On 19/09/11 09:11, Steve Basford wrote: >> Hi all, >> >> We are still seeing this error. >> Could anyone adjust the signature? >> >> Thank you in advance. > Hi, > > It'll be removed in the next update... > > Cheers, > > Steve > Sanesecurity > > I can remove it from the APER list as it's unlikely to be a real reply address used by phishers, but it might be better to stop the Sanesecurity signatures matching substrings if this is possible (I'm not enough of a ClamAV expert to know how to do it if it is ;-) ) Best Wishes, Chris -- --+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+---+- Christopher Wakelin, c.d.wakelin@xxxxxxxxxxxxx IT Services Centre, The University of Reading, Tel: +44 (0)118 378 2908 Whiteknights, Reading, RG6 6AF, UK Fax: +44 (0)118 975 3094