Not many sites are infected with this variation. Main injected script:
Those links lead to multiple exploit kits affecting desktop (Windows) users.
Affecting: Any web site (no specific target).
Clean up: Malware is hidden at the index.php or index.html files.
Last update: Aug/2012