Thanks for the quick response from everybody. I also received a few
suggestions off-line. I didn't take any action or do anything and the
issue went away just a quickly as it started. John, the link was
http://quake.wr.usgs.gov/recenteqs/latest.html and it failed from the
link on the main page on the PSN San Jose web page housed at Earthlink.
It also crashed when I put the URL in the navigation bar in IE which
promted me to post the question to the list. I do run McaFee and Spybot
on all my systems and I ran a full scan with both products this morning
and other than a bunch of cookies it looks like nothing got hammered. I
also FTP'ed to the PSN SJ website on Earthlink and the page has not been
altered. 
 
No Jan <> I was not out cruzing the porn sites.  However I tend to
agree with Larry's analysis about mal-ware. I remember receiving a
warning message from Spybot earlier yesterday after doing a search in
Google for a "granite stone shower soap dish." (I'm getting ready to
tile a bathtub area.) And the message said I was clicking on a link that
was known to plant mal-ware and it (Spybot) was blocking the browser
from going to the URL. Maybe it got me before the browser stopped?
Anyway, now all seems well with the world. However, just to play it safe
after reading Larry's comments, I'm flushing the cache on that system in
the event there are traces still around.

Thanks for all the help. 
Steve Hammond  PSN

-----Original Message-----
From: psn-l-request@.............. [mailto:psn-l-request@...............
On Behalf Of Larry Conklin
Sent: Monday, March 12, 2007 1:47 PM
To: psn-l@..............
Subject: Re: Has http://quake.wr.usgs.gov/ been hacked?


It sounds to me like some sort of maleware has altered your hosts file. 
    The hosts file is the first place your browser looks to resolve a 
site address into the actual IP address that is used to access the site.

  So if the IP address that is associated with http://quake.wr.usgs.gov/

gets changed to a porn site, that's where you wind up.  If you do a 
Google search on "hosts file" you will find a lot of information that 
will help you locate it on your system and clean it up.  I'm sure that 
there are a lot of tools that you can find that will make the job 
easier, and a lot of security tools will prevent maleware from making 
alterations to your hosts file.

Stephen Hammond wrote:
> I think this link has been hacked.  http://quake.wr.usgs.gov/ It 
> should be the local California seismic activity. I get a porn site 
> when I click on the link and I also get a panel that says the link is 
> no longer valid. Are others seeing the same thing? Thanks, Steve 
> Hammond
> 
> __________________________________________________________
> 
> Public Seismic Network Mailing List (PSN-L)
> 
> To leave this list email PSN-L-REQUEST@.............. with
> the body of the message (first line only): unsubscribe
> See http://www.seismicnet.com/maillist.html for more information.
> 
__________________________________________________________

Public Seismic Network Mailing List (PSN-L)


__________________________________________________________

Public Seismic Network Mailing List (PSN-L)