I went to make some changes in an included page and found this code in only one of the many included files. Any one have any idea what this is?
<?php echo "<?ã¼¼æµ¸â¬æ•¶ç²æ½©ãµ®ã„¢ã€®â€¢æ¹¥æ½£æ¥¤æ®âˆ½ç‘µâµ¦âˆ¸ã¸¿?".">"; ?>
viewing source shows a series of squares and a copy and paste is what is below.
Perms on this file are 644 and owned by root. It is on a dedicated server. It is the only file changed on 11-12-09. The includes are hardwired.
It looks to me like some kind of XML feed (echo "<? . . .).
If it was a hack, wouldn’t it be more defacing than just an echo, which by the way is not visible in the rendered include page because of my charset. I realise it is a char encoding thing but what is it doing?
As always, Thanks for your input and speculation.