Identifying the spam source on my Centos6.9 smtp sendmail server

Solution 1:

(Note: I determined your FQDN from the screenshots and browsed your web site)

The problem may be that you permit email sending via a form with no captcha or control:

Email form from web site

Your server claims the mail is sent:

Server output describing mail send

I could verify that email was sent to my server, but my server rejected it because you're on Spamhaus RBL:

# grep 1xx.1xx.1xx.2x mail.log
Jan 14 14:24:11 bifrost postfix/smtpd[249717]: NOQUEUE: reject: 
    RCPT from s1xx-1xx-1xx-2x.ax.hxxx.txxxx.net[1xx.1xx.1xx.2x]:  
    554 5.7.1 Service unavailable; Client host [1xx.1xx.1xx.2x] blocked using zen.spamhaus.org;  
    https://www.spamhaus.org/query/ip/1xx.1xx.1xx.2x;  
    from=<[email protected]>  
    to=<[email protected]>  
    proto=ESMTP helo=<wxxxxxx.cxxxxxx.wxxxxxx.ca>

Your next steps should be to protect all such forms on your web site with a real CAPTCHA - not just the name of the mayor, as another form on your site requires - and then see about getting de-listed from Spamhaus and any other RBL you've ended up on.