Slight change to Facebook malware

This is a slight change to this post.

null

http://heartbeat.scoundrelly .eu/load/dlimage4.php?9618

You can also catch this if its coming directly from facebook (main distibution method) with something like this:

HTTP Method = GET
HTTP Referer = http://www.facebook.com/
Content-type = application/force-download

Comments are closed.