update for qnap_ransomware / CVE-2021-20210423

2021-04-23 09:12:05 +02:00 · 2021-04-23 09:12:05 +02:00 · 0ab17aea86
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/2021-04-23.timestamp
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/2021-04-23.timestamp
@ -0,0 +1 @@
+1619160820
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/README.md
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/README.md
@ -0,0 +1,75 @@
+
+
+
+![TLP:AMBER](https://github.com/COVID-19-CTI-LEAGUE/PRIVATE_FEEDS/blob/master/MARKDOWN_RESOURCES/TLP-IMAGES/TLP-AMBER.jpg)
+
+##
+
+
+## Details and Analytics for qnap_ransomware / CVE-2021-20210423
+
+- [NIST on CVE-2021-20210423](https://nvd.nist.gov/vuln/detail/CVE-2021-20210423)
+- [Alert](alert_text.md) - Notes to that alert
+- [Summary](summary.md): asn/country/network - based summary
+- [Data](data) - all data, separated by country
+- [TimeStamp](2021-04-23.timestamp)
+
+The lists are generated based on combined shodan/OSINT-Queries.
+
+If we detect a certain CVE with ( CVSS > 8 AND Remote AND Unauthenticated AND
+(RCE OR PriviledgeEscalation OR FileAccess) or exploits going around,
+we check if there is a posibility to catch al effected hosts/IPs
+that could be prone of attacks/exploitation, via shodan and OSINT.
+
+in a second step we analyse affected IPs and generate ASN/Country-Attribution
+that will be placed in [data](data)
+
+
+## Detail - Format (file and content)
+
+- files are plaintext
+- file_names are generated by CVE + country [CN]
+ 
+-> CVE-20202-XXXX/CVE-2020-XXXXX-[CN].list
+
+
+file_content:
+
+~~~
+
+Country: CZ 
+
+147.228.XX.YY    | ASN.  2852 | CESNET2, CZ  
+147.228.XX.YY    | ASN.  2852 | CESNET2, CZ  
+195.113.20.168   | ASN.  2852 | CESNET2, CZ  
+78.128.216.72    | ASN.  2852 | CESNET2, CZ  
+193.85.156.216   | ASN.  5588 | GTSCE GTS Central Europe / Antel Germany, CZ  
+193.85.156.216   | ASN.  5588 | GTSCE GTS Central Europe / Antel Germany, CZ  
+193.85.156.216   | ASN.  5588 | GTSCE GTS Central Europe / Antel Germany, CZ  
+193.85.156.216   | ASN.  5588 | GTSCE GTS Central Europe / Antel Germany, CZ  
+62.24.71.164     | ASN.  6830 | LGI-UPC formerly known as UPC Broadband Holding B.V., AT  
+62.24.71.164     | ASN.  6830 | LGI-UPC formerly known as UPC Broadband Holding B.V., AT  
+62.24.71.164     | ASN.  6830 | LGI-UPC formerly known as UPC Broadband Holding B.V., AT  
+62.24.71.164     | ASN.  6830 | LGI-UPC formerly known as UPC Broadband Holding B.V., AT  
+88.208.109.196   | ASN. 29208 | DIALTELECOM-AS Dial Telecom a.s., SK  
+88.208.109.196   | ASN. 29208 | DIALTELECOM-AS Dial Telecom a.s., SK  
+95.47.178.94     | ASN. 60296 | METRONET-AS, SK  
+
+
+~~~
+
+
+## Remarks
+
+please note: 
+  - found IPs might contain False-Positives and miss False Negatives
+  - Country/ASN-Attribution might not be correct
+
+
+- [Traffic Light Protocol (TLP) Definitions and Usage](https://www.us-cert.gov/tlp)
+
+
+
+
+
+    
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/alert_text.md
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/alert_text.md
@ -0,0 +1,41 @@
+Date: 2021-04-23
+
+A new ransomware strain named Qlocker is infecting hundreds of QNAP 
+network-attached storage (NAS) devices every day; the first cases were 
+reported on Tuesday, April 20.
+
+Currently it is unknown if the attacks happen via new vulns
+or older, unpatched vulns, where patches are available but
+not applied. 
+
+
+
+CVE       : 
+Vendor    :
+Product   : 
+CPE       :
+BaseScore : 
+Vector    : 
+
+Patches   : not available
+Exploits  : circulating
+
+
+we found various IPs in your ORG/ASN,
+matching criteria for possible vulnerable systems
+
+
+False-Positive-Level:
+
+
+please find a list of affected IPs below
+and more information on that problem here:
+
+References:
+
+- https://therecord.media/new-qlocker-ransomware-is-hitting-hundreds-of-qnap-nas-devices-per-day/
+- https://www.qnap.com/en/news/2021/response-to-qlocker-ransomware-attacks-take-actions-to-secure-qnap-nas
+
+
+
+    
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-AM.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-AM.list
@ -0,0 +1,7 @@
+
+Country: AM / qnap_ransomware CVE-2021-20210423 
+Total IPs: 1
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+195.248.243.165  | 2021-03-18 | AS 202269 |  BITCOMMAND, DE  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-AT.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-AT.list
@ -0,0 +1,71 @@
+
+Country: AT / qnap_ransomware CVE-2021-20210423 
+Total IPs: 65
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+185.238.253.167  | 2021-03-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+185.238.253.254  | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+185.238.254.105  | 2021-02-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+185.238.254.188  | 2021-03-17 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+185.238.255.170  | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+195.80.53.97     | 2021-04-20 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+195.80.54.108    | 2021-04-02 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+195.80.54.16     | 2021-03-16 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+195.80.54.21     | 2021-04-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.60.66      | 2021-03-18 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.61.1       | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.61.187     | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.61.219     | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.61.95      | 2021-02-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.62.188     | 2021-03-18 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.62.74      | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.10.63.60      | 2021-02-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.180.244   | 2021-04-07 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.181.229   | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.181.58    | 2021-03-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.182.120   | 2021-04-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.182.192   | 2021-03-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.182.210   | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.128.183.74    | 2021-03-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.36.149    | 2021-03-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.36.158    | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.36.200    | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.36.215    | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.37.243    | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.38.55     | 2021-02-18 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.39.202    | 2021-02-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.131.39.34     | 2021-03-16 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.168.127   | 2021-02-17 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.168.222   | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.169.12    | 2021-02-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.170.148   | 2021-03-18 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.171.169   | 2021-03-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.171.179   | 2021-03-18 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.171.180   | 2021-04-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.136.171.2     | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.188.216    | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.189.245    | 2021-04-07 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.190.230    | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.190.236    | 2021-03-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.191.127    | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.191.181    | 2021-03-18 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.14.191.39     | 2021-02-17 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.143.78.131    | 2021-03-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.143.78.189    | 2021-03-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.143.79.164    | 2021-02-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.143.79.251    | 2021-03-28 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.143.79.60     | 2021-04-14 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.108.120    | 2021-04-16 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.108.27     | 2021-04-02 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.108.88     | 2021-03-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.109.144    | 2021-02-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.110.151    | 2021-04-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.111.140    | 2021-04-22 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+45.93.111.72     | 2021-03-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+92.119.10.217    | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+92.119.10.49     | 2021-04-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+92.119.11.105    | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+92.119.8.136     | 2021-02-15 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+92.119.9.169     | 2021-03-01 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
+92.119.9.192     | 2021-02-17 | AS  12897 |  ENTEGAMEDIANET ENTEGA Medianet GmbH, DE  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-CH.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-CH.list
@ -0,0 +1,8 @@
+
+Country: CH / qnap_ransomware CVE-2021-20210423 
+Total IPs: 2
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+185.133.208.108  | 2021-04-15 | AS  56382 |  VSERVERLTD vServer.site, DE  
+194.182.169.180  | 2021-02-28 | AS  61098 |  EXOSCALE, CH  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-CY.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-CY.list
@ -0,0 +1,7 @@
+
+Country: CY / qnap_ransomware CVE-2021-20210423 
+Total IPs: 1
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+194.32.77.93     | 2021-03-28 | AS 202448 |  MVPS https://www.mvps.net, CY  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-DE.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-DE.list
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-DK.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-DK.list
@ -0,0 +1,19 @@
+
+Country: DK / qnap_ransomware CVE-2021-20210423 
+Total IPs: 13
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+78.31.252.126    | 2021-04-15 | AS 204151 |  KVIKNET-, DK  
+78.31.252.158    | 2021-03-11 | AS 204151 |  KVIKNET-, DK  
+78.31.252.187    | 2021-04-15 | AS 204151 |  KVIKNET-, DK  
+78.31.252.203    | 2021-03-28 | AS 204151 |  KVIKNET-, DK  
+78.31.252.219    | 2021-03-28 | AS 204151 |  KVIKNET-, DK  
+78.31.252.89     | 2021-04-07 | AS 204151 |  KVIKNET-, DK  
+78.31.253.105    | 2021-03-28 | AS 204151 |  KVIKNET-, DK  
+78.31.253.254    | 2021-04-15 | AS 204151 |  KVIKNET-, DK  
+78.31.253.71     | 2021-04-23 | AS 204151 |  KVIKNET-, DK  
+78.31.254.137    | 2021-03-23 | AS 204151 |  KVIKNET-, DK  
+78.31.254.180    | 2021-04-01 | AS 204151 |  KVIKNET-, DK  
+78.31.254.60     | 2021-03-18 | AS 204151 |  KVIKNET-, DK  
+78.31.255.93     | 2021-04-02 | AS 204151 |  KVIKNET-, DK  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-ES.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-ES.list
@ -0,0 +1,8 @@
+
+Country: ES / qnap_ransomware CVE-2021-20210423 
+Total IPs: 2
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+185.132.46.26    | 2021-04-04 | AS   6724 |  STRATO STRATO AG, DE  
+185.132.46.71    | 2021-03-25 | AS   6724 |  STRATO STRATO AG, DE  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-GB.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-GB.list
@ -0,0 +1,35 @@
+
+Country: GB / qnap_ransomware CVE-2021-20210423 
+Total IPs: 29
