No luck so far.
sitecheck.sucuri.net/scanner says everything is clean. unmaskparasites.com found nothing.
I used TAC and reviewed the 2 static links in the theme and it is OK.
I am using All-in-One WordPress Security and have the site pretty locked down.
I am reviewing 14 posts that are possibles based on one of the articels mentioned (iframe, noscript, and display). So far they are only images with the display parameter showing in the code.
Anyone else seen this exploit?
Harry
