ID da verificação
40ff20a2-c3e5-4385-90d0-f69492351d7eConcluído
URL enviado:
https://www.sanborns.com.mx/
Relatório concluído:

Cookies · 13 encontrado(s)

Copy link

Cookies são pequenos arquivos de texto armazenados no dispositivo de um usuário, frequentemente usados para lembrar as preferências do usuário e permitir experiências personalizadas

NomeValorDomínioCaminhoExpira em (UTC)SeguroSomente HTTP
ak_bmsc91B8D90E938ED4D7D4A9F5B4F33A8DF2~000000000000000000000000000000~YAAQw9MRAtqKQ2qUAQAARA/2axqo7Y1BhM8yTkUI1gzU3lBzuNWs381F8lkIP2wZaz8FIFMG8kk+IP/PK4ABXQdiPJvTfQ3Yv1bZ+IeN4g9SqFdGvrI2NmW1q2GUPH74YAC6JWRE3BR/1EHZwb3aJjjpk22pHfvLMxgnpLJ4q2Um+v1BjbsSjzJDuwcjNkmag3I03tCaKDw/Sr1z0Dy0sOZrSt3lsX/ddIX/ag7J4t7P7qU3AYSWDvSSMmXDvf0hZwqGpzv53J5al1VnFs92Znxsg05wXw1xEvkGCWcwQQJdwJopLMgo0LAzX9A9fl/KvweTO+lUL4D9+r17pH/JqIQogH5dbWiQIAqFLHnZnqkYsZEylyEDB7ikQ3cc0MqAvUvIkbIEoJTRnCbYSR/a.sanborns.com.mx/NãoNão
bm_sz3CF59A73E37F8808B5A874AE3E48E489~YAAQw9MRAjuLQ2qUAQAA0h/2axpFkXZ105igt4nPlolx+X9tVIb7rU+55OyrBMYT7PU9VV7LCnktDK7Cu84fN8evzt43P62VqHsn0fTZCjOS0G6knR1ySNBnf3RuA0E9MGh78U+qa1ZCQ63YL5NEhNyHKmhLfIBMcik2ubhmSUaI1oB3Cbm1z8njZQeMsZhmh3BxcOcL0yLUZEyWI/6TmPf/tJRfPsbBoWx04sFa4r5/EmDQTlVWq2E+i++RzFjfJnJ8ANxUvUYEdAarUWrb5YNIG4TeG7O9KnsDLggKkVUxWOuuwIfOmdjI07tvvKzvxC5SzaYjRhHdZliRtiyZpVPCSO5P8h/4TshLMEvjCcJ7Ii3crtN2s6hasyRKAZEe7gav0HQmsjcpmjyL3wTGXL52irwnN6Q=~3490355~3224115.sanborns.com.mx/NãoNão
bm_svFF2692D01156EA3A6BF68FF4AC962F93~YAAQw9MRAkWLQ2qUAQAA6CH2axrNoto5cDj49U+cxX6na2OA+ldFy1HBqjqJtvHTCMMNNLyX1KCvd7o9NDEgbNJpF5CRF3A39a9gVisO/hMcT5+OMAcf8nrIn7TczWPm8NApce9ddjymyjhFQ/RUNtJ+/nQOVhMhWaNBbYEIBKqEcgoNEX9SsBJuTNqVSAp8K+lNVbnQxjms+EaX2uptklpC0HAai9CQrlVlOs8KRRT1BjmrddeJ57gkJgBKQHfgxQ1hENY=~1.sanborns.com.mx/SimNão
_abck1EBA38B599ADD420B99112A2067E7732~0~YAAQw9MRAkqLQ2qUAQAARyP2aw1UJTQYpB+9UBEZxkNIq2RZVQAUDQylAdY2ZKeT89vh1ON+CWLzDXtdJv1iGVZudxeHUJ1Rct89GNTi4S9lnkDEs6sR/BfDYwfRsWh7vdYsoS1wdJ8UyTMqoXL3JLn9FLWncmr2SOtXboF5DJhRVfx1IdyI3dE4YkR25cwegl7niM8iLrDcv5LO/L+jF7L0RU5f/AVVfrwGZPVIRL7pyav+V5m8FQDu2kDQRHkrabe7SFXNNfKO0wjHVmgbl9IBhcr1E6um6ZE2UgTAzsx/1BXSsgOtseT9ormIhCp/I1ZK8j/M0+fhrBnV6f4OikhJIICcWLPJqIeGJTuP4otadbFg56euTbcYEiKt3U3OyIVqQ6q6DDbHxKBE98pALh5/RmnDj7aRFSk/L/Kjpfq1DihjVnYXe87iQCnuoqQ9AFMN2Dtno/6L+dud71qUTXFzfqEH34meI2Xs4HcAv6mZ6xvg/L2LNrIzwZlgODnT~-1~-1~-1.sanborns.com.mx/SimNão
_ga_9JTKT3F2ZSGS1.1.1736978081.1.0.1736978081.60.0.0.sanborns.com.mx/NãoNão
_gcl_au1.1.1232761543.1736978082.sanborns.com.mx/NãoNão
_gidGA1.3.922120569.1736978083.sanborns.com.mx/NãoNão
_dc_gtm_UA-738463-251.sanborns.com.mx/NãoNão
_gat_UA-69122442-171.sanborns.com.mx/NãoNão
_dc_gtm_UA-69122442-161.sanborns.com.mx/NãoNão

