Thanks for your response. I had gone through those before I posted here. I have not given WP a fresh load yet, as I have a feeling it might be somewhere in the database or the server's apache software. Being that none of the php or js files have been modified.
I was looking more for ideas on where to check or possible SQL queries to run for known malicious code.