Hi, Firstly, I've done an update to the Unofficial Phishing Signatures.
Secondly... will whoever is using ip address 216.35.188.119, please sort out their wget config file:
216.35.188.119 - - [29/Jan/2006:20:36:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:38:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:40:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:42:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:44:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:46:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:48:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:50:02 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:52:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:54:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:56:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2" 216.35.188.119 - - [29/Jan/2006:20:58:01 +0000] "HEAD /clamav/phish.ndb HTTP/1.0" 200 0 "-" "Wget/1.10.2"
I don't update the sigs *that* often ;) IP has been blocked access for now. Cheers, Steve _______________________________________________ http://lurker.clamav.net/list/clamav-users.html