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+212.121.133.62   | 2021-03-18 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+212.161.68.202   | 2021-04-15 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.41.43.70     | 2021-03-23 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.107.197   | 2021-02-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.111.235   | 2021-04-07 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.160.178   | 2021-03-18 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.190.93    | 2021-03-18 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.196.220   | 2021-04-17 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.59.52     | 2021-04-15 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.61.71.149    | 2021-03-18 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.86.106.122   | 2021-03-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+213.86.17.140    | 2021-03-19 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+217.110.13.57    | 2021-02-17 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+217.110.217.10   | 2021-03-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+217.110.59.194   | 2021-04-11 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+217.110.85.139   | 2021-03-18 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+217.111.105.3    | 2021-02-17 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+217.111.3.43     | 2021-02-05 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.23.194.50     | 2021-04-02 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.23.209.59     | 2021-04-11 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.23.216.98     | 2021-03-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.84.205.134    | 2021-03-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.13.170     | 2021-04-15 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.130.21     | 2021-02-17 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.213.162    | 2021-04-14 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.224.182    | 2021-03-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.254.74     | 2021-03-28 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.29.122     | 2021-03-18 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
+62.96.90.85      | 2021-02-17 | AS   8220 |  COLT COLT Technology Services Group Limited, GB  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-IT.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-IT.list
@ -0,0 +1,12 @@
+
+Country: IT / qnap_ransomware CVE-2021-20210423 
+Total IPs: 6
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+94.177.245.195   | 2021-04-15 | AS 200185 |  XANDMAIL-ASN, FR  
+193.219.102.108  | 2021-03-18 | AS  41644 |  EMISFERA-AS, IT  
+185.56.156.188   | 2021-03-23 | AS  44092 |  HALSERVICE, IT  
+94.102.135.147   | 2021-04-01 | AS  47217 |  PLANETEL-SPA, IT  
+185.144.75.121   | 2021-03-23 | AS  49088 |  TELMEKOM-AS, IT  
+52.144.68.142    | 2021-02-17 | AS   5602 |  AS-IRIDEOS-KP, IT  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-NE.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-NE.list
@ -0,0 +1,7 @@
+
+Country: NE / qnap_ransomware CVE-2021-20210423 
+Total IPs: 1
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+154.66.221.98    | 2021-03-28 | AS  26130 |  LIPTINFOR-AS, NE  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-NL.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-NL.list
@ -0,0 +1,153 @@
+
+Country: NL / qnap_ransomware CVE-2021-20210423 
+Total IPs: 147
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+84.118.106.241   | 2021-04-04 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.107.26    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.111.125   | 2021-03-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.114.231   | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.116.153   | 2021-04-04 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.116.219   | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.12.155    | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.12.49     | 2021-03-16 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.121.226   | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.124.90    | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.129.157   | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.129.218   | 2021-04-04 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.129.42    | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.13.105    | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.130.122   | 2021-03-11 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.137.105   | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.144.99    | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.145.191   | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.146.189   | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.147.250   | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.149.93    | 2021-04-07 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.152.183   | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.152.25    | 2021-04-22 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.154.26    | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.17.100    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.179.61    | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.181.227   | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.193.217   | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.194.185   | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.195.154   | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.2.179     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.203.193   | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.208.27    | 2021-02-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.208.49    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.210.192   | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.211.104   | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.220.10    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.223.33    | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.236.195   | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.25.93     | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.253.159   | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.253.172   | 2021-02-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.255.64    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.4.105     | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.40.107    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.40.111    | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.48.133    | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.5.127     | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.5.23      | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.50.20     | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.52.4      | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.56.49     | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.57.168    | 2021-04-11 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.57.247    | 2021-03-16 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.58.99     | 2021-02-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.64.159    | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.64.69     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.68.225    | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.8.112     | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.8.44      | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.89.142    | 2021-04-11 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.89.153    | 2021-02-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.89.38     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.91.153    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.93.219    | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.93.84     | 2021-04-07 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.118.98.195    | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.0.243     | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.10.180    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.10.246    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.10.247    | 2021-04-09 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.101.197   | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.108.22    | 2021-04-05 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.109.131   | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.113.67    | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.113.98    | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.114.223   | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.114.244   | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.122.26    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.129.192   | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.13.92     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.131.26    | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.136.44    | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.138.10    | 2021-03-16 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.146.35    | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.150.133   | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.150.146   | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.151.157   | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.153.10    | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.153.62    | 2021-02-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.156.4     | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.160.120   | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.165.178   | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.168.246   | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.168.39    | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.17.99     | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.170.185   | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.173.32    | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.18.23     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.200.192   | 2021-04-04 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.209.57    | 2021-04-07 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.210.141   | 2021-02-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.211.108   | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.211.132   | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.218.97    | 2021-02-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.219.255   | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.224.25    | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.226.64    | 2021-02-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.23.34     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.230.31    | 2021-04-14 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.231.3     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.232.76    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.236.137   | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.246.90    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.248.179   | 2021-04-14 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.249.63    | 2021-02-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.252.214   | 2021-04-14 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.252.73    | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.254.99    | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.32.137    | 2021-04-16 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.33.154    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.34.82     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.41.214    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.43.13     | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.44.15     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.48.134    | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.54.97     | 2021-04-11 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.56.114    | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.56.70     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.57.199    | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.61.99     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.64.190    | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.8.121     | 2021-03-16 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.8.50      | 2021-04-20 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.83.60     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.93.26     | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.93.62     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.95.133    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.96.107    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.97.190    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.97.195    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.97.229    | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+84.119.97.247    | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+139.162.140.209  | 2021-04-02 | AS  63949 |  LINODE-AP Linode, LLC, US  
