If you are using Jumi, you might be at risk.
Versions of Jumi, older than 2.0.5 and some versions of 2.0.5 as well include a backdoor. The author has released a clean version on his website. You can download the clean version and install it.
If your site has already been infected, it is recommended that you search for and delete the following files: