.dll errors,coolwebsearch blocked by AOL Spyware
Getting this error since 3 days especially on gmail page:
IE has encountered a prob.and needs to close.we r sorry--
errors in following modules;
Kernel32.dll
msxml2.dll
ntdl.dll
jscrpt.dll
Any fix,pls recommend!Sometimes,IE(esp gmail page) is to be closed for above reasons.Many times failed to open inbox mails,failed to see download link instead showing - Scanning for viruses...
I have run several cycles of Ccleaner,NT Registry Optimizer,NAV,CW
Shredder,AOL Spyware,HJT Log, Regedt for manually taking out Flash
Saver Maker.Moreover,I have uninstalled/reinstalled Google beta tool
bar.I have installed Java 2 Platform Standard Edition to c if it help me or not?
Any recommendations pls:
XP Prof(32 bit)5.01.2600 SP2
IE:6.0.2900.2180xp_sp2_gdr.050301-1519
Dependency Walker: 2.1.3623 (32-bit)
Operating System: Microsoft Windows XP Professional (32-bit)
OS Version: 5.01.2600 Service Pack 2
Processor: x86 Family 15 Model 1 Stepping 3, GenuineIntel, ~1799MHz
Number of Processors: 1
Computer Name: FA-GRJTXU
User Name: Administrator
Local Date: Thursday, April 13, 2006
Local Time: 12:24:23 AM Eastern Daylight Time (GMT-04:00)
OS Language: 0x0409: English (United States)
Memory Load: 62%
Physical Memory Total: 199,016,448 (190 MB)
Physical Memory Used: 125,325,312
Physical Memory Free: 73,691,136
Page File Memory Total: 685,543,424
Page File Memory Used: 168,423,424
Page File Memory Free: 517,120,000
Virtual Memory Total: 2,147,352,576
Virtual Memory Used: 29,347,840
Virtual Memory Free: 2,118,004,736
Page Size: 0x00001000 (4,096)
AOL Spyware detected Coolwebsearch again,despite it was blocked by itself after running last scan.CWShredder scan did'nt show coolwebsearch.
RUN: [WinFaxAppPortStarter] wfxsnt40.exe
RUN: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
RUN: [Symantec NetDriver Monitor] D:\PROGRA~1\SYMNET~1\SNDMon.exe
RUN: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
RUN: [NAV Agent] D:\PROGRA~1\NORTON~2\navapw32.exe
RUN: [IgfxTray] D:\WINDOWS\System32\igfxtray.exe
RUN: [HotKeysCmds] D:\WINDOWS\System32\hkcmd.exe
RUN: [Gtwatch] D:\WINDOWS\gtwatch.exe
RUN: [DownloadAccelerator] D:\PROGRA~1\DAP\DAP.EXE /STARTUP
RUN: [PowerS] D:\WINDOWS\PowerS.exe
RUN: [Nero DriveSpeed] D:\PROGRA~1\Nero\NERO7~1\NEROTO~1\DRIVES~1.EXE
RUN: [iamapp] D:\Program Files\Norton Internet Security\IAMAPP.EXE
RUN: [CallControl 4.5] D:\PROGRAM FILES\FAXTALK COMMUNICATOR\FTCtrl32.exe /autoload
RUN: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
RUN: [EPSON Stylus CX3800 Series] D:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P26 "EPSON Stylus CX3800 Series" /O6 "USB001" /M "Stylus CX3800"
RUN: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "D:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
RUN: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background
**** Browser Helper Objects ****
BHO: [AcroIEHlprObj Class] D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
BHO: [PaltalkWebLogin] D:\Program Files\Common Files\Paltalk\PaltalkWebLogin.dll
BHO: [SSVHelper Class] D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
BHO: [Google Toolbar Helper] d:\program files\google\googletoolbar1.dll
BHO: [CNavExtBho Class] D:\Program Files\Norton Antivirus\NavShExt.dll
**** IE Toolbars ****
TOOLBAR: [Norton AntiVirus] D:\Program Files\Norton Antivirus\NavShExt.dll
TOOLBAR: [&Google] d:\program files\google\googletoolbar1.dll
