Browser Helper Objects feedback

[Guest]

AntiSpyware raises an alert pop-up on the desktop, that a helper object is
about to be loaded. It asks for my permission, but I am not told the name of
the helper object in question.
Clicking on "more information" explains what a helper object is, but still
doesn't tell me about *this* specific helper that I need to reply yea or nay.


I suggest that you add the name of the object, and a link to a reference
site, so I can make an informed decision.

As an aside, I have been running AntiSpyware from its early beginning, and I
am impressed with the progress you have made. Like many others on this group
I run multiple vendor products and look forward to a day when I can enjoy the
performance gains of running just one, unified, form of protection.
thanks,
bob Ò¿Ó-

 

[Guest]

Hi REBLL,

If you are running SP2, open IE--->Tools--->Manage Add-ons, and uncheck any
BHO's that you don't recºgnize.

You can also use the System Explorers in Microsoft Antispyware to look at
BHO's and block them--it also shows known and unknown fºr BHO's..
http://www.microsoft.com/windowsxp/using/web/sp2_addonmanager.mspx .

Engel

 

[Guest]

Yes, thank you for the information, but I already know that. Been to both
places many times to clean up. I hat SP2 and stay current on all Security
Fixes.

What I am refering to is in real time, when I get the alert that a BHO is
about to be downloaded/installed. That message does not tell me what the
request is for. Just that a request is being made. I don't know if it is
for one that has been permitted (suspect not) or already denied or disabled.

What I am suggesting is a change to the AintiSpyware popup message:

Browser helper object "object name" is requesting permission - Y or N ?

instead of current message (by my poor memory)

Browser helper object is requesting permission - Y or N ?

Sorry, I don't remember the exact message, but the important thing is that
there is no name given. I suppose I should guess from the context of my
activity what is being loaded, but that poses two issues.

First, am I in a low-risk, but high stakes activity (like my bank site)?
In fact, I was visiting a Microsoft url, which I believe has all permission
and BHOs granted and loaded already. So, this message was unexpected. What
BHO could this be? Something new from MS? Or a rogue? From this context, I
should reply "NO".
Or
Second, am I engaging in risky activity, like a IM session? Easy, I reply
"NO".

Surely you are not suggesting I reply "YES" and later clean up ?

I am suggesting a way to make AntiSpyware more effective for the user, by
adding a little more information at the message. Sorry, I am unaware of a
suggestion or feedback forum other than this.
again, Thanks

 

[Guest]

Yes, thank you for the information, but I already know that. Been to both
places many times to clean up. I hat SP2 and stay current on all Security
Fixes.

What I am refering to is in real time, when I get the alert that a BHO is
about to be downloaded/installed. That message does not tell me what the
request is for. Just that a request is being made. I don't know if it is
for one that has been permitted (suspect not) or already denied or disabled.

What I am suggesting is a change to the AintiSpyware popup message:
instead of current message (by my poor memory)

Sorry, I don't remember the exact message, but the important thing is that
there is no name given. I suppose I should guess from the context of my
activity what is being loaded, but that poses two issues.

First, am I in a low-risk, but high stakes activity (like my bank site)?
In fact, I was visiting a Microsoft url, which I believe has all permission
and BHOs granted and loaded already. So, this message was unexpected. What
BHO could this be? Something new from MS? Or a rogue? From this context, I
should reply "NO".
Or
Second, am I engaging in risky activity, like a IM session? Easy, I reply
"NO".

Surely you are not suggesting I reply "YES" and later clean up ?

I am suggesting a way to make AntiSpyware more effective for the user, by
adding a little more information at the message. Sorry, I am unaware of a
suggestion or feedback forum other than this.
again, Thanks

I would like to support this request. I just had a BHO prompt after a reboot
with absolutely nothing to tell me about what it was. I blocked it, and when
I checked the log, it only had: "The user Mike, has decided to block the
Browser Helper Object ({83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}) from being
added to Internet Explorer."

 

[Guest]

In a related note, similar behavior for some ActiveX load requests.
I just recieved a green popup with the text:
"An application change has been allowed"
"MS AntiSpyware has allowed the internet explorer
"ActiveX program (ONE BLANK SPACE) to be installed"
"Name: (ONE BLANK SPACE) "
"Path: (ONE BLANK SPACE) "
"...based upon your previous input"

FYI, (ONE BLANK SPACE) is my way of indicating that
a single white space appeared where a name or path should have.
(ONE BLANK SPACE) appeared on the BHO load requests that started this
thread.

So, I suggest that if MSAS can't display a true name or path,
the pop-up should at least be RED or YELLOW.

This lowers my expectations regarding MS AntiSpyware readiness.
But it is BETA, and I want to tell them about this, too.