Wordpress Site Hacked

[leporello]

Last night I left a virus scan running on my laptop and found that there was an iframe virus contained in the backup files of one of my sites. This was a newish site and I'd assumed up til now it had been penalised or was sandboxed. I downloaded a plugin called WP Exploit Scanner and found quite a few iframes that redirected to a known .ru malware site theanotherlife throughout the php files.

However, there were also lots of other iframes that were picked up. I've no idea if they are malicious or otherwise. Maybe you guys can help out. Some examples are.

/wp-admin/plugins.php:252
Context
<iframe style="border:0" width="100%" height="70px" src="<?php echo admin_url('plugins.php?action=error_scrape&plugin= ' . esc_attr($plugin) . '&_wpnonce=' . esc_attr($_GET['_error_nonce&#

[ABSPATH]/wp-admin/plugin-editor.php:131
Context
<iframe style="border:0" width="100%" height="70px" src="<?php bloginfo('wpurl'); ?>/wp-admin/plugins.php?action=error_scrape&plugin=<?php echo esc_attr($file); ?>&_wpnonce=<?php echo esc_at

[ABSPATH]/wp-includes/js/scriptaculous/controls.js:100
Context
'<iframe id="' + this.update.id + '_iefix" '+


Before I send a reinclusion request to Google I want to make sure that all this garbage is cleaned off the site. Is there any quick fix or plugin that will help with this process. when it's an obvious one that links to a 3rd party domain it's easy for me but if it's doing something like a url lookup from a file it's palced on my server i dont really know how to spot em...

Thanks.

[MewsicLovr]

Sorry to hear about that, being hacked sucks. Those two you see there are ok though, scriptaculous is a well known utilties library (script.aculo.us - web 2.0 javascript) and the other handles errors on plugin activation.