If the malicious code is in WordPress, just reinstall it.
If it's in plugins, download them afresh.
If it's in the theme and you've not made customisations, just download and reinstall the theme.
If you've modified the theme, yeah good luck! Can't really recommend anyone but there's always http://jobs.wordpress.net/