Variáveis JavaScript · 67 encontrada(s)

Copy link

Variáveis JavaScript globais carregadas no objeto janela de uma página são variáveis declaradas fora das funções e acessíveis de qualquer lugar no código dentro do escopo atual

NomeTipo
0object
1object
onbeforetoggleobject
documentPictureInPictureobject
onscrollendobject
akamServiceWorkerInvokedboolean
aka3pmLogfunction
InstanaEumObjectstring
ineumfunction
gtagfunction

Mensagens de registro do console · 6 encontrada(s)

Copy link

Mensagens registradas no console web

LevelOrigemMessage
errornetwork
URL
https://s2.go-mpulse.net/boomerang/SDYW5-P2RXT-GSKT4-XALPC-ZJ5EF
Texto
Failed to load resource: the server responded with a status of 404 ()
warningother
URL
https://www.gstatic.com/firebasejs/10.7.2/firebase-analytics.js
Texto
[2025-01-15T21:54:40.358Z] @firebase/analytics: Failed to fetch this Firebase app's measurement ID from the server. Falling back to the measurement ID G-WY79FXJDVQ provided in the "measurementId" field in the local Firebase config. [Failed to fetch]
errornetwork
URL
https://s2.go-mpulse.net/boomerang/SDYW5-P2RXT-GSKT4-XALPC-ZJ5EF
Texto
Failed to load resource: the server responded with a status of 404 ()
errorsecurity
URL
https://www.sanborns.com.mx/
Texto
Refused to load the image 'https://www.google.es/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9JTKT3F2ZS&cid=1172137844.1736978081&gtm=45je51e0v888583879z8859033452za200zb859033452&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178&tag_exp=101925629~102067555~102067808~102081485~102198178&z=648610869' because it violates the following Content Security Policy directive: "default-src 'self' blob: https://event.syndigo.cloud https://*.syndigo.com/ https://content.syndigo.com/* https://api.emarsys.net/api/v2/* https://yrjk5wm0ee-1.algolianet.com https://yrjk5wm0ee-2.algolianet.com https://yrjk5wm0ee-3.algolianet.com https://yrjk5wm0ee-dsn.algolia.net https://*.algolia.io https://*.algolia.net/ https://*.scaletrk.com https://hotjar.com https://salesclix.net/ https://res.cloudinary.com/powerreviews/ https://ui.powerreviews.com/ https://t.powerreviews.com/ https://webchannel-content.eservice.emarsys.net/ https://cdn.taboola.com/ https://*.googlesyndication.com/ https://*.taboola.com/ https://*.sanborns.com.mx https://*.paypal.com/ https://pagead2.googlesyndication.com/ https://*.safeframe.googlesyndication.com/ https://securepubads.g.doubleclick.net/ https://tpc.googlesyndication.com/ https://*.uniko.co/ https://*.instana.io/ https://seapi.sanborns.com.mx/ https://staticw2.yotpo.com/ https://*.yotpo.com/ https://resources.claroshop.com/ https://*.youtube.com https://*.flixfacts.com/ https://*.flixsyndication.net/ https://*.flixfacts.co.uk/ https://*.flixcar.com/ https://*.flix360.com/ https://*.go-mpulse.net https://s.go-mpulse.net https://pixel-sync.sitescout.com https://*.poder.io/ https://www.clima.com https://www.googletagmanager.com https://www.sanborns.com.mx https://resources.sanborns.com.mx https://*.zopim.io https://www.youtube.com https://staasobj-api.telmex.com https://staasobj-api.telmex.com https://*.online-metrix.net/ https://*.adsrvr.org https://*.doubleclick.net https://dsync.rlcdn.com https://*.facebook.com https://*.facebook.net https://*.gigya.com https://*.googleadservices.com https://*.google-analytics.com https://*.googleapis.com https://*.google.com https://*.google.com.mx https://*.googletagmanager.com https://*.gstatic.com https://*.hotjar.com https://ib.adnxs.com https://*.jquery.com https://*.krxd.net https://*.pingdom.net https://*.scarabresearch.com https://*.thefancy.com https://*.wisepops.com https://*.criteo.com https://*.creativecdn.com https://*.zdassets.com https://*.criteo.net https://checkout.payulatam.com https://graylog.hotjar.com:12443 wss://*.hotjar.com/ wss://*.zopim.com https://*.zopim.com https://web-sdk-cdn.singular.net https://analytics.tiktok.com https://api.claropagos.com https://loginclaro.com https://*.powerreviews.com data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
errorsecurity
URL
