ScanMalware.com

Security Scan Report: d.gusc.cartocdn.com

Redirected to:
https://carto.com/login
Submitted: May 18, 2026, 9:35:38 AMCompleted: May 18, 2026, 9:38:17 AMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 2 countries across 10 domains to perform 17 HTTP transactions. The main domain is carto.com and was registered NaN years ago.

Submitted URL: https://d.gusc.cartocdn.com

Effective URL: https://carto.com/loginRedirected

The Cisco Umbrella rank of the primary domain is #45,783 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

The site shows critical malware‑related IDS alerts despite redirecting to a legitimate login page, indicating a high‑risk compromise.

Risk Factors
Critical IDS alerts indicating possible malware exfiltration and command‑and‑control
Login form on a non‑official subdomain
Multiple redirects increasing suspicion
Large HTTP POST requests flagged as malicious
Domain age information unavailable

Details

Page Title

Login — CARTO

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

technology software

(39%)

Domain Information

Domain 'd.gusc.cartocdn.com' uses the commercial generic top-level domain (.com) and includes subdomain 'd.gusc'. The second-level label 'cartocdn' is 8 characters long holding two vowels versus six consonants. It segments into 4 words: car, to, cd, n. Median word length comes out to 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://d.gusc.cartocdn.com

Page Load Overview

30.13s
Total Load Time
1
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:696 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software39% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
39%
e-commerce
15%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
115.197.167.90United States
AS16509Amazon.com, Inc.
0146.75.120.157Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
0146.75.122.132Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
0142.251.13.102United States
AS15169Google LLC
0142.251.20.155United States
AS15169Google LLC
0104.17.175.201United States
AS13335Cloudflare, Inc.
034.36.105.189Kansas City, Missouri, United States
AS396982Google LLC
018.172.111.74United States
AS16509Amazon.com, Inc.
0142.250.154.97United States
AS15169Google LLC
19--

Detected Technologies10

X-UA-Compatible
100%
PasswordField
100%
Modernizrv34068bbe55efaed404fc5f26a12641757e9f4e5ba63d46a472021f167c4e66c4
100%
Google-AnalyticsvUniversal
100%
Google Analytics
55%
Google Tag Manager
50%
HubSpot CMS
35%
Linkedin Insight Tag
20%
HubSpot Analytics
20%
FullStory
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17E42A856BCD5AC738063D0A576B2A704BB75A30BD545C8D47BFC81489F82EC78D03AAD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:JHgJa4kv5Xz6Fgv1Niu1uNuiuLR1cC04DWuQ3lAQusukosu9173bumZuXuNu4KuP:JHgJa4kv5Xz6GRDkVA/rpM9hvA+JmZ

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:13080:TaA5gBTNmSAmE44SIjaouMkIBIhJGAM4ZIiBygWgGEgBSgJKA9YDCUgCCkJBILQSFPiVhIAwmpbAQgABmhEBTAQMBURMQMES

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f0f0f0f0d0f0f0ff
Perceptual Hash:ee6e93683d429368
Difference Hash:e165c5272785a563
Wavelet Hash:f0f0f0f090f0f0f9
Color Hash:#3b3a78

Other Hashes

Crop Resistant:e165c5272785a563,4150d4659898e4c4,1a6292bb9b1fe065,5c60f22d1d14e062

Scan History

Scan history not available

Unable to load historical scan data