Internal address redirected to a chinese web site?
I have 1 system within a 50+ client network that when trying to connect to a internal web server it gets redirected to a chinese web page. I have run combofix, malwarebytes and endpoint scans and they all come up clean. When I reset IE7 back to defaults it was fine till I rebooted the pc. Then it was back again. I do not see anyting in the add/remove programs applet that has chinese languae packs or sanuthing out of the ordinary. I do not see anything in the startup out fo the ordinary. this is the only system affected and all of the systems access the internal address that I am trying to access. The web address that it goes to is autosearch.gd.vnet.cn. I have tried and got the same results using firefox. I have attached a highjackthis log. Any suggestions will be appreciated. hijackthis.log