Rename the Malware Bytes executable to have a ".com" extension. I've run into that before and renaming the executable tricks whatever was blocking it into allowing it to run.
(I am at work now)
Ran the MS tool, it found nothing.
Uninstalled and re-installed Malwarebytes Pro Version. It found two trackers. Deleted them, rebooted and now I see the regular page.
Logged into PayPal from work though, not home.
It doesn't really matter. If his dns is poisoned, the site could still look identical to the real one. Whether it is just cloned, iframed, or just being proxied. To prevent SSL cert warnings while still allowing logins and transactions to work it is probably proxied.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.