DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ASN REPORT — AS6128 · Cablevision Systems Corp.

First sighted: July 18, 2023, 3 a.m. · Last sighted: Jan. 11, 2026, 1:59 a.m.

Risk
4 (low)
Total hits
4924
Total errors
391
Observed IPs
527
Top country
N/A
Top city
N/A

Risk

Model: v1 Computed: 2026-01-18 11:55:13
Risk score
4
Low
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 2
Points 41.89
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 253
Points 36.98
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 149
Points 14.14
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 12
Points 7.56
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 3
Points 6.93
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 2
Points 0.95
Referrer abuse
Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.
ref
Hits 1
Points 0.13

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
2274
3xx
1718
4xx
224
5xx
167
Unique URLs
1636
Total hits
4924
First seen
July 18, 2023, 3 a.m.
Last seen
Jan. 11, 2026, 1:59 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Command injection attempts cmdi
Request content resembles attempts to execute OS commands via an application.
hits 2 pts 41.89
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
28 2 1 41.89 July 18, 2023, 3:37 p.m. Aug. 5, 2023, 3:40 a.m.
cmdi 2
Request size anomaly request_size
Requests are unusually large or shaped in a way that suggests abuse or automation.
hits 253 pts 36.98
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
12 74 1 34.63 Dec. 26, 2024, 9:19 p.m. Dec. 17, 2025, 8:40 a.m.
request_size 74
14 4 1 2.35 June 29, 2025, 5:10 p.m. Dec. 17, 2025, 8:38 a.m.
request_size 4
0 175 1 0.00 Dec. 26, 2024, 9:19 p.m. Dec. 17, 2025, 8:38 a.m.
request_size 175
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 149 pts 14.14
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
6 116 1 8.35 July 18, 2023, 3:37 p.m. Oct. 11, 2025, 5:51 p.m.
ua 116
12 18 1 3.02 Jan. 2, 2025, 8:59 a.m. Jan. 2, 2025, 9:02 a.m.
ua 18
14 9 1 2.02 Sept. 7, 2024, 10:45 p.m. April 10, 2025, 11:38 a.m.
ua 9
10 3 1 0.43 Jan. 17, 2025, 3 p.m. Jan. 30, 2025, 10:12 p.m.
ua 3
8 3 1 0.31 Dec. 30, 2023, 2:59 p.m. Aug. 24, 2025, 3:57 a.m.
ua 3
Scan velocity scan_velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
hits 12 pts 7.56
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 6 1 7.56 March 13, 2025, 1:14 p.m. Aug. 1, 2025, 3:15 a.m.
scan_velocity 6
0 6 1 0.00 March 13, 2025, 1:14 p.m. Aug. 1, 2025, 3:15 a.m.
scan_velocity 6
Credential brute forcing cred
Repeated authentication attempts consistent with password guessing or credential stuffing.
hits 3 pts 6.93
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 1 1 3.85 Sept. 24, 2023, 10:11 p.m. Sept. 24, 2023, 10:11 p.m.
cred 1
8 1 1 3.08 Sept. 24, 2023, 10:11 p.m. Sept. 24, 2023, 10:11 p.m.
cred 1
0 1 1 0.00 Sept. 24, 2023, 10:11 p.m. Sept. 24, 2023, 10:11 p.m.
cred 1
Automated client behavior bot
Traffic patterns strongly suggest automation rather than a human-operated browser.
hits 2 pts 0.95
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 2 1 0.95 Oct. 31, 2024, 6:21 p.m. Dec. 17, 2025, 8:38 a.m.
bot 2
Referrer abuse ref
Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.
hits 1 pts 0.13
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
6 1 1 0.13 Sept. 24, 2023, 10:11 p.m. Sept. 24, 2023, 10:11 p.m.
ref 1

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.
IPv4
IPv6
Limit
Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

No peer rows available for this ASN snapshot.