Thanks Mike for "your opinion". It is not mis-imformation. I tested it several times and whoever classified it as a browser hijacker OBVIOUSLY doesn't know what one is. If one has their browser hijacked it would affect "every" site they use the browser for and not just ONE third party script. Every time they call their browser up, it will load. It will affect everything not just one site they load.
Again I state that I have several versions of WP off of the same server and using the same browsers. FF on my Win machine and Google Chrome on my Linux box and the only time the iFrame injection shows up is with the "latest" version of the WP theme. All of my other WP versions don't call it up "using the same browsers." So where is the hijack???
Did you read that? Same browsers, same machines, different WP sites and the injection doesn't execute. If my browsers were hijacked it would execute each and every time I call them up on all sites because hijackers are local side exploits not server side. So please don't spread MIS-Information about Browser Hijackers.
If anyone is experiencing this issue, install the plug-in Exploit Scanner and it will take you right to the line of code plus show you any injections on your posts. I already have done it and the issue is resolved.
By the way MikeDiesel12, I am curious to know who does the site botcrawl.com belong to? Seems to be loaded with lots of 3 party AV scripts outside of WP.
Kudos to the coders of the Exploit Scanner Plug-in!