I was going through my server logs and I have been frequently seeing more and more pages with this URL, or one like it, in my "Failed Referrers":
Expand|Select|Wrap|Line Numbers
- http://www.infectionist.com/forum/index.php+++++++++++++++++++++++++++Result:+%E8%F1%EF%EE%EB%FC%E7%EE%E2%E0%ED+%ED%E8%EA%ED%E5%E9%EC+%22abrawnloxTrow%22
eval(gzinflate(base64_decode("...")));
With the "..." being a VERY long string that decoded to a PHP page that would be eval()'d and give someone complete access to my server, including searching for config files, htpasswd files, executing shell commands...the works.
Does anyone have any idea what this strange URL means? I know it was in the failed referrer section, but still...