What's this Mustafa !!! I've created a test domain with just phpinfo.php file on it.
188.138.112.23 - admin2 [06/May/2013:17:58:02 +0200] "PUT /home/admin2/test.domain.pl/j3CQRFYD.gif" 200 10
188.138.112.23 - admin2 [06/May/2013:17:59:08 +0200] "PUT /home/admin2/test.domain.pl/php.php" 200 27
188.138.112.23 - admin2 [06/May/2013:17:59:15 +0200] "PUT /home/admin2/test.domain.pl/php.php" 200 105936
82.165.150.42 - admin2 [06/May/2013:22:54:12 +0200] "PUT /home/admin2/test.domain.pl/xw7WN9cR.gif" 200 10
82.165.150.42 - admin2 [06/May/2013:22:55:21 +0200] "PUT /home/admin2/test.domain.pl/php.php" 200 105936
82.165.150.42 - admin2 [06/May/2013:22:55:36 +0200] "GET /home/admin2/test.domain.pl/.htaccess" 200 1585
82.165.150.42 - admin2 [06/May/2013:22:55:36 +0200] "PUT /home/admin2/test.domain.pl/.htaccess" 200 3247
82.165.150.42 - admin2 [06/May/2013:22:55:37 +0200] "GET /home/admin2/test.domain.pl/.htaccess" 200 3298
82.165.150.42 - admin2 [06/May/2013:22:55:37 +0200] "PUT /home/admin2/test.domain.pl/.htaccess" 200 3247
188.138.112.23 - admin2 [06/May/2013:23:26:56 +0200] "PUT /home/admin2/test.domain.pl/GrvwJTBq.gif" 200 10
188.138.112.23 - admin2 [06/May/2013:23:28:03 +0200] "PUT /home/admin2/test.domain.pl/php.php" 200 105936
62.149.195.237 - admin2 [06/May/2013:23:28:32 +0200] "PUT /home/admin2/test.domain.pl/YjkXnxZd.gif" 200 10
62.149.195.237 - admin2 [06/May/2013:23:29:38 +0200] "PUT /home/admin2/test.domain.pl/box.php" 200 27
62.149.195.237 - admin2 [06/May/2013:23:29:40 +0200] "PUT /home/admin2/test.domain.pl/box.php" 200 105936
Inside there is something strange - professionally written virus that steal passwords, databases etc. !
