David Mendes - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User David Mendes joined AbuseIPDB in March 2024 and has reported 3 IP addresses.

Standing (weight) is good.

INACTIVE USER

IP	Date	Comment	Categories
🇺🇸 172.67.148.16	18 Sep 2025	Phishing email, which lures the user to download an Adobe Updater .js file. This script then downloa ... show more Phishing email, which lures the user to download an Adobe Updater .js file. This script then downloads other files, and communicates with https://reporter9128.s3.us-east-1.amazonaws.com/base46.txt to extract and execute a b64 encoded batch script, which then executes a nasa.exe file on the target. show less	Phishing Hacking
🇲🇾 111.90.141.53	13 Aug 2025	Phishing of an outlook login, using the receiving user email directly in the email field.	Phishing
🇨🇦 23.227.38.32	22 Jul 2025	One of our users received a phishing email from this domain ([email protected]). The campai ... show more One of our users received a phishing email from this domain ([email protected]). The campaign leveraged a Cisco's SEG address, which would forward users to https://ct44648218iv5n2pzz4qublvko83bymu3v6fq5yjrck[.]grubmarkets[.]com IoCs: - 23[.]227[.]38[.]32 - 64[.]29[.]17[.]65 - 216[.]198[.]79[.]1 - ct44648218iv5n2pzz4qublvko83bymu3v6fq5yjrck[.]grubmarkets[.]com - dedicatedaudio[.]com show less	Phishing Email Spam