> > What is this script doing? Going through differnt wet sites? > > Anybody have more insight on this? > > The "Received: from 96139.com ([202.107.34.130])" is actually coming from > China: > > inetnum: 202.107.0.0 - 202.107.127.255 > netname: CHINANET-LN > descr: CHINANET Liaoning province network > descr: Data Communication Division I get MORE spam from guys inside their domain than all others combined, I think... > And > === > > Domain Name:96139.com > > > Registrant: > Liaoning Mobile Information Industry Ltd DOn't recognize this, but I never went that far when I fooled with tracking the email down, because I don't bother any more, I just throw them into my teergrube and forget about it.... rc