OSINT Screening Report — www.arenabreakoutinfinite.com

Security Advisors · OSINT Screening Report

www.arenabreakoutinfinite.com

Perimeter-focused OSINT screening for the publisher marketing host www on arenabreakoutinfinite.com (public storefront / download funnel for Arena Breakout: Infinite). Pack wwwarenabreakoutinfi-1.

Data access: 2026-05-21

Type: Public domain · videogame marketing website

Jurisdiction: NL (RDAP registrant org field) · global CDN egress (SG/US samples)

Infrastructure: Dnspod authoritative NS · Tencent EdgeOne/dnsv1 CDN path · OV TLS (DigiCert)

Final verdict · section 13 (methodology alignment)

⚠️ Proceed with restrictions

26 / 100

Moderate band (21–40 · Moderate risk): passive technical signals strongly resemble a professionally operated mass-market videogame site (enterprise registrar, OV TLS branding, COS object responses, consistent page title/copy). Institutional teams should still run entity-level screenings on the contractual publisher (shown in Registrar RDAP as Proxima Beta Europe B.V.), align geopolitical/export-control/vendor policies where applicable to China-linked multinational publishing stacks, and treat certificate transparency/archive pulls as retries when latency blocks automated harvest.

📋 Request data

Field	Content
Name	Host www.arenabreakoutinfinite.com, apex correlated arenabreakoutinfinite.com
Correlation	Registrar RDAP lists registrant organisation Proxima Beta Europe B.V.; public distribution channels cite Arena Breakout: Infinite on Steam/Epic storefronts independently of WHOIS depth.
Country	Netherlands flag on WHOIS-grade address stub (Registrar RDAP adr.cc=NL) with multi-region CDN footprints when resolving www.
Website	https://www.arenabreakoutinfinite.com/en/index.html
Purpose	Due diligence perimeter screen for phishing/infra legitimacy and policy alignment when linking or contracting around the marketed download funnel.
Data collected	Snapshot queries on 2026-05-21 (RDAP freshness stamps show same-day Registrar/Registry synchronization).
Open questions	Formal contracting counterparty LEI/KvK filings for Proxima Beta Europe B.V.; whether your policy treats Tencent-linked intermediaries differently from generic EU-incorporated marketers.

📋 OSINT Report — Sections 1–13

1. Subject of review

Object: Public web host www.arenabreakoutinfinite.com terminating TLS for marketing HTML promoting Arena Breakout: Infinite (PC).

Identifiers sampled: Registry handle 2805473348_DOMAIN_COM-VRSN; IANA registrar ID 292 (MarkMonitor).

2. Summary

Registrar RDAP publishes an organisational registrant Proxima Beta Europe B.V. with Netherlands country metadata and privacy redactions on natural-person fields. Apex DNS delegates to Tencent’s Dnspod “Pro” authoritative pair, while www publishes through a Tencent EdgeOne-compatible cdn.dnsv1.com canonical name chain terminating on multi-IP Akamai/CDN-looking nodes in sampled Cloudflare resolver output. Passive urlscan corpus entries show OV-class DigiCert issuance, repetitive page title aligning with storefront copy, and HTTP Server: tencent-cos fingerprints.

3. Risk Score

26 / 100 — aligns with methodology band 21–40 · Moderate risk because geopolitical/export-control overlays for multinational game publishing stacks outweigh pure technical spoofing suspicion (which presently reads low).

4. Main red flags

confirmed fact No spoof-only infrastructure anomalies (unsigned HTTP downgrade loops, blatant registrar mismatch, hostile parking) surfaced in sampled resolver + passive scan channels.

requires manual check Sanctions/export-control suitability must be rerun against the actual invoicing/signing entity in your onboarding stack — this domain review does not replace OFAC/EU/Ukraine list workflows.

5. Registration data

confirmed fact Verisign COM RDAP creation 2023-08-13T03:03:30Z, expiration 2031-08-13T03:03:30Z, standard MarkMonitor theft locks, authoritative NS pair pro01/pro02.dnspod.com.

confirmed fact Registrar RDAP discloses organisational registrant field Proxima Beta Europe B.V. with GDPR-style remarks Redacted registrant contact data via MarkMonitor tooling.

confirmed fact Email stack advertises Exchange Online ingress (arenabreakoutinfinite-com.mail.protection.outlook.com) with hardened SPF (spf.protection.outlook.com -all).

6. Owners / UBO

confirmed fact Sole concrete ownership signal in RDAP registrant objects is organisational name Proxima Beta Europe B.V.; natural-person beneficiaries are redacted.

probable link Industry-neutral open sources recurrently bracket Proxima Beta publishing labels under Tencent international operations — treat as reputational/policy context, not a substitute for filings.

