ScanMalware.com

Security Scan Report: img.eharmony.com

Redirected to:
https://www.eharmony.co.uk/
Site favicon
Submitted: May 15, 2026, 8:07:14 PMCompleted: May 15, 2026, 8:08:29 PMpubliccompleted
Loading additional data...

Summary

This website contacted 17 IPs in 3 countries across 17 domains to perform 69 HTTP transactions. The main domain is eharmony.co.uk and was registered NaN years ago.

Submitted URL: https://img.eharmony.com

Effective URL: https://www.eharmony.co.uk/Redirected

The Cisco Umbrella rank of the primary domain is #258,678 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 90%

8
Risk Score

The site shows strong indicators of credential phishing and malware activity; avoid interaction and report it.

Risk Factors
Credential harvesting via hidden password fields
Malware/C2 activity detected by network IDS
Obfuscated JavaScript with dynamic code execution
Low domain reputation despite brand impersonation
Redirect chain that may obscure true destination
Domain age information unavailable

Details

Page Title

Dating site to meet singles & find real love in the UK

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

adult content

(46%)

Domain Information

Within the commercial generic top-level domain (.com), 'img.eharmony.com' is registered with subdomain 'img'. The second-level label 'eharmony' is 8 characters long split between three vowels and 5 consonants. Breaking it apart gives 2 words: e, harmony. The median word length lands at 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://img.eharmony.com

Page Load Overview

4.37s
Total Load Time
89
HTTP Requests
13
Domains
662 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-GB
Text Length:10,747 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content46% confidence
Type: spa
Method: ml+structural

All Detected Categories

adult content
46%
social media network
29%
technology software
28%
corporate
25%

Detected Features

Login Form
Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9142.251.110.97United States
AS15169Google LLC
5104.16.219.144United States
AS13335Cloudflare, Inc.
5104.18.95.41United States
AS13335Cloudflare, Inc.
534.102.170.124Kansas City, Missouri, United States
AS396982Google LLC
5104.16.150.240United States
AS13335Cloudflare, Inc.
5188.114.97.3United States
AS13335Cloudflare, Inc.
523.36.162.213Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
5104.16.79.73United States
AS13335Cloudflare, Inc.
534.149.254.14Kansas City, Missouri, United States
AS396982Google LLC
5104.16.217.144United States
AS13335Cloudflare, Inc.
8917--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15DA32BB1A18C047B2A1B6BA9B00EF725B186D624DF0A55D4B3FAD14C93C6FF705B221D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:7HdBYbCVAGYMPUB92WG0bHGq7GTGgGhakq:pzAGYMK9/rZSNCxq

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:101688:ugAIyE0QpJvIDgAQCEdhGygbQNEJFVHwQQIQAAiEKaJoIIQ0cBEBBkClBIiEkAWGUJHVAAx7KCAQARCbIkiH0R2EKACIyCZE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:000a0e6e7f33f318
Perceptual Hash:85117a66437e1ee6
Difference Hash:d9da54dec6e60771
Wavelet Hash:002a0e7f7f33f318
Color Hash:#406cbf

Other Hashes

Crop Resistant:e5e1c1c9e0e76783,677666667274b010,c8da54dec6e60770

Scan History

Scan history not available

Unable to load historical scan data