It could be that a hacker was able to install some SPAM scripts on your server. You could try to go to Google Webmaster Tools and look under Diagnostics->Malware. Maybe Google has found something while crawling your site.

Another approach is to look if the IP of your server is listed in one of the SPAM block lists. You can try the IP checker at [spamhaus.org...] or the checker at [spamcop.net...] for example to see if your IP address is listed in their databases.

And there is a third possibility. Maybe the email is just a hoax, or a malware/scareware attempt. If you are in doubt if the email is original, one telephone call to the abuse department of your dedicated server provider would clear things up.

thanks for your good advices

no one of our ip addresses are not on their black lists

we have not used as yet google webmaster tools.we will install it soon I don`t know how much time it needs for verifying and using this service


about their possibility I found email of my data center
emailed them waiting their reply

Another possibility is that you are automatically bouncing spam. Bounces go to the spoofed addresses on the original messages and these people may be reporting you as a spammer.

It's also possible your server is hacked and spewing out spam by the buckets.

That activity is easy to spot if you or your ISP has a traffic monitoring system in place as you'll see large spikes of traffic.

Are you sure the email really did come from the host? It is easy to spoof the from address in the email, and the email you copied in your first post reads like a phishing attempt. Or if the file they sent has an unusual extension (many dots including perhaps .bat or .exe) then an attempt to make you open a virus.

Contacting the host directly would be the first step - not by replying to the email or via any links in the email, but by going to their site and finding their support email or system and asking them what the problem is. Copy them the email you were sent.

All of these are god suggestions - but in my experience, especially since

I my self don`t know anything
about managing dedicated server.someone manage my server voluntarily

You're on unsure ground, there are three avenues I would look for first.

1. As mentioned: Do you have **any** autoresponders?

From:my-intended-attack@example.com
To:your-easy-to-guess-account@yourexample.com

Someone sends a thousand of those and they bounce the autoresponder to my target, using you as the mail server. Kill all autoresponders.

2. Do you have any free mailer scripts on your site?

Many of these are extremely sloppy, and allow me to do things like this:

to: 1@example.com,2@example.com,3@example.com,4@example.com,5@example.com,6@example.com . . . .

Or some other vulnerability, like modifying headers to add a bcc field, submitting multipart input, there are more. Look to your mailer scripts.

3. How well do you trust this volunteer, and how skilled are they? They should be able to determine the source in an hour or less, and put a stop to it in most cases. I hate to sound paranoid, maybe they are taking advantage of the situation. See what they can do to help you.

thanks for supporting

data center is in canada I live in one of middle east countries .the server belongs to me
but bc of some financial problems here to send money for them i had to ask my brother who lives cyprus to order server and pay its money month by month .and as i said before bc I don`t know about managing server one of users of my sites accepted to manage my server voluntarily.he is member of team of best and papular hosting company here.after 6 years activity and 11k visits per day I have not succeded to monetizie my site.then finanicial issue is another problem for me.I think the one who manage my server is relaible then problems are extensive

in reply to my ticket to data center they said it costs 75$ per hour for them to solve my problem... that is too much for me. I asked them to give us one sample of the spams at least as my server manager asked me then waiting their respond

thanks for good advices.bc I don`t know about managing server I can`t comment about them i reported this topic to my server manager hope to help the problem

I had exactly the same situation last december: site hacked by russian hackers. As they were in the root level (I know that after pay three half hours of advanced support: 129$) just unplugged the server and moved on to other hosting company.

If you have a mail server included, it is possible the system allows open relay in SMTP. That should be checked as well as all the above.