Thanks to all who replied. I've now taken the following steps;
Put info on our website Informed our provider. Complained to the company that hosts the website featured in the spam (For all the good that'll do - hananet.net ***sigh***) Upgraded to the latest version of our relay MTA. This allows for LDAP queries at smtp time. The version we used before would only ask the destination if the recipient was acceptable and as the destination server is an Exchange server everything with the correct domain was accepted - now its not. Thanks again. Patrick