+139.162.140.7    | 2021-04-01 | AS  63949 |  LINODE-AP Linode, LLC, US  
+139.162.145.160  | 2021-04-22 | AS  63949 |  LINODE-AP Linode, LLC, US  
+139.162.154.136  | 2021-04-01 | AS  63949 |  LINODE-AP Linode, LLC, US  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-SG.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-SG.list
@ -0,0 +1,8 @@
+
+Country: SG / qnap_ransomware CVE-2021-20210423 
+Total IPs: 2
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+139.59.128.207   | 2021-04-11 | AS  14061 |  DIGITALOCEAN-ASN, US  
+139.59.128.245   | 2021-04-11 | AS  14061 |  DIGITALOCEAN-ASN, US  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-US.list
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/data/CVE-2021-20210423-US.list
@ -0,0 +1,54 @@
+
+Country: US / qnap_ransomware CVE-2021-20210423 
+Total IPs: 48
+
+IP               | ScanDate   | AS        |  AS_DESC
+-----------------+------------+-----------+--------------------------------------------
+167.71.42.249    | 2021-02-21 | AS  14061 |  DIGITALOCEAN-ASN, US  
+2a03:b0c0:3:d0::5b0:d001 | 2021-04-02 | AS  14061 |  DIGITALOCEAN-ASN, US  
+35.234.115.190   | 2021-04-15 | AS  15169 |  GOOGLE, US  
+18.192.59.67     | 2021-02-19 | AS  16509 |  AMAZON-02, US  
+3.121.186.164    | 2021-02-24 | AS  16509 |  AMAZON-02, US  
+52.28.204.182    | 2021-02-05 | AS  16509 |  AMAZON-02, US  
+52.58.184.185    | 2021-03-01 | AS  16509 |  AMAZON-02, US  
+45.32.155.115    | 2021-03-11 | AS  20473 |  AS-CHOOPA, US  
+46.21.150.100    | 2021-04-15 | AS  29802 |  HVC-AS, US  
+47.64.12.53      | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.64.38.70      | 2021-04-14 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.64.39.9       | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.64.83.116     | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.65.154.208    | 2021-04-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.65.164.65     | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.65.191.68     | 2021-02-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.65.218.116    | 2021-03-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.65.220.116    | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.65.229.214    | 2021-02-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.10.35      | 2021-02-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.19.152     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.23.107     | 2021-03-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.23.131     | 2021-02-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.23.203     | 2021-02-15 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.26.249     | 2021-04-02 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.33.209     | 2021-03-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.39.37      | 2021-02-18 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.66.44.175     | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.68.110.51     | 2021-03-28 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.70.146.170    | 2021-02-05 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.71.25.5       | 2021-04-01 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+47.71.26.140     | 2021-04-17 | AS   3209 |  VODANET International IP-Backbone of Vodafone, DE  
+172.94.14.18     | 2021-04-15 | AS   3223 |  VOXILITY, GB  
+172.94.63.40     | 2021-04-04 | AS   3223 |  VOXILITY, GB  
+193.189.211.15   | 2021-04-04 | AS   3257 |  GTT-BACKBONE GTT, US  
+193.189.211.239  | 2021-03-17 | AS   3257 |  GTT-BACKBONE GTT, US  
+195.143.244.127  | 2021-02-17 | AS   3257 |  GTT-BACKBONE GTT, US  
+195.143.244.144  | 2021-03-01 | AS   3257 |  GTT-BACKBONE GTT, US  
+195.143.244.158  | 2021-03-28 | AS   3257 |  GTT-BACKBONE GTT, US  
+195.143.244.30   | 2021-04-07 | AS   3257 |  GTT-BACKBONE GTT, US  
+194.77.163.50    | 2021-03-28 | AS   5669 |  VIA-NET-WORKS-AS, US  
+172.105.251.238  | 2021-04-17 | AS  63949 |  LINODE-AP Linode, LLC, US  
+2a01:7e01:1::8ba2:8c07 | 2021-04-01 | AS  63949 |  LINODE-AP Linode, LLC, US  
+2a01:7e01::f03c:91ff:fe3b:b9aa | 2021-04-02 | AS  63949 |  LINODE-AP Linode, LLC, US  
+2a01:7e01::f03c:91ff:fe67:f839 | 2021-03-01 | AS  63949 |  LINODE-AP Linode, LLC, US  
+20.52.149.186    | 2021-03-18 | AS   8075 |  MICROSOFT-CORP-MSN-AS-BLOCK, US  
+20.52.4.134      | 2021-04-17 | AS   8075 |  MICROSOFT-CORP-MSN-AS-BLOCK, US  
+172.111.250.204  | 2021-03-18 | AS   9009 |  M247, GB  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/summary.md
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/summary.md
@ -0,0 +1,435 @@
+
+
+~~~
+
+SUMMARY for qnap_ransomware / CVE-2021-20210423
+
+IPs       : 52120
+Networks  : 1257 
+ASNs      : 293
+Countries : 13
+
+
+Top 100 ASNs
+
+ASN_NR    |  Count | ASNName 
+----------+--------+-----------------------------------
+     3320 |  26546 | DTAG Internet service provider operations, DE 
+     3209 |   9945 | VODANET International IP-Backbone of Vodafone, DE 
+     8881 |   4658 | VERSATEL, DE 
+     6805 |   2844 | TDDE-ASN1, DE 
+     9145 |   1416 | EWETEL Cloppenburger Strasse 310, DE 
+     8422 |    964 | NETCOLOGNE, DE 
+     8767 |    568 | MNET-AS Germany, DE 
+    20676 |    504 | PLUSNET *****************, DE 
+    15943 |    477 | WTNET-AS wilhelm.tel GmbH, DE 
+    13045 |    243 | HTP-AS, DE 
+    42652 |    217 | DELUNET, DE 
+    12897 |    187 | ENTEGAMEDIANET ENTEGA Medianet GmbH, DE 
+   199284 |    159 | ENCOLINE, DE 
+    15366 |    141 | DNSNET German Internet Service Providers, DE 
+    62336 |    122 | PURTEL-AS # Upstream, DE 
+      680 |    114 | DFN Verein zur Foerderung eines Deutschen Forschungsnetzes e.V., DE 
+    12312 |    109 | ECOTEL, DE 
+     9136 |     97 | WOBCOM, DE 
+    35244 |     95 | KMS-DE_AS, DE 
+    13101 |     92 | TNG-AS TNG Stadtnetz GmbH, DE 
+    57353 |     90 | VITROCONNECT-AS, DE 
+    20880 |     88 | TELECOLUMBUS, DE 
+    21413 |     82 | ENVIA-TEL-AS D-09114 Chemnitz, DE 
+    16202 |     73 | TELECOLUMBUS-AS, DE 
+   198967 |     66 | BITEL-GESELLSCHAFT-FUER-TELEKOMMUNIKATION-AS -) IP Transit Customer AS33873 (-, DE 
+   197524 |     65 | CCNST-AS, DE 
+     9063 |     64 | SAARGATE-AS VSE NET GmbH, DE 
+    41998 |     63 | NETCOMBW-AS, DE 
+    42965 |     63 | NETSERVICES-AS, DE 
+   198930 |     61 | DE-VSM-ASN Peering, DE 
