IP Whois & Flags Chrome & Websites Rating
Version 4.0 View in Chrome Web Store
Extension Details
Context-Aware Verdict
The extension has a moderate user base of 30,000 users and a solid 4.4-star rating from 651 reviews, which suggests some level of user satisfaction. The developer operates from myip.ms, which appears to be a legitimate IP lookup service. However, the extension uses the older Manifest V2, indicating it hasn't been updated to meet newer security standards.
The extension's permission set is extremely broad and concerning for what should be a simple IP lookup tool. The combination of webRequest, webRequestBlocking, tabs, and all_urls permissions creates a dangerous scenario where the extension can intercept, modify, and block all web traffic across every website you visit. This level of access far exceeds what's necessary for displaying IP information and website ratings. The extension essentially has the capability to act as a man-in-the-middle for all your browsing activity, potentially capturing sensitive data like login credentials, personal information, or financial details.
Given the critical risk level, avoid installing this extension on your main browser profile. If you must use it, create a separate Chrome profile specifically for this extension and only use it for non-sensitive browsing. Consider alternative IP lookup tools that require fewer permissions or use web-based services instead. The broad permissions combined with the ability to modify web requests makes this extension a significant security risk that outweighs its utility.
Findings
Security Analysis Details
Required Permissions:
- https://plugin.myip.ms/*
- tabs
- chrome://favicon/
- webRequest
- webRequestBlocking
- <all_urls>
Embedded URLs (24 total):
| https://plugin.myip.ms/hex_ | https://getbootstrap.com | |
| https://github.com/twbs/bootstrap/blob/master/LICENSE | http://www.w3.org/2000/svg | |
| https://github.com/twbs/bootstrap/graphs/contributors | https://popper.js.org | |
| http://www.apache.org/licenses/LICENSE-2.0 | http://opensource.org/licenses/MIT | |
| https://ru.myip.ms/ | https://myip.ms/ | |
| https://www.google.com/maps/place/ | https://myip.ms | |
| https://chrome.google.com/webstore/detail/ip-whois-flags-chrome-nor/kmdfbacgombndnllogoijhnggalgmkon | https://www.sharethis.com/share?url= | |
| https://myip.ms/images/empty.png | https://traffic.alexa.com/graph?w=900&h=400&o=f&z=3&c=1&y=t&b=ffffff&n=666666&r=6m&u= | |
| https://www.whois.com/whois/ | https://www.mywot.com/en/scorecard/ | |
| https://safeweb.norton.com/report/show?url= | https://www.alexa.com/siteinfo/ | |
| https://myip.ms/diagrams.php?w=760&i= | https://www.worldreviews.org/info/web | |
| https://plugin.myip.ms/ | https://clients2.google.com/service/update2/crx |
Raw Manifest
{ "name": "IP Whois & Flags Chrome & Websites Rating", "icons": { "16": "images/icon16.png", "48": "images/icon48.png", "64": "images/icon64.png", "128": "images/icon128.png" }, "version": "4.0", "background": { "page": "background.html" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "Display Website Country Flag. Website Whois - how many Visitors are visiting, Reputation Reviews, Antivirus Check, Alexa, Incognito", "page_action": { "default_icon": "images/world.png", "default_popup": "popup.html" }, "permissions": [ "https://plugin.myip.ms/*", "tabs", "chrome://favicon/", "webRequest", "webRequestBlocking", "<all_urls>" ], "homepage_url": "https://myip.ms", "default_locale": "en", "manifest_version": 2 }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.