A conditional redirection (Blackmuscats) was detected on the web site, sending users to a domain pushing the Fake V to anyone visiting the compromised site.
This is a very common malware infecting thousands of sites (Jul/Aug 2012).
Updates in names being used: http://labs.sucuri.net/?note=2012-08-02
Some of the domains being used:
Any web site (no specific target).
Malware is hidden at the index.php or index.html files.