I am helping a friend fix her website. it appears someone was able to create an admin account in wordpress and upload bad stuff to her website. The most important things to do are to have your site updated to the latest release, http://wordpress.org/download/ and to be careful of plugins, and only have the themes installed that you are actually using. it appears that themes that are installed but not activated can also be used to make a mess.

here are some links to help those of you that may fall into the same problem

https://www.google.com/webmasters/tools

https://badwarebusters.org/main/itemview/27361

http://redleg-redleg.blogspot.com/2011/12/latest-wordpress-hack.html

http://redleg-redleg.blogspot.com/2011/08/malware-hosted-newportalsecom.html

http://www.stopbadware.org/home/security

http://redleg-redleg.com/file-viewer/

http://markmaunder.com/2011/08/01/zero-day-vulnerability-in-many-wordpress-themes/

http://markmaunder.com/2011/12/08/wordpress-security-ways-hack-wordpress-site/

http://codex.wordpress.org/Hardening_WordPress

http://25yearsofprogramming.com/php/findmaliciouscode.htm

And other interesting news:

http://www.darkreading.com/advanced-threats/167901091/security/news/232900618/apple-mac-attack-began-with-infected-wordpress-sites.html

 http://www.darkreading.com/security/news/232800313/imperva-report-deconstructs-rfi-attack-vector.html

http://www.darkreading.com/vulnerability-management/167901026/security/news/232602207/rogue-av-campaign-infects-more-than-200-000-web-pages.html

I will add more as I delve into this project.