alphaxclub.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-13 · ok HTTP/1.1 200 867 ms crawled 2026-05-13

US · 104.18.28.115 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: หน้าหลัก | Alpha X
Description: Alpha X พร้อมมอบบริการทางการเงินเหนือระดับ ที่รังสรรค์มาให้เหมาะสมกับลูกค้าคนสำคัญเช่นคุณ
Language: th

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Cloudflare Insights

Third-party hosts loaded (3)

cookiecdn.com×2
code.jquery.com×1
static.cloudflareinsights.com×1

Social

Contact

Phone

020095200

Registration

Registrar

TLDS L.L.C. d/b/a SRSPlus

Created

2021-10-04

Expires

2026-10-04 137 days left

Updated

2021-12-21

Name servers

ns1.3gig.com
ns4.3gig.com

DNS records live

NS

ns1.3gig.com
ns2.3gig.com

MX

5 alphaxclub-com.mail.protection.outlook.com

TXT

MS=ms32033113
apple-domain-verification=rvnlic8sG552Cm8k

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; adkim=s; aspf=s; rua=mailto:it@alphax.co.th; ruf=mailto:it@alphax.co.th; fo=1

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArk4oje5vt4gPmKLtiHp1uaFKwyCSFtcoeyUXXikEB7M0FtsZhz4DZDrr8yC5PmlxeefJPE3zdzbTq+…

selectors probed

Certificate (current)

GoGetSSL RSA DV CA

from 2026-01-21 to 2027-01-22

Expires in 247 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://alphaxclub.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://static.cloudflareinsights.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://unpkg.com https://code.jquery.com https://*.hotjar.com https://metrics.hotjar.io https://cookiecdn.com https://www.googletagmanager.com https://analytics.google.com https://*.google-analytics.com https://connect.facebook.net https://clarity.microsoft.com https://*.clarity.ms https://c.bing.com https://static.zdassets.com https://*.zendesk.com https://cdn.jsdelivr.net; script-src-elem 'self' 'unsafe-inline' https://code.jquery.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://unpkg.com https://static.cloudflareinsights.com https://static.hotjar.com https://metrics.hotjar.io https://cookiecdn.com https://www.googletagmanager.com https://analytics.google.com https://*.google-analytics.com https://connect.facebook.net https://clarity.microsoft.com h
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (2)

facebook.com×2
instagram.com×2

Linked from (2)

data-x.ai×2
scbx.com×2