Ftp Financial Partner Directory Enumeration

FTP session where the client authenticates and performs repeated passive-mode directory listings while navigating directly into finance, HR, partner, vendor, and release paths such as /data/finance, /data/hr, /partners, and /pub/*, indicating targeted discovery of business-sensitive storage locations.

Observed IPs

172

Avg Confidence

96%

Severity

medium

Top IPs by event countFTP

IP Address	Risk	Events	Sessions	Country	ASN	Last Seen
165.154.221.151	91%	3,167	884	🇻🇳 VN	AS135377	2026-04-14
152.32.135.214	98%	3,037	424	🇭🇰 HK	AS135377	2026-04-14
152.32.197.121	98%	2,062	449	🇧🇷 BR	AS135377	2026-04-14
118.193.47.212	100%	1,772	613	🇭🇰 HK	AS135377	2026-04-16
152.32.131.245	98%	1,737	692	🇭🇰 HK	AS135377	2026-04-16
152.32.243.98	91%	1,662	716	🇰🇷 KR	AS135377	2026-04-10
165.154.49.137	97%	1,554	441	🇮🇩 ID	AS135377	2026-04-15
152.32.245.170	98%	1,493	989	🇹🇭 TH	AS135377	2026-04-06
128.14.225.253	99%	1,468	680	🇺🇸 US	AS135377	2026-04-15
45.43.62.77	99%	1,457	648	🇩🇪 DE	AS135377	2026-04-16
123.58.196.49	99%	1,454	683	🇹🇼 TW	AS135377	2026-04-16
118.193.65.209	94%	1,440	451	🇬🇧 GB	AS135377	2026-04-06
118.194.249.72	100%	1,410	757	🇰🇷 KR	AS135377	2026-04-16
123.58.209.112	99%	1,406	720	🇭🇰 HK	AS135377	2026-04-11
118.194.248.142	99%	1,392	587	🇰🇷 KR	AS135377	2026-04-16
101.36.114.252	99%	1,346	716	🇰🇷 KR	AS135377	2026-04-16
165.154.10.165	99%	1,323	639	🇳🇬 NG	AS135377	2026-04-15
169.197.113.175	98%	1,294	574	🇬🇧 GB	AS135377	2026-04-14
101.36.97.70	99%	1,283	670	🇬🇧 GB	AS135377	2026-04-17
101.36.121.22	98%	1,268	492	🇭🇰 HK	AS135377	2026-04-16