Not sure it was have another infection (there's something about www. w3 . org at the top of the html- purposely set apart so no one clicks it accidentally) or just a problem for me, but the quote function is hanging again.
Yeah, already notified the hosting people. Oleg's Gallery2 website is allegedly the breach. Hosting people are working on it.
Initial blame was levied on APS. Which I gently demurred to probably not being the case. Looks like it was indeed not the APS. My bet however was on Wordpress, but apparently not. Malicious code removed so situation is safe. Probably. I'll give it another look in case I missed something.
I'll nuke the code and reinstall. I'd say I'd do that Friday, my next day off. But I remember the bazillion "Hey, it's still broken!" messages
after I posted "Known issue, it will be resolved on X". So, maybe Sunday.