7. Related persons & companies

probable link Passive scan metadata cites Tencent COS / Edge CDN naming; aligns with Apex TXT tokens referencing Google webmaster tooling and Microsoft 365 onboarding — plausible multi-vendor SaaS perimeter for marketers.

hypothesis Additional related domains (localized stores, influencer landing pages, anti-cheat update endpoints) likely exist beyond this single host — map via certificate transparency once APIs respond.

8. Sanctions risks

requires manual check No authoritative OFAC/EU Consolidated/Ukraine NSDC positive match was enumerated during this perimeter job; escalate with sanctioned-party screening keyed to invoicing LEI/name.

confirmed fact Technical registration stack (MarkMonitor, extended horizon, OV TLS) lowers likelihood of improvised criminal clone sites but cannot negate policy prohibitions imposed by purchasers.

9. Litigation risks

requires manual check Videogame IP / anti-cheat / consumer-protection disputes routinely hit major publishers — no docket search here; consult counsel/PACER equivalents if precedent matters materially.

10. Debts / enforcement proceedings

n/a · not found in available sources — no tax-debt registers, bankruptcy notices, or civil enforcement breadcrumbs surfaced through passive DNS/WHOIS alone.

11. Reputational background

probable link Genre-level discourse (loot economies, cheating, geopolitical sensitivities involving Chinese publishers in Western markets) is ambient for the category.

confirmed fact Public landing copy stresses anti-cheat telemetry and fairness messaging (marketing claim only — independently verify against product disclosures).

12. Tender history

confirmed fact Not materially applicable for a videogame marketing host; Ukrainian Prozorro or EU TED searches keyed to UA-EDR identifiers would require a contracting corporate Ukrainian entity unrelated to WHOIS-derived strings.

13. Conclusion

⚠️ Proceed with restrictions — treat as credible commercial infrastructure lacking signs of improvised impersonation while still aligning with geopolitical/export-control vendor policies before funds, data integrations, or brand co-marketing. Refresh screenings when Proxima Beta or upstream parents change invoicing footprints.

⚠️ Main red flags · operational watch-items

1 CDN / multinational hosting footprint spans multiple geopolitical regions

confirmed fact Resolver samples return IP sets announced under CDN-style AS identifiers (multiple 43.x endpoints linked to OVSC CDN scheduling), while passive urlscan results often geolocate egress to Singapore-labelled AS139341.

Implication for data-protection reviews: egress geography may oscillate absent contractual data residency carve-outs.

2 DNSSEC omitted at COM delegation

confirmed fact Verisign RDAP publishes secureDNS.delegationSigned = false — common among consumer brands yet weakens spoofing defenses versus DNSSEC-complete zones.

3 Certificate transparency & Internet Archive probes incomplete

requires manual check crt.sh automated JSON retrieval failed.

Medium Internet Archive CDX returned an empty dataset for sampled domain-scope query — rerun or broaden parameters outside this window.

OV TLS metadata corroborates via passive urlscan (DigiCert chain, validity window commencing 2026-01-14 in recent tasks).

📊 Risk assessment

Criterion	Triggered	Factual basis (snapshot)
Sanctions (official lists)	not enumerated here	requires manual check — rerun in your AML stack against precise legal name/LEI.
Connection to RF / RB / occupied territories	n/a	requires manual check if policy mandates geopolitical mapping beyond infra fingerprinting.
Bankruptcy / insolvency	no	No insolvency hints pulled from Registrar/Registry objects.
Tax debt	n/a	WHOIS-centric pass lacks tax authority confirmations.
Enforcement proceedings	not found	Passive OSINT lacks national enforcement DB hits.
High litigation activity	contextual only	probable link for marquee publishers — qualitative only.
Frequent director changes	n/a	Corporate tree not scraped here.
Recent UBO change	n/a	WHOIS organisational field stable snapshot on 2026-05-21 without historical deltas.
Related companies with issues	unknown	requires manual check upstream parent mapping.
Negative media coverage	not scored	Ambient category noise not numerically adjudicated herein.
Tender violations / competition authority	n/a	Marketing domain unrelated to procurements datasets.
Final risk score · Range	26 / 100 — 21–40 · Moderate risk

🛡️ Sanctions & registries (summary)

Registry	Result
OFAC Sanctions Search (automated perimeter)	Not enumerated
EU Consolidated Financial Sanctions (automated perimeter)	Not enumerated
Ukraine · State Register of Sanctions	Not enumerated — use primary drs.nsdc.gov.ua workflow if mandated
ICANN-accredited Registrar reference	MarkMonitor Inc. (IANA 292) visible via RDAP
Brand / infra alignment cues	DigiCert OV + Tencent COS fingerprints + storefront copy cohesion
Prozorro / UA public procurement linkage	n/a for host-only screen
ЄДР / ЄДРПОУ corporate registry	n/a — Ukrainian legal entity identifiers not surfaced by subject

