Ftp Financial Partner Directory Enumeration

FTP session where the client authenticates and performs repeated passive-mode directory listings while navigating directly into finance, HR, partner, vendor, and release paths such as /data/finance, /data/hr, /partners, and /pub/*, indicating targeted discovery of business-sensitive storage locations.

Observed IPs

163

Avg Confidence

95%

Severity

medium

Top IPs by event countFTP

IP Address	Risk	Events	Sessions	Country	ASN	Last Seen
152.32.135.214	97%	2,971	358	🇭🇰 HK	AS135377	2026-03-22
152.32.197.121	96%	2,037	424	🇧🇷 BR	AS135377	2026-04-02
118.193.47.212	99%	1,718	559	🇭🇰 HK	AS135377	2026-03-31
152.32.131.245	97%	1,694	649	🇭🇰 HK	AS135377	2026-04-09
152.32.243.98	91%	1,635	689	🇰🇷 KR	AS135377	2026-03-28
165.154.49.137	95%	1,543	430	🇮🇩 ID	AS135377	2026-04-06
152.32.245.170	98%	1,493	989	🇹🇭 TH	AS135377	2026-04-06
118.193.65.209	94%	1,440	451	🇬🇧 GB	AS135377	2026-04-06
123.58.209.112	99%	1,380	694	🇭🇰 HK	AS135377	2026-04-08
45.43.62.77	95%	1,369	560	🇩🇪 DE	AS135377	2026-04-08
123.58.196.49	99%	1,368	597	🇹🇼 TW	AS135377	2026-04-09
128.14.225.253	99%	1,366	578	🇺🇸 US	AS135377	2026-04-08
118.194.249.72	99%	1,355	702	🇰🇷 KR	AS135377	2026-04-08
118.194.248.142	98%	1,323	518	🇰🇷 KR	AS135377	2026-04-08
101.36.114.252	99%	1,293	663	🇰🇷 KR	AS135377	2026-04-09
101.36.97.70	99%	1,279	666	🇬🇧 GB	AS135377	2026-04-08
169.197.113.175	96%	1,276	556	🇬🇧 GB	AS135377	2026-04-08
165.154.10.165	99%	1,256	572	🇳🇬 NG	AS135377	2026-04-08
101.36.121.22	98%	1,220	444	🇭🇰 HK	AS135377	2026-04-08
150.107.38.40	98%	1,207	493	🇭🇰 HK	AS135377	2026-04-09