever wondered where that site is really hosted? Now you’ll know. 🤖 AI-Powered Website Insights Our built-in AI goes beyond the surface — analyzing each website in real time and offering clear, trustworthy insights on its credibility, purpose, and reliability. Think of it as a second opinion from a digital detective. 🛡️ Your First Line of Defense With real-time security checks via Google Safe Browsing API, you’ll be instantly alerted if a domain is flagged as suspicious or malicious. Browse smarter, safer, and with total peace of mind. ✨ Works seamlessly with Google Chrome, Opera, Vivaldi, and Brave. And yes — it’s completely free. 🔗 Try it today and see your browser in a whole new light. Knowledge is power. Now it's just a click away.
Sensitive Domain Access
This extension has access to the following sensitive domains:
- https://www.google.com/s2/*
The bundled manifest (installed on users' machines) differs significantly from the CWS-published manifest: the bundle omits `webRequest` and the specific API host entries (`ipgeolocation.io`, `dns.google`, `openai.com`, `safebrowsing.googleapis.com`, etc.) present in the published version, instead routing everything through a wildcard `*.workers.dev` entry; conversely, the bundle adds `contextMenus` not declared in the published listing. Users reviewing the store listing cannot accurately assess what the installed version actually requests, constituting a meaningful disclosure mismatch.
{ "host_permissions": [ "http://*/*", "https://*/*", "https://*.workers.dev/*", "https://*.tile.openstreetmap.org/*", "https://www.google.com/s2/*" ], "permissions": [ "activeTab", "tabs", "storage", "webNavigation", "scripting", "contextMenus" ]}On every page navigation, the visited domain is sent to `alvand-extension-worker.cubex.workers.dev` paired with a stable per-installation UUID (`userId`), allowing the publisher to maintain a server-side log of each user's browsing-domain history. The CWS data-collection disclosure lists only 'Location', not browsing history; the domain-lookup is the extension's core stated function but the server-side retention of userId+domain tuples is an undisclosed collection of browsing history.
async function callWorker(action, params = {}) { const userId = await getUserId(); const licenseKey = await getLicenseKey(); const response = await fetch(WORKER_URL, { method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ userId, action, licenseKey, ...params }) }); ...}// Called on every page navigation completion:const ipInfo = await detectRealIP(domain, tabId, url);// detectRealIP calls: callWorker('getLocation', { domain })By severity
Versions scanned
Showing 1 of 4 scanned versions with more than one unique finding. Counts are unique findings that include each version.
| Extension Version | Code Review Findings |
|---|---|
| 1.0.48 | 2 |
Files with findings
2 distinct paths — top paths by unique finding count:
- background.js1
- manifest.json1
URLs
View the external URLs this extension communicates with to understand its network activity and data interactions.
Gain full insight into all external connections.
Upgrade for full visibility.
Gain full insight into all external connections.
Upgrade for full visibility.
Code Diff
Compare extension code between any two versions.
No comparable text files found between these versions.
Browse and explore files within this extension package
Gain full insight into all external connections.
Upgrade for full visibility.