⚙️ Technical infrastructure

Technical summary

DNS · CNAME+A (Cloudflare DoH snapshot)

www → *.cdn.dnsv1.com. → ovslegodl.sched.ovscdns.com. IPv4 incl. 43.159.77.160

DNS · NS apex

pro01.dnspod.com / pro02.dnspod.com

DNS · MX

arenabreakoutinfinite-com.mail.protection.outlook.com

TXT · SPF excerpt

v=spf1 include:spf.protection.outlook.com -all

Passive scan · ASN cluster

Repeated AS139341 ACE-AS-AP ACE, SG (urlscan snapshots)

Passive scan · HTTP server banner

tencent-cos

TLS · Issuer snapshot (urlscan)

DigiCert OV chain (DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1)

Registry RDAP · lifecycle

Created 2023-08-13 · Expires 2031-08-13 UTC

Registrar locks · status verbs

client delete/transfer/update prohibited

DNSSEC (@ COM delegation)

delegationSigned: false

Certificate Transparency · crt.sh

JSON pull failed (requires manual check)

Internet Archive · CDX API

Empty dataset in sampled scoped query (requires manual check)

📚 Sources

High Verisign COM RDAP · arenabreakoutinfinite.com — lifecycle, NS delegation, statuses · 2026-05-21
High MarkMonitor Registrar RDAP — registrant organisation Proxima Beta Europe B.V., redaction notes · 2026-05-21
High Cloudflare 1.1.1.1 DNS-over-HTTPS — A/CNAME traversal for www host · 2026-05-21
Medium urlscan.io public search API — historical TLS issuer, COS banner, ASN, page title · queried 2026-05-21
Medium Arena Breakout: Infinite marketing site copy — corroborative surface content · fetched 2026-05-21
Medium Steam storefront listing — independent storefront correlation for naming · reference 2026-05-21
Medium ipinfo.io ASN hint — coarse routing label for sampled IPv4 (AS139341) · 2026-05-21
Not retrieved crt.sh — certificate transparency corpus unavailable in automated window
Not retrieved Internet Archive CDX — empty array for sampled parameters

✅ Recommended next steps · What to do next

🧭Identify the invoicing/signing LEI/legal name beneath Proxima Beta Europe B.V. for your onboarding forms and rerun sanctions/export screening on that ledger line.
🛂Where Ukraine controls apply, consult official portals (e.g. drs.nsdc.gov.ua) keyed to sanctioned-party transliterations unrelated to typo domains.
🔒Retry crt.sh CT harvest and archival crawls offline to catalogue marketing subdomains and detect future lookalikes used in credential phishing.
🌍For privacy reviews, document CDN egress variability (Singapore/US samples diverge across providers) versus contractual GDPR representations.

⚖️ Limitations of this review

Passive registrar/DNS/passive-scan OSINT excludes authenticated corporate filings, ticketing systems, subpoena-scope evidence.
Sanctions confirmations require querying official tools with sanctioned-party naming nuances; absence here is procedural, not a negative adjudication.
Resolver outcomes may differ under split-horizon DNS depending on vantage point/country censorship.
Language: storefront copy scraped primarily in English; localized hosts may diverge legally.

Brief report

Subject

www.arenabreakoutinfinite.com — marketing host for Arena Breakout: Infinite; Registrar RDAP lists Proxima Beta Europe B.V. with Tencent-flavoured CDN/COS footprints.

Risk Score

26 / 100 — 21–40 · Moderate risk
Infrastructure reads enterprise-grade yet geopolitical/compulsory AML workflows remain mandatory offline.

License

n/a — domain storefront not itself a regulated financial licence; gameplay compliance handled under separate publication agreements.

Regulator

No singular internet “regulator” — map to Tencent/Proxima contractual policies plus destination-market consumer-protection bodies if monetization occurs.

Infrastructure

Dnspod NS; EdgeOne-compatible dnsv1 CDN; Microsoft 365 inbound MX; OV DigiCert chain; COS banner in passive corpus.

Similar entities

requires manual check other Proxima-affiliated storefront domains and influencer tracking links tied to Tencent publishing.

Verdict

⚠️ Proceed with restrictions pending entity-level AML/geopolitical sign-off despite benign phishing heuristics.

Actions

Run official sanctions lookups; ingest corporate filings for Proxima Beta Europe B.V.; reattempt CT/archival tooling; reassess CDN data residency disclosures.

This report is a preliminary OSINT screening based on publicly available sources and does not constitute a legal opinion, accusation, or final compliance assessment. Critical findings require manual verification and confirmation from official sources. | 2026-05-21 | Security Advisors · OSINT Due Diligence Agent