From Wikipedia
Researchers describe abuse of a native IIS module that only rewrites Googlebot requests to promote gambling sites.
