• Ryan

    Member
    February 22, 2022 at 12:56 am
    Newbie

    Here is a list of the things I have done so far –

    Screen shot a message of the item for sale before he was able to make it vanish (after I paid of course)

    Saving all messages because this fella has become so comfortable he continues to communicate. I was able to get him to say that he ‘shipped the item’ even though we all are aware it won’t show up.

    I reported to the federal fraud website

    I emailed Indiana’s AG (previous state of residence)

    I emailed South Dakota’s AG (current state of residence)

    I have emailed and reported to Facebook

    I reported to youtube that his account is being used to advertise for his fraud scheme (including texts with the link)

    I have pulled a full background check on both Jon Paul Schell and his wife Shirley Anne Remington (Currently Shirley Anne Schell). If anyone want’s a copy of those, feel free to email me at nacnacpro400ex@aol.com

    Current Address is one of two, the first being the most probable

    5150 Leroy Street, Rapid City, South Dakota, 57703

    3813 School Drive, Rapid City, South Dakota, 57703

    Current phone number is 605-389-4598

    605-595-5783 may be Shirley’s number but I can not verify this one.

    His last known employment was with Berendse and Sons Paint

    He claims he is the owner of Full Throttle Hot Sauce

    Attached are some photos he just sent claiming he bought some real estate property

    Also adding some of our conversation so people can get a feel for how this guy operates

    Here is a link to his youtube

    https://www.youtube.com/watch?v=WnG1etWKdAA&feature=youtu.be

    I am sure I am missing some details but hopefully this helps at least one person. If anything new comes to light with the AG, I will report here.



Trustscore

Domain: dropbox.com

Established: 1995-06-28

Server IP Address: 205.251.193.59

Domain Blacklisted: No

In computing, a blacklist, disallowlist, blocklist, or denylist is a basic access control mechanism that blocks all malicious elements (email addresses, websites users, …)

Suspended Site: No

When your website account is suspended, it means the hosting provider has temporarily taken it offline. Website hosts often suspend websites for a myriad of reasons ranging from malware to spam.

Email (MX) Configured: Yes

Verification that the website has its entity’s proper IMAP (Inbox) and SMTP (Outbox) mailbox servers configured correctly.

DMARC Configured: Yes

DMARC is an open email authentication protocol that provides domain-level protection of the email channel. DMARC authentication detects and prevents email spoofing techniques used in phishing, business email compromise (BEC), and other email-based attacks.

SSL Cert Blacklisted: No

Hackers have discovered ways to circumvent, alter, or abuse SSL certificates. An SSL certificate blacklist is a list of untrustworthy SSL certificates that have been created and can potentially harm users.

Website Popular: No

Risky TLD: No

The TLD (Top Level Domain) are the last characters of an entity’s website name, such as .com, .org, etc. Cyber-criminals and threat actors prefer a small set of 25 out of the thousands of available extensions, which accounts for 90% of all malicious sites. A Risky TLD is verification that the domain name is not to be trusted.

Heuristic Pattern: No

If a website uses Heuristics, then it is a scanning method that looks for malware-like behavior patterns. It is commonly used to detect new or not-yet-known malware.

Risky Geolocation: No

Verification to an entity’s geolocation status being labeled as ‘Risky’.

Suspicious Domain: No

Verification the entity’s domain is not listed as being “Suspicious”.