When Will changed around the server settings to use a public DNS server instead of Marriott's, the problem disappeared, leading Will to think someone had "poisoned" Marriott's DNS servers to drive traffic to their casino scam page(s). He then reported this to Marriott's techs. We've spoken ourselves with Marriott's server people and they confirm that the secondary DNS is wacked but they need to investigate further.

Could this be Cisco 4400 series virtual gateway IP address being 1.1.1.1 and getting taken advantage by malicious forces unknown? Next time you're at the Courtyard Marriott on Cerrillos Rd in Santa Fe, NM, run a traceroute and tell us.

We have no idea, but even if this turns out to have an innocuous explanation, travelers should be extra-cautious when using unknown internet connections. — BEN POPKEN