+   207790 |     61 | SWNNMS, DE 
+    16097 |     58 | HLKOMM 04107 Leipzig, DE 
+    15763 |     55 | ASDOKOM, DE 
+    21263 |     52 | TELEDATA-AS TeleData GmbH, DE 
+    20810 |     48 | NETCOM-KASSEL Netcom Kassel, DE 
+    29252 |     48 | NETCOM-TSG-AS, DE 
+   200924 |     41 | SIS2, DE 
+   198726 |     40 | KOMDSL, DE 
+    60294 |     40 | DE-DGW Deutsche Glasfaser Wholesale Internet, DE 
+    12693 |     34 | EDISCOM Am Kanal 4a, 14467 Potsdam, DE 
+    29413 |     34 | KOMRO-AS Komro Telekommunikations GmbH, DE 
+     8220 |     32 | COLT COLT Technology Services Group Limited, GB 
+    30766 |     30 | GGEWNET-AS Dammstrasse 68, DE 
+    12355 |     29 | HAMCOM-DE Hamm, Germany, DE 
+    41110 |     29 | DSLMOBIL, DE 
+    43341 |     29 | MDLINK MDlink online service center GmbH, DE 
+    12611 |     28 | RKOM R-KOM Regensburger Telekommunikations GmbH & Co. KG, DE 
+   198570 |     27 | STNB-AS, DE 
+      553 |     27 | BELWUE BelWue-Koordination, DE 
+    12360 |     26 | KTK KEVAG Telekom GmbH, DE 
+    28876 |     26 | SUEC-DACOR-AS, DE 
+    20886 |     25 | DE-IORG-AS-1 Pennefeldsweg 12, D-53177 Bonn, Germany, DE 
+   197637 |     24 | ROPA ropa digital systems, DE 
+    21032 |     24 | TELTA-AS, DE 
+    12759 |     23 | SOCO-AS Nordstrasse 102, DE 
+    13237 |     22 | LAMBDANET-AS European Backbone of AS13237, DE 
+   198225 |     21 | MDDSL-AS, DE 
+    25394 |     20 | MK-NETZDIENSTE-AS, DE 
+    60522 |     20 | KOMMITT-AS Kaiserswerther Str. 85, DE 
+    62365 |     20 | DESANET-AS Friedrich-List-Platz 2, DE 
+     6735 |     20 | SDTNET, DE 
+   206825 |     19 | SIEBNICH-COM, DE 
+    24940 |     19 | HETZNER-AS, DE 
+    58243 |     18 | TELEAG, DE 
+     8820 |     18 | TAL-DE Robertstrasse 6, DE 
+   196954 |     17 | EPCAN epcan breitband loesungen, DE 
+   208988 |     15 | BUCHHOLZ-DIGITAL Buchholz Digital GmbH, DE 
+   201729 |     14 | FSW, DE 
+    39090 |     14 | BRANDL --- KPN ---, DE 
+    42184 |     14 | AS-TKRZ, DE 
+    44229 |     14 | DTST_AS_01, DE 
+    15987 |     13 | PORTUNITY-AS, DE 
+   201832 |     13 | COSIMO-, DE 
+   204151 |     13 | KVIKNET-, DK 
+    20677 |     13 | IMOS-AS Alfons-Feifel-Str. 9, DE 
+    24961 |     13 | MYLOC-AS IP Backbone of myLoc managed IT AG, DE 
+    31317 |     13 | ANSCHLUSSWERK, DE 
+     6663 |     13 | TTI-NET, RO 
+    12886 |     12 | LEWTELNET Oskar-von-Miller-Str. 1b, DE 
+    39441 |     12 | HABNET, DE 
+    48284 |     12 | TELENET-AS Bauhoferstr. 9/1 - 89077 Ulm, DE 
+    15925 |     11 | NEXIU, DE 
+   197558 |     11 | MUTH, DE 
+     2857 |     11 | RLP-NET, DE 
+    41585 |     11 | ELEMENTMEDIA, DE 
+   196714 |     10 | TNETKOM-AS, DE 
+    20686 |     10 | BISPING ISP & Citycarrier, Germany, DE 
+    29037 |     10 | TELIKO-AS, DE 
+    35205 |     10 | RFT-BRANDENBURG, DE 
+    47297 |     10 | TK-LINDAU, DE 
+    51978 |     10 | WEMACOM, DE 
+    59790 |     10 | BUNGALSKI-AS, DE 
+   201035 |      9 | LUENECOM-AS, DE 
+     8560 |      9 | IONOS-AS This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE., DE 
+    12816 |      8 | MWN-AS, DE 
+    12843 |      8 | TELEMAXX, DE 
+   197063 |      8 | AS-PFALZCONNECT, DE 
+   200278 |      8 | KNTINTERNET, DE 
+   205115 |      8 | AVACOMM, DE 
+    41307 |      8 | TPP, DE 
+    50469 |      8 | HESSENKOM-, DE 
+    63949 |      8 | LINODE-AP Linode, LLC, US 
+     8365 |      8 | MANDA, DE 
+   196968 |      7 | ILM-PROVIDER-AS, DE 
+   203536 |      7 | AS-FNOH-, DE 
+    25054 |      7 | ACO-AS, DE 
+    31400 |      7 | ACCELERATED-IT, DE 
+    48918 |      7 | GLOBALWAYS, DE 
+    16205 |      6 | DSINET-ASN, DE 
+   196932 |      6 | RHEINET, DE 
+   197540 |      6 | NETCUP-AS netcup GmbH, DE 
+   200735 |      6 | MUENET-AS, DE 
+   204073 |      6 | JOBST-DSL, DE 
+    20640 |      6 | TITAN-NETWORKS Bleichstrasse 1, DE 
+    21473 |      6 | MANET-AS Pfalzkom GmbH, DE 
+    24978 |      6 | SPRINT Aut.-System Telenec, DE 
+    28748 |      6 | ALPHACRON-AS AlphaCron Datensysteme, DE 
+    29484 |      6 | RUB-AS, DE 
+     3257 |      6 | GTT-BACKBONE GTT, US 
+    57154 |      6 | SWKN Stadtwerke Konstanz GmbH, DE 
+     8823 |      6 | AUTONOMOUSSYSTEMROCKENSTEINAG, DE 
+   203924 |      5 | BUERODATA, DE 
+    25260 |      5 | QUALITYHOSTING-AS D-63571 Gelnhausen, DE 
+    39835 |      5 | GOETEL, DE 
+    51167 |      5 | CONTABO, DE 
+     8426 |      5 | CLARANET-AS ClaraNET LTD, GB 
+     8937 |      5 | SALINK-AS Saarland, DE 
+    12586 |      4 | ASGHOSTNET, DE 
+    14061 |      4 | DIGITALOCEAN-ASN, US 
+    15598 |      4 | IPX-AS15598, DE 
+    16509 |      4 | AMAZON-02, US 
+    33984 |      4 | SURFPLANET-AS, DE 
+    42777 |      4 | WISTA-AS, DE 
+    50064 |      4 | TKN, DE 
+    12480 |      3 | ASILK =======================================================, DE 
+     1299 |      3 | TELIANET Telia Carrier, SE 
+   200519 |      3 | NYNEX NYNEX FIBER, DE 
+   204672 |      3 | SW-RHE, DE 
+   205703 |      3 | SW-TET, DE 
+   212613 |      3 | GWN24, DE 
+    25579 |      3 | SKYTRON Im Hinteracker 6-10, DE 
+    29471 |      3 | WEBJANSSEN-, DE 
+    29551 |      3 | HGCOMP-ASN, DE 
+    34219 |      3 | ARCHE-AS, DE 
+    34878 |      3 | KIT Karlsruhe Institute of Technology, DE 
+    34953 |      3 | RELAIX RelAix Networks GmbH, DE 
+    42525 |      3 | GLOBALCONNECT-NETWORK, DK 
+    44066 |      3 | DE-FIRSTCOLO www.first-colo.net, DE 
+    44365 |      3 | NEWONE-AS, DE 
+    50050 |      3 | NU Metropolitan Area Network, DE 
+    50324 |      3 | ORCO-GSG, DE 
+     6724 |      3 | STRATO STRATO AG, DE 
+    12337 |      2 | NORIS-NETWORK IT Service Provider located in Nuernberg, Germany, DE 
+    12931 |      2 | IDKOM IDKOM Networks GmbH, DE 
+    13039 |      2 | GLOBAL-VILLAGE Mehrumer Str. 16, DE 
+    15726 |      2 | MARCANT-AS Herforder Str. 163a, DE 
+    16024 |      2 | GELSEN-NET Am Bugapark 1c, DE 
+   198710 |      2 | UUU-TELECOM-AS, DE 
+   200567 |      2 | MDEX, DE 
+   203228 |      2 | RHOENNET, DE 
+   203593 |      2 | ASTELEMK, DE 
+   203865 |      2 | OVERTURN, DE 
+    20694 |      2 | NMMN-AS, DE 
+   207253 |      2 | AS_ZEAG, DE 
+   209400 |      2 | KURPFALZTEL, DE 
+    25415 |      2 | ADDIX-AS AS-ADDIX Autonomous System, DE 
+    28676 |      2 | WITCOM-AS, DE 
