Browser Helper Object

Browser Helper Object

A Browser Helper Object (BHO) is a DLL module designed as a plugin for Microsoft's Internet Explorer web browser to provide added functionality. BHOs were introduced in October 1997 with the release of version 4 of Internet Explorer. Most BHOs are loaded once by each new instance of Internet Explorer. However, in the case of the Windows File Explorer, a new instance is launched for each window.

Some modules enable the display of different file formats not ordinarily interpretable by the browser. The Adobe Acrobat plugin that allows Internet Explorer users to read PDF files within their browser is a BHO.

Other modules add toolbars to Internet Explorer, such as the Alexa Toolbar that provides a list of web sites related to the one you are currently browsing, or the Google Toolbar that adds a toolbar with a Google search box to the browser user interface.

Concerns

The BHO API exposes hooks that allow the BHO to access the Document Object Model (DOM) of the current page and to control navigation. Because BHOs have unrestricted access to the Internet Explorer event model, some forms of malware have also been created as BHOs. For example, the Download.ject exploit installed a BHO that would activate upon detecting a secure HTTP connection to a financial institution, record the user's keystrokes (intending to capture passwords) and transmit the information to a website used by Russian computer criminals. Other BHOs such as the MyWay Searchbar track users' browsing patterns and pass the information they record to third parties.

In response to the problems associated with BHOs and similar extensions to Internet Explorer, Microsoft added an "Add-on Manager" to Internet Explorer 6 with the release of Service Pack 2 for Windows XP (updating it to IE6 Security Version 1 (a.k.a. SP2). This displays a list of all installed BHOs, browser extensions and ActiveX controls, and allows the user to enable or disable them at will.

For users that are not using Windows XP, there are free tools (such as BHODemon) that list installed BHOs and allow the user to disable malicious extensions. Spybot S&D has a similar tool built in to allow the user to disable installed BHOs.

Many BHOs install toolbars in Internet Explorer, but others don't produce any visible effect. It is therefore possible that a PC contains BHOs that the owner doesn't know about. The security risk here is that the BHO doesn't need any kind of permission to install malicious components and thus spyware may be spread without the user's knowledge. For instance, the ClSpring trojan uses BHOs to install scripts to provide a number of instructions to be performed [such as Adding and deleting registry values, downloading additional file(s) and executing file(s)] .

Since it's relatively easy to write BHOs, many poorly written BHOs can harm the computer and compromise its security, and even sometimes destroy valuable data or corrupt system files.

ee also

* Spyware

External links

Microsoft sites

* [http://support.microsoft.com/default.aspx?scid=kb%3BEN-US%3Bq179230 "IEHelper-Attaching to Internet Explorer 4.0 by Using a Browser Helper Object"]
* [http://www.microsoft.com/windowsxp/using/web/sp2_addonmanager.mspx Control Internet Explorer Add-ons with Add-on Manager] - an article on Microsoft.com that explains this new feature of Windows XP Service Pack 2
* [http://msdn2.microsoft.com/en-us/library/bb250489.aspx Building Browser Helper Objects with Visual Studio 2005] - an October 2006 MSDN article by Tony Schreiner and John Sudds

Listings and examples

* [http://castlecops.com/CLSID.html CLSID List] - master list created by Tony Klein and others, that attempts to record and identify every BHO available
* [http://www.adp-gmbh.ch/win/com/bho.html C++ example code for a BHO]
* [http://www.codeproject.com/cs/samples/autosig.asp C# example code for a BHO]
* [http://www.pestpatrol.com/zks/pestinfo/browser_helper_object.asp PestPatrol] - has listings and classifications of BHOs


Wikimedia Foundation. 2010.

Игры ⚽ Нужна курсовая?

Look at other dictionaries:

  • Browser Helper Object — Browser Helper Object  DLL модуль, разработанный как плагин для Internet Explorer для обеспечения дополнительной функциональности. Некоторые модули обладают возможностью открывать файлы различных форматов, первоначально не предназначенных… …   Википедия

  • Browser Helper Object — Browser Helper Objects (BHO) sind Programme, die die Funktionen des Internet Explorers erweitern. BHOs werden ab Version 4 des Internet Explorers eingesetzt. Sie haben direkten Zugriff auf das Document Object Model (DOM). Da sie vollen… …   Deutsch Wikipedia

  • Helper application — A helper application is an external viewer program launched to display content retrieved using a web browser. Some common examples include Windows Media Player and QuickTime Player for playing streaming content. Unlike a plugin(whose full code is …   Wikipedia

  • Web browser —    A client application that lets you look at hypertext documents, follow links to other HTML documents, and download files on the Internet or on a corporate intranet.    When you find something that interests you as you browse through a… …   Dictionary of networking

  • Internet Explorer — Windows Internet Explorer A component of Microsoft Windows Internet Explorer 9 in Wi …   Wikipedia

  • Internet Explorer 4 — Internet Explorer 4.0 Develop …   Wikipedia

  • XMLHttpRequest — HTTP Persistence · Compression · HTTPS Request methods OPTIONS · GET · HEAD · POST · PUT · DELETE · TRACE · CONNECT Header fields Cookie · ETag · Location · Referer DNT · …   Wikipedia

  • Spyware — is a type of malware that can be installed on computers, and which collects small pieces of information about users without their knowledge. The presence of spyware is typically hidden from the user, and can be difficult to detect. Typically,… …   Wikipedia

  • WIE — Internet Explorer Internet Explorer 7.0 в среде Windows Vista Тип браузер и RSS агрегатор Разработчик …   Википедия

  • WIE7 — Internet Explorer Internet Explorer 7.0 в среде Windows Vista Тип браузер и RSS агрегатор Разработчик …   Википедия

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”