GhostRedirector

ESET Uncovers 'GhostRedirector' Using IIS Malware to Skew Google Rankings on 65 Windows Servers

Researchers describe abuse of a native IIS module that only rewrites Googlebot requests to promote gambling sites.