+    29505 |      2 | TRAVEKOM-AS, DE 
+    30742 |      2 | BRITELINE-AS, DE 
+     3223 |      2 | VOXILITY, GB 
+    34372 |      2 | VEGASYSTEMS-AS, DE 
+    38938 |      2 | SWW-WUNSIEDEL, DE 
+    42215 |      2 | SHZ Foerdestrasse 20, DE 
+    43140 |      2 | TELEFLASH-AS, DE 
+    44973 |      2 | RZHAS-AS, DE 
+    44974 |      2 | REGIONETSW-AS, DE 
+    49956 |      2 | INNENERGIE, DE 
+    50595 |      2 | HOCHSCHULE-RHEINMAIN, DE 
+    50629 |      2 | LWLCOM, DE 
+    51402 |      2 | COM-IN COM-IN Telekommunikations GmbH AS51402, DE 
+    61244 |      2 | EURO-SAT, DE 
+     8075 |      2 | MICROSOFT-CORP-MSN-AS-BLOCK, US 
+     8208 |      2 | TEAMWARE-AS, DE 
+     8875 |      2 | SINMA-ASN, DE 
+     9022 |      2 | TWL-KOM-AS Donnersbergweg 4, DE 
+     9135 |      2 | ITEMAX-AS, DE 
+     9211 |      2 | WORK-AS N@work Internet Informationssysteme GmbH, DE 
+    12306 |      1 | PLUSLINE, DE 
+    12329 |      1 | TMR, DE 
+    12581 |      1 | TOPSNET, DE 
+    12676 |      1 | NCORE-AS HKN GmbH, DE 
+    12731 |      1 | IPHH IPHH Internet Port Hamburg GmbH, DE 
+    12941 |      1 | INTERSAAR-AS, DE 
+    13003 |      1 | WEBMATIC, DE 
+    13012 |      1 | GENIAS-AS, DE 
+    13132 |      1 | CYBERWAYS-AS Germany, DE 
+    13157 |      1 | GOPAS-AS Schellerdamm 16, DE 
+    13289 |      1 | ASIWELT, DE 
+    15169 |      1 | GOOGLE, US 
+    15415 |      1 | OBIS, DE 
+    15844 |      1 | TGC-AS, DE 
+    15960 |      1 | GLOBALACCESS, DE 
+   197071 |      1 | ACTIVE-SERVERS active-servers.com, DE 
+   197252 |      1 | COLOBRIDGE-AS, DE 
+   200185 |      1 | XANDMAIL-ASN, FR 
+   200599 |      1 | EINSENERGIE-AS, DE 
+   200846 |      1 | D-VELOP, DE 
+   201878 |      1 | SWM-AS, DE 
+   201962 |      1 | RSM-CONNECT-AS RSM Connect, DE 
+   202208 |      1 | TEUTEL, DE 
+   202269 |      1 | BITCOMMAND, DE 
+   202448 |      1 | MVPS https://www.mvps.net, CY 
+   203123 |      1 | TECHNI_, DE 
+   203224 |      1 | WEBPHONE, DE 
+   203761 |      1 | ACS-HARTMANN, DE 
+   204008 |      1 | RSB-SC-GMBH-NET, DE 
+   204218 |      1 | RUHNET, DE 
+    20473 |      1 | AS-CHOOPA, US 
+   204989 |      1 | RDT, DE 
+   205042 |      1 | FELKATEC, DE 
+   205691 |      1 | KSNET, DE 
+   205741 |      1 | MISAXNET, DE 
+   205769 |      1 | MAINZER-BREITBAND, DE 
+    20633 |      1 | UNIFFM-NET cords@rz.uni-frankfurt.de 20101227, DE 
+   206452 |      1 | AS-ORNG-GI, DE 
+   206497 |      1 | SYSCON, DE 
+   206761 |      1 | LHAS, DE 
+    20773 |      1 | GODADDY, DE 
+    20791 |      1 | BITPOINT-AS, DE 
+    20792 |      1 | VISTEC-AS Wiesbaden, Germany, DE 
+   208968 |      1 | AVACON-CONNECT-, DE 
+   209335 |      1 | TUM-RBG, DE 
+   210236 |      1 | COMPUNET, DE 
+   212891 |      1 | ASEVONET, IT 
+    24590 |      1 | COMPLETE Complete network, DE 
+    24637 |      1 | WEBDISCOUNT, DE 
+    24640 |      1 | BSWS-AS, DE 
+    24679 |      1 | SSERV-AS, DE 
+    25081 |      1 | HDIT-AS, DE 
+    25317 |      1 | MB-T-AS Am Grossen Teich 33, DE 
+    25504 |      1 | CRONON-AS Obermuensterstr. 9, DE 
+    26130 |      1 | LIPTINFOR-AS, NE 
+    29239 |      1 | I-NETPARTNER-AS, DE 
+    29373 |      1 | WEISSDRUCK-AS Industriestr. 7, DE 
+    29510 |      1 | INTERNETT-AS, DE 
+    29802 |      1 | HVC-AS, US 
+    30823 |      1 | COMBAHTON combahton GmbH, DE 
+    30962 |      1 | COMTRANCE-AS, DE 
+    31027 |      1 | GLOBALCONNECT-AS, DK 
+    31103 |      1 | KEYWEB-AS, DE 
+    31197 |      1 | FNH-AS, DE 
+    31438 |      1 | SWMR-AS Citynet Marburg, DE 
+    33843 |      1 | NEPUSTILNET-AS02, DE 
+    33846 |      1 | DATAPORT-AS, DE 
+    34568 |      1 | CONNECTINGBYTES-AS, DE 
+    34966 |      1 | RALFBENDER-AS, DE 
+    35062 |      1 | TEAMNET, DE 
+    35170 |      1 | LEUCOM-AS, DE 
+    35515 |      1 | EVH-AS, DE 
+    41163 |      1 | RIZ-IT-MOTION, DE 
+    41480 |      1 | SYSTEMEC-AS, NL 
+    41644 |      1 | EMISFERA-AS, IT 
+    42312 |      1 | AS-CBC, DE 
+    44092 |      1 | HALSERVICE, IT 
+    44700 |      1 | HAENDLEKORTE-AS, DE 
+    47217 |      1 | PLANETEL-SPA, IT 
+    48585 |      1 | AS48585, DE 
+    49034 |      1 | LAUDERT, DE 
+    49088 |      1 | TELMEKOM-AS, IT 
+    49855 |      1 | PLUTEX Hermann-Ritter-Str. 108, DE 
+    50332 |      1 | SQUILD-AS, DE 
+     5501 |      1 | FRAUNHOFER-CLUSTER-BW Research Institutes spread all over Germany, DE 
+     5602 |      1 | AS-IRIDEOS-KP, IT 
+    56382 |      1 | VSERVERLTD vServer.site, DE 
+     5669 |      1 | VIA-NET-WORKS-AS, US 
+    56833 |      1 | MIEX-AS mieX.at, AT 
+    56912 |      1 | ASN-ORNG-SUED, DE 
+    58010 |      1 | UVENSYS, DE 
+    59675 |      1 | MYWIRENET-AS, DE 
+    59710 |      1 | DE-1N-AS, DE 
+    60175 |      1 | WAG Bredenhop 20, DE 
+    60316 |      1 | RGI-AS, DE 
+    60400 |      1 | ORBISAG-AS, DE 
+    61098 |      1 | EXOSCALE, CH 
+    61157 |      1 | PLUSSERVER-ASN1, DE 
+      702 |      1 | UUNET, US 
+     8469 |      1 | PIRONETNDH-AS CANCOM Managed Services GmbH, DE 
+     8495 |      1 | INTERNET_AG Frankfurt-Munich-Stuttgart-Amsterdam-London, DE 
+     8648 |      1 | KAMP-, DE 
+     8649 |      1 | WEBTRAFFIC, DE 
+     8893 |      1 | ARTFILES-AS Artfiles New Media GmbH, DE 
+     9009 |      1 | M247, GB 
+     9083 |      1 | CARPENET Germany, DE 
+
+Top 100 Countries
+Country |  Count   
+--------+-----------
+     DE |  51803 
+     NL |    147 
+     AT |     65 
+     US |     48 
+     GB |     29 
+     DK |     13 
+     IT |      6 
+     SG |      2 
+     CH |      2 
+     ES |      2 
+     AM |      1 
+     CY |      1 
+     NE |      1 
+
+Top 100 Networks
+NW                |  Count | NetworkName 
+------------------+--------+-----------------------------------
+    84.128.0.0/10 |   4123 | DTAG Internet service provider operations, DE  
+    79.192.0.0/10 |   4097 | DTAG Internet service provider operations, DE  
+      91.0.0.0/10 |   4085 | DTAG Internet service provider operations, DE  
+    87.128.0.0/10 |   4030 | DTAG Internet service provider operations, DE  
+    93.192.0.0/10 |   4004 | DTAG Internet service provider operations, DE  
+   217.224.0.0/11 |   1777 | DTAG Internet service provider operations, DE  
+    217.80.0.0/12 |   1084 | DTAG Internet service provider operations, DE  