**** IE Extensions ****
IEExt: []
IEExt: [Web Browser Applet Control] D:\WINDOWS\System32\msjava.dll
IEExt: [Research] D:\WINDOWS\System32\msjava.dll
IEExt: [Share in Hello] D:\WINDOWS\System32\msjava.dll
IEExt: [Messenger] D:\Program Files\Messenger\msmsgs.exe
**** Hosts File Entries ****
HOSTS: 127.0.0.1 localhost
HOSTS: 127.0.0.1 localhost
**** IE Settings ****
IEBypass: <local>
Default Page:
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default Search:
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Local Page: D:\WINDOWS\system32\blank.htm
Search Bar:
http://www.google.com/ie
Search Page:
http://www.google.com
**** IE Context Menu (Right click) ****
IEContext: [E&xport to Microsoft Excel] res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
**** Layered Service Providers ****
LSP: MSAFD Tcpip [TCP/IP]
LSP: MSAFD Tcpip [UDP/IP]
LSP: RSVP UDP Service Provider
LSP: RSVP TCP Service Provider
LSP: MSAFD Tcpip [TCP/IPv6]
LSP: MSAFD Tcpip [UDP/IPv6]
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{F9008E2A-214C-481A-BD2A-A74611469D0A}] SEQPACKET 11
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{F9008E2A-214C-481A-BD2A-A74611469D0A}] DATAGRAM 11
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{B8B45458-F813-45C4-883A-7B61E61F7EEA}] SEQPACKET 7
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{B8B45458-F813-45C4-883A-7B61E61F7EEA}] DATAGRAM 7
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{8490BCF7-13D4-4886-B727-B84E0D11A26B}] SEQPACKET 5
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{8490BCF7-13D4-4886-B727-B84E0D11A26B}] DATAGRAM 5
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{323B55A2-B0AB-4208-8F2C-0B7F1BD07A0E}] SEQPACKET 6
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip6_{323B55A2-B0AB-4208-8F2C-0B7F1BD07A0E}] DATAGRAM 6
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F9008E2A-214C-481A-BD2A-A74611469D0A}] SEQPACKET 12
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{F9008E2A-214C-481A-BD2A-A74611469D0A}] DATAGRAM 12
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B8B45458-F813-45C4-883A-7B61E61F7EEA}] SEQPACKET 8
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{B8B45458-F813-45C4-883A-7B61E61F7EEA}] DATAGRAM 8
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8490BCF7-13D4-4886-B727-B84E0D11A26B}] SEQPACKET 4
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{8490BCF7-13D4-4886-B727-B84E0D11A26B}] DATAGRAM 4
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{11DCFBA5-4C67-4E23-A76F-488E3552A8CC}] SEQPACKET 1
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{11DCFBA5-4C67-4E23-A76F-488E3552A8CC}] DATAGRAM 1
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{497F70E0-D119-42B9-AB72-BED4ED6423FD}] SEQPACKET 2
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{497F70E0-D119-42B9-AB72-BED4ED6423FD}] DATAGRAM 2
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{00543C4F-9F35-4FB8-8EDD-E5E406DC92E8}] SEQPACKET 0
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{00543C4F-9F35-4FB8-8EDD-E5E406DC92E8}] DATAGRAM 0
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{79C85D60-21FA-4F22-8B2F-162EB9CC403A}] SEQPACKET 3
LSP: MSAFD NetBIOS [\Device\NetBT_Tcpip_{79C85D60-21FA-4F22-8B2F-162EB9CC403A}] DATAGRAM 3
**** Blocked Control Panel Items ****
BLOCKED: [ncpa.cpl] No
BLOCKED: [odbccp32.cpl] No
**** Downloaded Program Files ****
DirectAnimation Java Classes [file://D:\WINDOWS\Java\classes\dajava.cab]
