MalwareTips
Security Review

Is hrm.ontp.app legit or a scam?

Our verdict:Safe· 85/100

Teleperformance internal HR portal (hrm.ontp.app) with Microsoft OAuth login — legitimate employee infrastructure, no fraud indicators detected.

Why we trust it
Valid SSL certificate from a trusted issuer (Sectigo) with 127 days remaining.Hosting IP has zero abuse reports and a clean reputation score.Multiple related subdomains (login.ontp.app, mytp.ontp.app, timeclock.ontp.app) consistently serve Teleperformance employee functions.
hrm.ontp.appScanned 3h ago
Post Facebook
0
Trust score
SAFE
Heuristics 90·MT 82
View density

Analysis Summary

Threat Intelligence
0/0
All engines report clean
Domain Age
Registration date unknown
MT Intelligence
Safe
Low likelihood · 92% confidence
SAFE

No threats detected

All checks passed. This site appears legitimate — but always stay alert for phishing even on trusted domains.

Website Preview

Screenshot of hrm.ontp.app
LIVE RENDER
hrm.ontp.app
1Login page for a service branded 'HAIreX' uses Microsoft's official four-color logo icon on a 'Sign in with Microsoft' button — third-party apps legitimately use this OAuth button, but the brand 'HAIr

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

40
/ 100
Moderate visual risk

Visual red flags detected in the screenshot

The page presents a simple Microsoft OAuth login for a service called 'HAIreX' with no overt scam indicators visible; however, the absence of a visible URL bar prevents confirming domain legitimacy, and the sole credential-collection mechanism being a Microsoft sign-in button warrants caution if the hosting domain does not match the brand.

Visual risk40/100

What our vision model saw

4 signals

Login page for a service branded 'HAIreX' uses Microsoft's official four-color logo icon on a 'Sign in with Microsoft' button — third-party apps legitimately use this OAuth button, but the brand 'HAIr

No URL bar visible in the screenshot, making it impossible to confirm whether the domain matches the displayed brand or is a phishing clone.

Minimal page content: only a logo, welcome text, single OAuth button, and language selector — no privacy policy, terms of service, or contact information visible.

Page design is clean and professional-looking with no obvious broken layout, placeholder text, or urgency tactics.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Low scam likelihoodengineMT · Guardiantrust82/100
MT AgentLive web researchVisual inspection
0%
Confidence
The domain hrm.ontp.app is part of Teleperformance's internal employee-portal infrastructure, confirmed by consistent references across multiple related subdomains (login.ontp.app, mytp.ontp.app, timeclock.ontp.app, spain-employee.ontp.app) all serving HR, identity, and time-tracking functions. Our web research found no scam reports, complaints, or phishing mentions; instead, the domain appears in official Teleperformance contexts including internal cybersecurity training materials and union-related pages. The SSL certificate is valid and current, the hosting IP has zero abuse reports, and our antivirus network flagged nothing. The Microsoft OAuth button on the login page is a standard third-party integration, not a phishing indicator. While the screenshot lacks a visible URL bar, the constellation of legitimate business signals — consistent subdomain naming, official Teleperformance references, and absence of any fraud evidence — strongly indicates this is a genuine internal business tool.
Full dossier
Analysis complete

Page Content

The page displays a login interface branded 'HAIreX' with a Microsoft sign-in button and language selector. The design is clean and professional with no urgency tactics, broken layouts, or placeholder text. The minimal content (logo, welcome text, OAuth button) is typical of enterprise single-sign-on portals.

Infrastructure

Hosted on IP 52.191.63.107 with zero abuse reports and a clean reputation score. SSL certificate issued by Sectigo Limited is valid with 127 days remaining. No redirects or domain-spoofing indicators detected.

Domain History

WHOIS data unavailable, but the domain is part of the ontp.app namespace consistently used by Teleperformance for internal employee tools. Related subdomains include login.ontp.app (employee login), mytp.ontp.app (identity platform), timeclock.ontp.app (time tracking), and spain-employee.ontp.app (regional employee portal). The hrm.ontp.app subdomain specifically hosts candidate-portal functionality at /candidatepe.

Web Reputation

Our antivirus network and browser blocklists show no flags. Independent trust-rating sites returned no data (typical for internal corporate portals not indexed for public review). Web searches found no scam reports, complaints, or phishing mentions. The domain is referenced in official Teleperformance contexts including internal cybersecurity training and union-related pages on social media.