+    80.128.0.0/12 |   1043 | DTAG Internet service provider operations, DE  
+      77.0.0.0/12 |   1013 | TDDE-ASN1, DE  
+     46.80.0.0/12 |   1010 | DTAG Internet service provider operations, DE  
+     31.16.0.0/14 |    669 | VODANET International IP-Backbone of Vodafone, DE  
+    77.176.0.0/12 |    652 | TDDE-ASN1, DE  
+   188.192.0.0/14 |    602 | VODANET International IP-Backbone of Vodafone, DE  
+     77.20.0.0/14 |    592 | VODANET International IP-Backbone of Vodafone, DE  
+     91.64.0.0/14 |    566 | VODANET International IP-Backbone of Vodafone, DE  
+     88.64.0.0/12 |    556 | VODANET International IP-Backbone of Vodafone, DE  
+    80.144.0.0/13 |    507 | DTAG Internet service provider operations, DE  
+    95.112.0.0/13 |    445 | TDDE-ASN1, DE  
+     95.88.0.0/14 |    414 | VODANET International IP-Backbone of Vodafone, DE  
+     84.56.0.0/13 |    407 | VODANET International IP-Backbone of Vodafone, DE  
+    188.96.0.0/12 |    394 | VODANET International IP-Backbone of Vodafone, DE  
+     2.204.0.0/14 |    384 | VODANET International IP-Backbone of Vodafone, DE  
+     178.0.0.0/12 |    381 | VODANET International IP-Backbone of Vodafone, DE  
+     87.78.0.0/15 |    333 | NETCOLOGNE, DE  
+     2.200.0.0/14 |    321 | VODANET International IP-Backbone of Vodafone, DE  
+    94.216.0.0/13 |    296 | VODANET International IP-Backbone of Vodafone, DE  
+    92.192.0.0/13 |    277 | PLUSNET *****************, DE  
+     92.72.0.0/13 |    265 | VODANET International IP-Backbone of Vodafone, DE  
+     91.96.0.0/15 |    254 | EWETEL Cloppenburger Strasse 310, DE  
+    178.24.0.0/14 |    238 | VODANET International IP-Backbone of Vodafone, DE  
+      89.0.0.0/15 |    227 | NETCOLOGNE, DE  
+     78.48.0.0/13 |    221 | TDDE-ASN1, DE  
+    62.224.0.0/14 |    205 | DTAG Internet service provider operations, DE  
+     78.34.0.0/15 |    198 | NETCOLOGNE, DE  
+    92.208.0.0/14 |    197 | VODANET International IP-Backbone of Vodafone, DE  
+    91.248.0.0/15 |    196 | EWETEL Cloppenburger Strasse 310, DE  
+    92.200.0.0/15 |    187 | PLUSNET *****************, DE  
+    93.128.0.0/13 |    185 | TDDE-ASN1, DE  
+    93.104.0.0/16 |    171 | MNET-AS Germany, DE  
+    80.152.0.0/14 |    170 | DTAG Internet service provider operations, DE  
+  92.116.128.0/18 |    169 | VERSATEL, DE  
+   178.202.0.0/15 |    146 | VODANET International IP-Backbone of Vodafone, DE  
+    92.216.0.0/14 |    141 | VODANET International IP-Backbone of Vodafone, DE  
+    89.183.0.0/16 |    139 | HTP-AS, DE  
+   178.200.0.0/15 |    132 | VODANET International IP-Backbone of Vodafone, DE  
+    37.138.0.0/16 |    129 | EWETEL Cloppenburger Strasse 310, DE  
+  46.165.128.0/18 |    127 | DELUNET, DE  
+   178.142.0.0/16 |    123 | EWETEL Cloppenburger Strasse 310, DE  
+     37.80.0.0/12 |    120 | DTAG Internet service provider operations, DE  
+   188.174.0.0/16 |    118 | MNET-AS Germany, DE  
+     95.33.0.0/16 |    118 | EWETEL Cloppenburger Strasse 310, DE  
+    24.134.0.0/16 |    115 | VODANET International IP-Backbone of Vodafone, DE  
+     85.16.0.0/16 |    112 | EWETEL Cloppenburger Strasse 310, DE  
+  92.117.160.0/19 |    109 | VERSATEL, DE  
+    88.217.0.0/16 |    108 | MNET-AS Germany, DE  
+    109.90.0.0/16 |    107 | VODANET International IP-Backbone of Vodafone, DE  
+   176.198.0.0/16 |    107 | VODANET International IP-Backbone of Vodafone, DE  
+    31.150.0.0/16 |    107 | EWETEL Cloppenburger Strasse 310, DE  
+     2.240.0.0/13 |    105 | TDDE-ASN1, DE  
+  92.117.128.0/19 |    105 | VERSATEL, DE  
+     82.82.0.0/15 |    100 | VODANET International IP-Backbone of Vodafone, DE  
+    88.152.0.0/16 |    100 | VODANET International IP-Backbone of Vodafone, DE  
+   109.192.0.0/16 |     99 | VODANET International IP-Backbone of Vodafone, DE  
+    90.186.0.0/16 |     99 | VODANET International IP-Backbone of Vodafone, DE  
+    94.134.0.0/19 |     94 | VERSATEL, DE  
+    90.187.0.0/16 |     93 | VODANET International IP-Backbone of Vodafone, DE  
+    88.134.0.0/16 |     92 | VODANET International IP-Backbone of Vodafone, DE  
+   109.193.0.0/16 |     91 | VODANET International IP-Backbone of Vodafone, DE  
+    62.156.0.0/14 |     90 | DTAG Internet service provider operations, DE  
+    134.19.0.0/17 |     90 | VITROCONNECT-AS, DE  
+     78.42.0.0/16 |     88 | VODANET International IP-Backbone of Vodafone, DE  
+   149.224.0.0/17 |     85 | WTNET-AS wilhelm.tel GmbH, DE  
+    89.182.0.0/16 |     83 | HTP-AS, DE  
+  89.166.128.0/17 |     83 | EWETEL Cloppenburger Strasse 310, DE  
+   212.86.32.0/19 |     82 | DNSNET German Internet Service Providers, DE  
+ 149.224.128.0/17 |     82 | WTNET-AS wilhelm.tel GmbH, DE  
+     89.14.0.0/16 |     79 | TDDE-ASN1, DE  
+   92.117.32.0/19 |     79 | VERSATEL, DE  
+     5.146.0.0/16 |     77 | VODANET International IP-Backbone of Vodafone, DE  
+   78.94.128.0/17 |     77 | VODANET International IP-Backbone of Vodafone, DE  
+   176.199.0.0/16 |     76 | VODANET International IP-Backbone of Vodafone, DE  
+    84.119.0.0/16 |     76 | VODANET International IP-Backbone of Vodafone, DE  
+    88.153.0.0/16 |     76 | VODANET International IP-Backbone of Vodafone, DE  
+  92.117.224.0/19 |     76 | VERSATEL, DE  
+  62.214.240.0/20 |     75 | VERSATEL, DE  
+    92.252.0.0/17 |     74 | EWETEL Cloppenburger Strasse 310, DE  
+     89.12.0.0/15 |     72 | TDDE-ASN1, DE  
+  46.244.128.0/17 |     72 | MNET-AS Germany, DE  
+   46.59.128.0/17 |     71 | WTNET-AS wilhelm.tel GmbH, DE  
+   89.247.96.0/20 |     71 | VERSATEL, DE  
+  87.123.112.0/20 |     70 | VERSATEL, DE  
+     37.24.0.0/17 |     69 | VODANET International IP-Backbone of Vodafone, DE  
+   92.117.96.0/19 |     69 | VERSATEL, DE  
+    84.118.0.0/16 |     67 | VODANET International IP-Backbone of Vodafone, DE  
+  87.122.112.0/20 |     67 | VERSATEL, DE  
+   89.245.32.0/20 |     67 | VERSATEL, DE  
+ 134.101.128.0/17 |     66 | WTNET-AS wilhelm.tel GmbH, DE  
+  87.123.144.0/20 |     66 | VERSATEL, DE  
+  89.244.208.0/20 |     66 | VERSATEL, DE  
+    95.222.0.0/16 |     64 | VODANET International IP-Backbone of Vodafone, DE  
+
+
+~~~
+  
+  
--- a/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/tlp_amber.png
+++ b/CVE_VULN_FEED/CVE-2021-20210423-qnap_ransomware/tlp_amber.png