Microsoft XML Parser for Java [file://D:\WINDOWS\Java\classes\xmldso.cab]
TruePass EPF 7,0,100,684 [
https://blrscr3.egs-seg.gc.ca/applets/entrusttruepassapplet-epf.cab]
TruePass EPF 7,0,100,717 [
https://blrscr3.egs-seg.gc.ca/applets/entrusttruepassapplet-epf.cab]
{166B1BCA-3F9C-11CF-8075-444553540000} [
http://active.macromedia.com/director/cabs/sw.cab]
{17492023-C23A-453E-A040-C7C580BBF700} [
http://go.microsoft.com/fwlink/?linkid=39204] D:\WINDOWS\system32\LegitCheckControl.DLL
{2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} [
http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab] D:\WINDOWS\Downloaded Program Files\ecmldr32.dll D:\WINDOWS\Downloaded Program Files\navapi.vxd D:\WINDOWS\Downloaded Program Files\navapi32.dll D:\WINDOWS\Downloaded Program Files\avsniffdlgs.dll D:\WINDOWS\Downloaded Program Files\avsniff.dll
{5ED80217-570B-4DA9-BF44-BE107C0EC166} [
http://scan.safety.live.com/resource/download/scanner/en-us/wlscbase7617.cab]
{644E432F-49D3-41A1-8DD5-E099162EEEC5} [
http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab]
{8AD9C840-044E-11D1-B3E9-00805F499D93} [
http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab]
{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} [
http://www.pandasoftware.com/activescan/as5/asinst.cab]
{B38870E4-7ECB-40DA-8C6A-595F0A5519FF} [
http://cdn.messenger.msn.com/download/MsnMessengerSetupDownloader.cab]
{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} [
http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [
http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab]
**** Windows Services ****
[6to4] %SystemRoot%\system32\svchost.exe -k netsvcs
[Adobe LM Service] "D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"
[Alerter] %SystemRoot%\System32\svchost.exe -k LocalService
[ALG] %SystemRoot%\System32\alg.exe
[AOL ACS] D:\PROGRA~1\COMMON~1\AOL\ACS\AOLACSD.EXE
[AOLService] D:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe
[AppMgmt] %SystemRoot%\system32\svchost.exe -k netsvcs
[AudioSrv] %SystemRoot%\System32\svchost.exe -k netsvcs
[BITS] %SystemRoot%\System32\svchost.exe -k netsvcs
[Browser] %SystemRoot%\System32\svchost.exe -k netsvcs
[CiSvc] %SystemRoot%\system32\cisvc.exe
[ClipSrv] %SystemRoot%\system32\clipsrv.exe
[COMSysApp] D:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
[CryptSvc] %SystemRoot%\system32\svchost.exe -k netsvcs
[DcomLaunch] %SystemRoot%\system32\svchost -k DcomLaunch
[Dhcp] %SystemRoot%\System32\svchost.exe -k netsvcs
[dmadmin] %SystemRoot%\System32\dmadmin.exe /com
[dmserver] %SystemRoot%\System32\svchost.exe -k netsvcs
[Dnscache] %SystemRoot%\System32\svchost.exe -k NetworkService
[ERSvc] %SystemRoot%\System32\svchost.exe -k netsvcs
[Eventlog] %SystemRoot%\system32\services.exe
[EventSystem] D:\WINDOWS\System32\svchost.exe -k netsvcs
[ewido security suite control] D:\Program Files\ewido\security suite\ewidoctrl.exe
[ewido security suite guard] D:\Program Files\ewido\security suite\ewidoguard.exe
[FastUserSwitchingCompatibility] %SystemRoot%\System32\svchost.exe -k netsvcs
[helpsvc] %SystemRoot%\System32\svchost.exe -k netsvcs
[HidServ] %SystemRoot%\System32\svchost.exe -k netsvcs
[HTTPFilter] %SystemRoot%\System32\svchost.exe -k HTTPFilter
[ImapiService] D:\WINDOWS\System32\imapi.exe
[lanmanserver] %SystemRoot%\System32\svchost.exe -k netsvcs
[lanmanworkstation] %SystemRoot%\System32\svchost.exe -k netsvcs
[LmHosts] %SystemRoot%\System32\svchost.exe -k LocalService
[Messenger] %SystemRoot%\System32\svchost.exe -k netsvcs
[mnmsrvc] D:\WINDOWS\System32\mnmsrvc.exe
[MSDTC] D:\WINDOWS\System32\msdtc.exe
[MSIServer] D:\WINDOWS\system32\msiexec.exe /V
[navapsvc] D:\Program Files\Norton Antivirus\navapsvc.exe
[NetDDE] %SystemRoot%\system32\netdde.exe
[NetDDEdsdm] %SystemRoot%\system32\netdde.exe
[Netlogon] %SystemRoot%\System32\lsass.exe
[Netman] %SystemRoot%\System32\svchost.exe -k netsvcs
[NISSERV] "D:\Program Files\Norton Internet Security\NISSERV.EXE"
[NISUM] "D:\Program Files\Norton Internet Security\NISUM.EXE"
[Nla] %SystemRoot%\System32\svchost.exe -k netsvcs
[NtLmSsp] %SystemRoot%\System32\lsass.exe
[NtmsSvc] %SystemRoot%\system32\svchost.exe -k netsvcs
[ose] "D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
[PlugPlay] %SystemRoot%\system32\services.exe
[PolicyAgent] %SystemRoot%\System32\lsass.exe
[ProtectedStorage] %SystemRoot%\system32\lsass.exe
[RasAuto] %SystemRoot%\System32\svchost.exe -k netsvcs
[RasMan] %SystemRoot%\System32\svchost.exe -k netsvcs
[RDSessMgr] D:\WINDOWS\system32\sessmgr.exe
[RemoteAccess] %SystemRoot%\System32\svchost.exe -k netsvcs
[RemoteRegistry] %SystemRoot%\system32\svchost.exe -k LocalService
[RpcLocator] %SystemRoot%\System32\locator.exe
[RpcSs] %SystemRoot%\system32\svchost -k rpcss
[RSVP] %SystemRoot%\System32\rsvp.exe
[SamSs] %SystemRoot%\system32\lsass.exe
[SBService] D:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
[SCardSvr] %SystemRoot%\System32\SCardSvr.exe
[Schedule] %SystemRoot%\System32\svchost.exe -k netsvcs
[seclogon] %SystemRoot%\System32\svchost.exe -k netsvcs
[SENS] %SystemRoot%\system32\svchost.exe -k netsvcs
[SharedAccess] %SystemRoot%\System32\svchost.exe -k netsvcs
[ShellHWDetection] %SystemRoot%\System32\svchost.exe -k netsvcs
[SNDSrvc] "D:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"
[Spooler] %SystemRoot%\system32\spoolsv.exe
[srservice] %SystemRoot%\System32\svchost.exe -k netsvcs
[SSDPSRV] %SystemRoot%\System32\svchost.exe -k LocalService
[stisvc] %SystemRoot%\System32\svchost.exe -k imgsvc
[SwPrv] D:\WINDOWS\System32\dllhost.exe /Processid:{8E4026E4-7661-42DB-8EDF-0FE362253970}
[SymProxySvc] "D:\Program Files\Norton Internet Security\SymProxySvc.exe"
[SysmonLog] %SystemRoot%\system32\smlogsvc.exe
[TapiSrv] %SystemRoot%\System32\svchost.exe -k netsvcs
[TermService] %SystemRoot%\System32\svchost -k DComLaunch
[Themes] %SystemRoot%\System32\svchost.exe -k netsvcs
[TlntSvr] D:\WINDOWS\System32\tlntsvr.exe
[TrkWks] %SystemRoot%\system32\svchost.exe -k netsvcs
[UMWdf] D:\WINDOWS\system32\wdfmgr.exe
[upnphost] %SystemRoot%\System32\svchost.exe -k LocalService
[UPS] %SystemRoot%\System32\ups.exe
[VSS] %SystemRoot%\System32\vssvc.exe
[W32Time] %SystemRoot%\System32\svchost.exe -k netsvcs
[WebClient] %SystemRoot%\System32\svchost.exe -k LocalService
[wfxsvc] D:\WINDOWS\system32\WFXSVC.EXE
[winmgmt] %systemroot%\system32\svchost.exe -k netsvcs
[WmdmPmSN] %SystemRoot%\System32\svchost.exe -k netsvcs
[Wmi] %SystemRoot%\System32\svchost.exe -k netsvcs
[WmiApSrv] D:\WINDOWS\System32\wbem\wmiapsrv.exe
[wscsvc] %SystemRoot%\System32\svchost.exe -k netsvcs
[wuauserv] %systemroot%\system32\svchost.exe -k netsvcs
[WZCSVC] %SystemRoot%\System32\svchost.exe -k netsvcs
[xmlprov] %SystemRoot%\System32\svchost.exe -k netsvcs
**** Custom IE Search Items ****
SEARCH: [SearchAssistant]
http://www.microsoft.com/isapi/redir.dll?
