Checked and double checked, can't find anything like that on the server or my client?
You sure it's nothing being injected client side on your machine? The "last updated" dates for the php and associated files are from a year or so ago and are clean, so pretty sure it's not the site...