I got hacked, so rather than crawl through the site to find any altered code just to save a hand full of posts, i've decided to nuke the blog and rebuild it with the latest version of wordpress which hopefully is a little better at preventing sql injection. till then...