Renamed "nimba" to real name "nimda"

diff --git a/wwwroot/cgi-bin/lib/worms.pm b/wwwroot/cgi-bin/lib/worms.pm
index 97816d28f790b3855255d06dffc38cbcdcc82bec..fc1c69f4c0e691976a5cef6f3a448c6b6cfd585b 100644 (file)
--- a/wwwroot/cgi-bin/lib/worms.pm
+++ b/wwwroot/cgi-bin/lib/worms.pm
@@ -34,12 +34,12 @@
 %WormsHashID = (
 '\/default\.ida','code_red',
 '\/null\.idq','code_red',
-'exe\?\/c\+dir','nimba',
-'root\.exe','nimba',
-'admin\.dll','nimba',
+'exe\?\/c\+dir','nimda',
+'root\.exe','nimda',
+'admin\.dll','nimda',
 '\/nsiislog\.dll','mpex',
 '\/sumthin','sumthin',
-'\/winnt\/system32\/cmd\.exe','nimba',
+'\/winnt\/system32\/cmd\.exe','nimda',
 '\/_vti_inf\.html','unknown',
 '\/_vti_bin\/shtml\.exe\/_vti_rpc','unknown'
 #'/MSOffice/cltreq.asp'                # Not a worm, a check by IE to see if discussion bar is turned on
@@ -53,7 +53,7 @@
 %WormsHashLib = (
 'code_red','Code Red family worm',
 'mpex','IIS Exploit worm',
-'nimba','Nimba family worm',
+'nimda','Nimda family worm',
 'sumthin','Sumthin worm',
 'unknown','Unknown worm'
 );