Spammers do not use your webserver, but your application/website running on it. If you have an old/outdated CMS system, a not well made form to email script (formmail), or even worse, a trojan or back-door software, then they can use that for sending crap from your server. Besides of these, there are plenty of other ways for abusing hardware/software, these are just few thoughts which looks to be your case based on your (short) description.

To resolve the issue, you will need to find sample(s) of the spam mails originated from your server and observe the headers of the email, you might be able to find some clue about where it was sent, and based on the timestamp of the message you will be able to identify the source in your logs (hope you have that enabled).

Besides of this, Apache has really nothing to do with spamming, nor with email, unless you have mod_proxy [httpd.apache.org], mod_proxy_connect [httpd.apache.org] and AllowCONNECT [httpd.apache.org] enabled, and it is not well secured.

The first thing you need to do is get your hands on a copy of one of those emails. Check the headers. It will tell you the IP of origin. If your ip address isn't there, then they're not using your IP, they're spoofing your domain as a reply address and actually sending it from somewhere else. Little you ca do about that (other than maybe read about SPF records).

If your IP is in the header, you're being hacked. First check if you're an open relay (google for 'check for open relay' or something like that). If you are - not likely - then fix that.

Otherwise, you've got a hacked script. You can diagnose this by watching your email and website logs but the fact is the real solution IMO is to call in a pro to get it fixed right.

I have thought about getting a PRO to look at this, but Im nt sure how I find the good once and to a good price, I do have a few email forms on some sites, maybe I should delete those.