SEARCH: [CustomizeSearch]
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
SEARCH: [SearchAssistant]
http://www.google.com/ie
**** Complete IE Options ****
IEOPT: [NoUpdateCheck]
IEOPT: [NoJITSetup]
IEOPT: [Disable Script Debugger] yes
IEOPT: [Show_ChannelBand] No
IEOPT: [Anchor Underline] yes
IEOPT: [Cache_Update_Frequency] Once_Per_Session
IEOPT: [Display Inline Images] yes
IEOPT: [Do404Search]
IEOPT: [Local Page] D:\WINDOWS\system32\blank.htm
IEOPT: [Save_Session_History_On_Exit] no
IEOPT: [Show_FullURL] no
IEOPT: [Show_StatusBar] yes
IEOPT: [Show_ToolBar] yes
IEOPT: [Show_URLinStatusBar] yes
IEOPT: [Show_URLToolBar] yes
IEOPT: [Start Page]
http://groups.google.com/group/24hoursupport.helpdesk?lnk=li&hl=en
IEOPT: [Use_DlgBox_Colors] yes
IEOPT: [ShowedCheckBrowser] Yes
IEOPT: [Check_Associations] No
IEOPT: [NotifyDownloadComplete] yes
IEOPT: [FullScreen] no
IEOPT: [Window Title ,0,Microsoft Internet Explorer with Asiatype Urdu Browsers Support]
IEOPT: [Error Dlg Displayed On Every Error] no
IEOPT: [Window_Placement] ,
IEOPT: [Use FormSuggest] yes
IEOPT: [AddToFavoritesExpanded]
IEOPT: [FavoritesExportFile] C:\My Documents\FAV98.htm
IEOPT: [FavoritesImportFolder] D:\Documents and Settings\Administrator\Favorites
IEOPT: [StatusBarOther]
IEOPT: [Use Search Asst] no
IEOPT: [Enable Browser Extensions] yes
IEOPT: [HistoryViewType]
IEOPT: [FormSuggest PW Ask] yes
IEOPT: [Expand Alt Text] no
IEOPT: [Move System Caret] no
IEOPT: [NscSingleExpand]
IEOPT: [DisableScriptDebuggerIE] yes
IEOPT: [NoWebJITSetup]
IEOPT: [Page_Transitions]
IEOPT: [FavIntelliMenus] yes
IEOPT: [UseThemes]
IEOPT: [Force Offscreen Composition]
IEOPT: [AllowWindowReuse]
IEOPT: [Friendly http errors] yes
IEOPT: [ShowGoButton] yes
IEOPT: [SmoothScroll]
IEOPT: [Enable AutoImageResize] yes
IEOPT: [Enable_MyPics_Hoverbar] yes
IEOPT: [Play_Animations] yes
IEOPT: [Play_Background_Sounds] yes
IEOPT: [Display Inline Videos] yes
IEOPT: [Show image placeholders]
IEOPT: [Print_Background] no
IEOPT: [LastCheckedHi]
IEOPT: [NoSaveAsPOSTWarning]
IEOPT: [Use Custom Search URL]
IEOPT: [FavChevron] NO
IEOPT: [FormSuggest Passwords] yes
IEOPT: [Error Dlg Details Pane Open] yes
IEOPT: [Default_Search_URL]
http://search.msn.com
IEOPT: [Search Page]
http://www.google.com
IEOPT: [Search Bar]
http://www.google.com/ie
IEOPT: [AutoSearch]
IEOPT: [Default_Page_URL]
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IEOPT: [Enable_Disk_Cache] yes
IEOPT: [Cache_Percent_of_Disk]
IEOPT: [Delete_Temp_Files_On_Exit] yes
IEOPT: [Local Page] %SystemRoot%\system32\blank.htm
IEOPT: [Anchor_Visitation_Horizon]
IEOPT: [Use_Async_DNS] yes
IEOPT: [Placeholder_Width]
IEOPT: [Placeholder_Height]
IEOPT: [Start Page]
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IEOPT: [CompanyName] Microsoft Corporation
IEOPT: [Custom_Key] MICROSO
IEOPT: [Wizard_Version] 6.0.2600.0000
IEOPT: [FullScreen] no
IEOPT: [CustomizeSearch]
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IEOPT: [SearchAssistant]
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IEOPT: [IEWatsonEnabled]
IEOPT: [Default_Search_URL]
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IEOPT: [Search Page]
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch