Domain image.direct.fwd.co.th
United States
AMAZON-02
Software information

AkamaiGHost

tcp/443

CloudFront

tcp/443 tcp/80

  • Open service 2600:9000:20ae:d400:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:20 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 64de0e8f28c987c1b81102130781b870.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: GS0g_h1ruUjJPsDJIgkRTds20dHsmO6fxZ6c0P--Yl_Ow8V2U1HUDw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.93:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:20 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 3909cd34f904454f54cf78c975b2c198.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: eYD1WaLsWjvdYqpOmoxbNp9foV3t-svLDGQBiIrhRay6dDteeNPpEA==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:de00:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:20 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 258e5fe72bfca83e099f880853f68ab4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: BMbf_1b8hlOxJFfCjjzUxx87NFTvEzX96IM7IQLU4DwyryYLwXYbrg==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.64:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:20 GMT
Content-Type: text/html
Content-Length: 919
Connection: close
X-Cache: Error from cloudfront
Via: 1.1 7d775f7e444ed74169f0db8decde7d20.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: TsIN6WGxFQuCSTZ4-D2dBXCaLdSHZP_znXvLuuIxPBznrwSytEfAgw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: ERROR: The request could not be satisfied

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR: The request could not be satisfied</TITLE>
</HEAD><BODY>
<H1>403 ERROR</H1>
<H2>The request could not be satisfied.</H2>
<HR noshade size="1px">
Request blocked.
We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.
<BR clear="all">
If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.
<BR clear="all">
<HR noshade size="1px">
<PRE>
Generated by cloudfront (CloudFront)
Request ID: TsIN6WGxFQuCSTZ4-D2dBXCaLdSHZP_znXvLuuIxPBznrwSytEfAgw==
</PRE>
<ADDRESS>
</ADDRESS>
</BODY></HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:d400:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 f6bc6f6279f11021614bfd42e1f4410e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: Wqn4QJpMaz2DIRaBOPDZGmnoMEGjyv17_1luYU_j7KbEucNdCFxCEw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043380&#46;2c1f2172
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043380&#46;2c1f2172</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.64:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 cd703a45a77324fb8797a25a15ba227e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: xUB3xWBsPmC1FGJRGNcXuW5M116Oh0nYqN1z9ar-_dTyEuUjzb1V0Q==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:4800:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 258e5fe72bfca83e099f880853f68ab4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: a0itP1TZcj7egrspSlcrslKp6eanKC198Nt9UUYzTqf9sbrVbtOQDw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043380&#46;2c1f21cc
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043380&#46;2c1f21cc</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:d200:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 ef17b5e16dfd912970beabcf9b8552b0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: FAvSrQ8rYww7b8iJt09ZGgFfb7rO-mOqgOJnADOIuWMhQxGYAIWT4w==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.65:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:20 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 258e5fe72bfca83e099f880853f68ab4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: pTOYC73srjuiS6pISvg6jJg09xIlEMke5f3FRDyyiN4xDIJegE3ozA==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.56:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 919
Connection: close
X-Cache: Error from cloudfront
Via: 1.1 b87d7a7588235c761c8602f922d332f4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: UdXzLJAQQjQeBTrV6IxGg0_09xBhrtRRnMjmJTO75Pqn7NhmPZGGVQ==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: ERROR: The request could not be satisfied

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR: The request could not be satisfied</TITLE>
</HEAD><BODY>
<H1>403 ERROR</H1>
<H2>The request could not be satisfied.</H2>
<HR noshade size="1px">
Request blocked.
We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.
<BR clear="all">
If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.
<BR clear="all">
<HR noshade size="1px">
<PRE>
Generated by cloudfront (CloudFront)
Request ID: UdXzLJAQQjQeBTrV6IxGg0_09xBhrtRRnMjmJTO75Pqn7NhmPZGGVQ==
</PRE>
<ADDRESS>
</ADDRESS>
</BODY></HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:de00:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 c2741d5ee2beeb4c9f22fb24f76708b6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: 38Z25zBOPJIRN2KSN6f_CGmuINnN267ptdzvjyaKTmZEGzs8xAzw4g==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043379&#46;2c1f204e
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043379&#46;2c1f204e</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:2200:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 2be8016001d2c9c5362b82e28629d2d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: v4MyheabdCBWANVoL8iV0jVe0FUxIJ83z916pU1DPAi5W2bn7IYm8w==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:d200:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 ef17b5e16dfd912970beabcf9b8552b0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: XftGhezVrVhdm8i0Re1jg_K-R8gFnD7sHgY6ZDsq2ELVzUNZUIO4Iw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043380&#46;2c1f215a
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043380&#46;2c1f215a</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:ae00:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 cd703a45a77324fb8797a25a15ba227e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: INDuPg-GNJ4YL3cZe8XYx120mC4U1-o4XRVnVKhFvDYGLBom_wKkpw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043379&#46;2c1f1ff6
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043379&#46;2c1f1ff6</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:4800:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 f9e65f6efaf09565a6c3bbb6d064bfca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: o-ENiYIk1lMhn011iUW1kC7yB-7CG9KizUF2jWf_KxSR6T9r5fdZAw==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.65:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 919
Connection: close
X-Cache: Error from cloudfront
Via: 1.1 86f0f41c4d8083f2bfc3d1c3d9719bbc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: gCWowj-XfRFuvfpFJspEQPy1oYGHFAZ4eOetEw4DbNhhCwsjAHHVgQ==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: ERROR: The request could not be satisfied

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR: The request could not be satisfied</TITLE>
</HEAD><BODY>
<H1>403 ERROR</H1>
<H2>The request could not be satisfied.</H2>
<HR noshade size="1px">
Request blocked.
We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.
<BR clear="all">
If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.
<BR clear="all">
<HR noshade size="1px">
<PRE>
Generated by cloudfront (CloudFront)
Request ID: gCWowj-XfRFuvfpFJspEQPy1oYGHFAZ4eOetEw4DbNhhCwsjAHHVgQ==
</PRE>
<ADDRESS>
</ADDRESS>
</BODY></HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.93:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 919
Connection: close
X-Cache: Error from cloudfront
Via: 1.1 c2741d5ee2beeb4c9f22fb24f76708b6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: DiifM6Yn9f9w7l9_2rLLaiYnFBrEkvsD8NlGDH1Cb4VgRHOOT3_XsA==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: ERROR: The request could not be satisfied

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR: The request could not be satisfied</TITLE>
</HEAD><BODY>
<H1>403 ERROR</H1>
<H2>The request could not be satisfied.</H2>
<HR noshade size="1px">
Request blocked.
We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.
<BR clear="all">
If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.
<BR clear="all">
<HR noshade size="1px">
<PRE>
Generated by cloudfront (CloudFront)
Request ID: DiifM6Yn9f9w7l9_2rLLaiYnFBrEkvsD8NlGDH1Cb4VgRHOOT3_XsA==
</PRE>
<ADDRESS>
</ADDRESS>
</BODY></HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:2200:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 e6ecdd688219ba98d4d4d70abc494a54.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: 4RTMfoQBB8oIw6kZFIaoRPAr9eZ181d3byaTPoKrVBrpVGQrKLyNLQ==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043379&#46;2c1f2025
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043379&#46;2c1f2025</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:5200:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 653de2a3596d1ebffe452d8daf65c9ea.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: MbsE_viKcm5IbKW6ba-cV8Xvjvb2ZqNpcLR12JRuxjTklHHrVBiN_A==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043379&#46;2c1f2015
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043379&#46;2c1f2015</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:b600:3:cf9f:b2c0:93a1:443 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 403 Forbidden
Content-Type: text/html
Content-Length: 384
Connection: close
Server: AkamaiGHost
Mime-Version: 1.0
Expires: Thu, 22 Jan 2026 00:56:20 GMT
Date: Thu, 22 Jan 2026 00:56:20 GMT
Set-Cookie: strict
X-Cache: Error from cloudfront
Via: 1.1 86f0f41c4d8083f2bfc3d1c3d9719bbc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: hB3I5yowRh717te8QfAVg7xHY97K7I4yZZddO30X8cQfTW8dWFtC4Q==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;image&#46;direct&#46;fwd&#46;co&#46;th&#47;" on this server.<P>
Reference&#32;&#35;18&#46;d0b31402&#46;1769043379&#46;2c1f1ff4
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;d0b31402&#46;1769043379&#46;2c1f1ff4</P>
</BODY>
</HTML>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 54.230.228.56:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 f6bc6f6279f11021614bfd42e1f4410e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: zouGhAqI4R4ZVsOVE7OA_0h1TS-JfTd1_RUcY1CQ1eiZz0VVHUp8hg==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:5200:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 7d775f7e444ed74169f0db8decde7d20.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: l1CUNBzcMSORxn_W7_MmoXANC-w3HxnYbrXr7Kb1oz_rte3KJ-jP_g==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:ae00:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 cd703a45a77324fb8797a25a15ba227e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: mEnIj0xbq2sz2EoRbZ5VPjoQTnUu8wtWeaQ8wdl299J7n1_i355h8w==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report

  • Open service 2600:9000:20ae:b600:3:cf9f:b2c0:93a1:80 · image.direct.fwd.co.th

    2026-01-22 00:56 

    HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 22 Jan 2026 00:56:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://image.direct.fwd.co.th/
X-Cache: Redirect from cloudfront
Via: 1.1 7d775f7e444ed74169f0db8decde7d20.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: MUC50-P5
X-Amz-Cf-Id: 6I1PouzAopLXq_TAncprRrPvU7b-hRcQsr3BKOeAbi3YigpXxaI2qQ==
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Referrer-Policy: origin-when-cross-origin
Content-Security-Policy: default-src 'self'; frame-ancestors 'self'
X-Content-Type-Options: nosniff
Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private
Permissions-Policy: geolocation=(self), microphone=()
Set-Cookie: strict

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
    Found 2026-01-22 by HttpPlugin
    Create report
image.direct.fwd.co.th
Fingerprint:
582d89c12922788fdd2f16813358ed08820a8fa1c799b8f652d4fb3172771acf
CN:
image.direct.fwd.co.th
Key:
ECDSA-256
Issuer:
Amazon ECDSA 256 M01
Not before:
2026-01-05 00:00
Not after:
2027-02-03 23:59
Domain summary

image.direct.fwd.co.th 23

1 recorded
IP summary

2600:9000:20ae:d400:3:cf9f:b2c0:93a1 1 54.230.228.93 1 2600:9000:20ae:de00:3:cf9f:b2c0:93a1 1 54.230.228.64 1 2600:9000:20ae:4800:3:cf9f:b2c0:93a1 1 2600:9000:20ae:d200:3:cf9f:b2c0:93a1 1 54.230.228.65 1 54.230.228.56 1 2600:9000:20ae:2200:3:cf9f:b2c0:93a1 1 2600:9000:20ae:ae00:3:cf9f:b2c0:93a1 1 2600:9000:20ae:5200:3:cf9f:b2c0:93a1 1 2600:9000:20ae:b600:3:cf9f:b2c0:93a1 1

12 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice