Anyone who has travelled here from the dirty interweb recently, probably was encountered with a Safe Browsing alert. Well anyone that isn't using IE anyway, it doesn't seem to mind travelling to sites that distribute malware. Basically, DavTraff manufactured a beautiful piece that ran through my wordpress installation and added it's distribution <iframe/> to anything it could.
Alerts started coming in from friends and family, and when I investigated I found that they made use of the online website editor feature in WordPress to facilitate their dirty deed. Needless to say, that feature has been disabled. The cleanup was a battle hard won with find, sed and grep. After surgically removing the offending code from over twenty files, my site was once again ready to emerge from quarantine.