Another SSH attack from hacked Windows IIS server

Submitted by tarvid on Wed, 09/28/2016 - 09:06

This time from 45.35.110.17 which is in a netblock 45.34.0.0/15. The server is in The Los Angeles area. The website is in Chinese. NOC abuse was notified and the following response was received.

support@psychz.net 9:10 AM (9 minutes ago) to me Hi, We have notified the client regarding the abuse. They have 24 hours to take necessary action. If you still notice the abuse after 24 hours, kindly reply to this ticket and we will null the IP address. Your Ticket Deatils (sic) are as follows: Ticket ID: 1160483 Subject: hacked widows IIS server at 45.35.110.17

The host appears to be a cloud provider. That means virtually anyone can rent a server,