On server 2003 in internet explorer>tools>security>trusted sites>sites. there is a URL that keeps comming back. When I remove it, it returns as soon as I open the trusted sites again. I even explictly added it to the restricted sites section and it still comes back.
I have investigated the site a little and it has a .uk attached to it. after doing a whois on them it says the site does not exist, but I was able to go to "central ops" and was able to trace it to denmark... copenhagen to be exact... it is a hacking site of sorts and a fairly interesting one at that. but I do not want this thing stuck on a server at work. "It almost feels as if it is saying... you have been hacked by (web.site.name.uk)"
Virus scans show nothing about this issue, neigther does the "windows malicious software tool". I have only been running this network a short time and believe it came about before my tenure. Any thoughts on how to get rid of this and how to look into what they may have done would be more than appreciated.
The forest has control of the firewalls, I am not able to control them.