Risk Factors
2
  • Screenshot lacks visible URL bar, preventing visual confirmation that the displayed domain matches the brand — users should verify the address bar shows hrm.ontp.app before entering credentials.
  • Sole credential-collection mechanism is a third-party OAuth button; if accessed via a phishing link, the user could be redirected to a clone before reaching this page.
Positive Signals
5
  • Valid SSL certificate from a trusted issuer (Sectigo) with 127 days remaining.
  • Hosting IP has zero abuse reports and a clean reputation score.
  • Multiple related subdomains (login.ontp.app, mytp.ontp.app, timeclock.ontp.app) consistently serve Teleperformance employee functions.
  • Referenced in official Teleperformance internal training materials and union-related social-media pages.
  • No scam reports, complaints, or phishing mentions found across web searches.
AI Recommendation
This appears to be a legitimate Teleperformance employee portal. If you are a Teleperformance employee or candidate, you can use this page safely — but always verify the URL bar shows hrm.ontp.app before entering credentials, and never click links from unsolicited emails claiming to be from Teleperformance.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for hrm.ontp.app, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
No scam reports found
No complaints, no negative coverage turned up in our sweep.
Key findings
7 headline facts from open-web research
  • hrm.ontp.app displays "Gestión de Recursos Humanos" (Human Resources Management) with hAIreX logo and Microsoft sign-in option.
  • Related subdomains (login.ontp.app, mytp.ontp.app, tpwelcome.ontp.app, timeclock.ontp.app, spain-employee.ontp.app) are used for Teleperformance (TP) employee login, identity platform, candidate portal, time clock, and MFA setup.
  • https://hrm.ontp.app/candidatepe is a Teleperformance candidate portal for tracking job application status.
  • ontp.app hosts Teleperformance logo and serves as platform for internal TP applications (myTP, identity platform).
  • Referenced in official Teleperformance contexts including Instagram posts, Facebook union pages, Scribd MFA guides for mytp.ontp.app, and internal cybersecurity training.
  • No scam reports, complaints, phishing mentions, or negative reviews found across web searches including Reddit.
  • Appears to be legitimate internal HR and employee portal infrastructure for Teleperformance, a large global BPO company.
Research summary
Narrative write-up from our AI analyst, grounded on the facts above

We searched scam-report databases, consumer-review sites, and general web sources for hrm.ontp.app and ontp.app and found no scam reports, complaints, or phishing mentions. Instead, the domain is referenced in official Teleperformance internal cybersecurity training materials and union-related social-media pages, confirming it as a legitimate internal business tool. Related subdomains (login.ontp.app, mytp.ontp.app, timeclock.ontp.app, spain-employee.ontp.app) are consistently used for Teleperformance employee login, identity management, candidate portals, and time tracking.

Antivirus Engines

Clean pass · verified
Clean across 0 engines

We cross-check every URL against our antivirus network of 0 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious0Harmless0Engines
Clean
Kaspersky
Not in pass
Bitdefender
Not in pass
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Not in pass
Fortinet
Not in pass
Google Safebrowsing
Not in pass
Emsisoft
Not in pass

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Domain & Encryption

Encryption Certificate
StatusValid
ProtocolTLSv1.2
IssuerSectigo Limited · Sectigo Public Server Authentication CA OV R36
ExpiresOct 14, 2026 (127d)
Self-signedNo
Hosting & Technology
HostingMicrosoft Corporation
Server locationUS

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPMicrosoft Corporation
Usage typeData Center/Web Hosting/Transit

Still, stay alert

No major threat indicators — but a clean scan does not guarantee every page is safe, and phishing emails routinely spoof real domains.

  • Double-check the exact URL in your address bar

    Confirm you are actually on hrm.ontp.app and not a lookalike like h-rm.ontp.app.com or an IDN homoglyph.

  • Use a password manager

    Password managers only auto-fill on the exact domain they were saved for — they refuse to fill lookalike domains, which is the single best phishing defence.

  • Discuss this site on the forum

    If you have first-hand experience with this site — good or bad — share it with the MalwareTips community.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review found no threat indicators on hrm.ontp.app. The site appears legitimate based on the signals we checked, but always stay alert for phishing emails that spoof real domains.
  • hrm.ontp.app passed our automated security checks with a trust score of 85/100. No antivirus engines or major blacklists flagged the site at the time of the last scan.
  • Yes. hrm.ontp.app presents a valid TLSv1.2 certificate issued by Sectigo Limited · Sectigo Public Server Authentication CA OV R36, expiring in 127 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • No. All 0 antivirus engines in our malware network report hrm.ontp.app as clean.
  • No. hrm.ontp.app is not currently listed on the major browser blocklist feeds that modern browsers use.
  • hrm.ontp.app resolves to an IP operated by Microsoft Corporation in US (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • This is a permanent record of the scan run on June 9, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around hrm.ontp.app have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

0
Trust / 100
Final Verdict·hrm.ontp.app
SAFE

This is a legitimate internal HR and employee login portal operated by Teleperformance, a major global business-process outsourcing company. The domain hosts employee management, candidate tracking, and identity-platform services across multiple related subdomains, with no scam reports or complaints found.

This appears to be a legitimate Teleperformance employee portal. If you are a Teleperformance employee or candidate, you can use this page safely — but always verify the URL bar shows hrm.ontp.app before entering credentials, and never click links from unsolicited emails claiming to be from Teleperformance.

AV engines
0
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Safe reports

Browse all reports
Safetrust85
bitref.com
2m ago
Read the review
Safetrust90
matc.org
4m ago
Read the review
Safetrust86
ascon-business-akademie.de
48m ago
Read the review
Safetrust79
scantron.com
48m ago
Read the review
Safetrust84
legal-eos.com
52m ago
Read the review
Safetrust75
celltowerolgc.com
52m ago
Read the review
Safetrust88
prodregistryv2.org
58m ago
Read the review
Safetrust87
primaryarms.com
1h ago
Read the review
Safetrust86
adultempire.com
1h ago
Read the review
Safetrust90
kanzlei.biz
2h ago
Read the review
Safetrust78
visiondrivenglobal.com
2h ago
Read the review
Safetrust84
napthe.vn
2h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.