The reason I don't want to say I'm sure it's OK is because I'm not that much of a tech-head. I can't see how the test could harm a person, but I'm not going to take responsibility for other people's actions. (Oh yeah, the test was no problem, so when I got pop-up and Microsoft page later, I figured it was safe. Microsoft only wanted me to verify my credit card number...)   The test does everything a real spoofing/phishing attack would do except phish (ask you for personal information), so if your anti-whatsit-ware warns you, it's protecting you.

If it DOESN'T warn you, and the test works, then, since the spoofing works in other browsers, don't enter personal information into a web page, unless it's secure & has a certificate and you entered the web address yourself or opened a known bookmark, or clicked on a known link. If you have MSIE7, you can download the patch.