Looking at the URL structure this is some service (
grex.com) that hosts
user accounts (~henced) where someone has hosted a page. That someone
may not at all be related to this spam, it may be a hacked account.
The article was posted on usenet via another service, but that account
already has been shut down. Of course it will be quite easy to create
a new account for the next run.