https://www.sanborns.com.mx/
Texto
Refused to load the image 'https://www.google.es/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-WY79FXJDVQ&cid=1172137844.1736978081&gtm=45je51e0v9179674181za200zb859033452&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101925629~102067555~102067808~102081485~102123607~102198178&tag_exp=101925629~102067555~102067808~102081485~102123607~102198178&z=687682506' because it violates the following Content Security Policy directive: "default-src 'self' blob: https://event.syndigo.cloud https://*.syndigo.com/ https://content.syndigo.com/* https://api.emarsys.net/api/v2/* https://yrjk5wm0ee-1.algolianet.com https://yrjk5wm0ee-2.algolianet.com https://yrjk5wm0ee-3.algolianet.com https://yrjk5wm0ee-dsn.algolia.net https://*.algolia.io https://*.algolia.net/ https://*.scaletrk.com https://hotjar.com https://salesclix.net/ https://res.cloudinary.com/powerreviews/ https://ui.powerreviews.com/ https://t.powerreviews.com/ https://webchannel-content.eservice.emarsys.net/ https://cdn.taboola.com/ https://*.googlesyndication.com/ https://*.taboola.com/ https://*.sanborns.com.mx https://*.paypal.com/ https://pagead2.googlesyndication.com/ https://*.safeframe.googlesyndication.com/ https://securepubads.g.doubleclick.net/ https://tpc.googlesyndication.com/ https://*.uniko.co/ https://*.instana.io/ https://seapi.sanborns.com.mx/ https://staticw2.yotpo.com/ https://*.yotpo.com/ https://resources.claroshop.com/ https://*.youtube.com https://*.flixfacts.com/ https://*.flixsyndication.net/ https://*.flixfacts.co.uk/ https://*.flixcar.com/ https://*.flix360.com/ https://*.go-mpulse.net https://s.go-mpulse.net https://pixel-sync.sitescout.com https://*.poder.io/ https://www.clima.com https://www.googletagmanager.com https://www.sanborns.com.mx https://resources.sanborns.com.mx https://*.zopim.io https://www.youtube.com https://staasobj-api.telmex.com https://staasobj-api.telmex.com https://*.online-metrix.net/ https://*.adsrvr.org https://*.doubleclick.net https://dsync.rlcdn.com https://*.facebook.com https://*.facebook.net https://*.gigya.com https://*.googleadservices.com https://*.google-analytics.com https://*.googleapis.com https://*.google.com https://*.google.com.mx https://*.googletagmanager.com https://*.gstatic.com https://*.hotjar.com https://ib.adnxs.com https://*.jquery.com https://*.krxd.net https://*.pingdom.net https://*.scarabresearch.com https://*.thefancy.com https://*.wisepops.com https://*.criteo.com https://*.creativecdn.com https://*.zdassets.com https://*.criteo.net https://checkout.payulatam.com https://graylog.hotjar.com:12443 wss://*.hotjar.com/ wss://*.zopim.com https://*.zopim.com https://web-sdk-cdn.singular.net https://analytics.tiktok.com https://api.claropagos.com https://loginclaro.com https://*.powerreviews.com data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
errornetwork
URL
https://resources.sanborns.com.mx/imagenes-sanborns-ii/1200/9786073853972.jpg?scale=150&qlty=65
Texto
Failed to load resource: the server responded with a status of 403 ()

Cabeçalhos de segurança · 3 encontrado(s)

Copy link

Cabeçalhos de resposta HTTP que podem aumentar a segurança de um aplicativo web

Saiba mais...
NomeValorSuporteInfo
Strict-Transport-Securitymax-age=15724800; includeSubDomainsBomDeclarar que um site só pode ser acessado por meio de uma conexão segura (HTTPS).

Clique para saber mais...
X-Frame-OptionsBomIndicar se um navegador deve ter permissão para renderizar uma página em <frame>, <iframe>, <embed> ou <object>.

Clique para saber mais...
X-Content-Type-OptionsnosniffBomIndicar que os tipos MIME anunciados nos cabeçalhos Content-Type devem ser seguidos e não alterados.

Clique para saber mais...
Content-Security-Policydefault-src 'self' blob: https://event.syndigo.cloud https://*.syndigo.com/ https://content.syndigo.com/* https://api.emarsys.net/api/v2/* https://yrjk5wm0ee-1.algolianet.com https://yrjk5wm0ee-2.algolianet.com https://yrjk5wm0ee-3.algolianet.com https://yrjk5wm0ee-dsn.algolia.net https://*.algolia.io https://*.algolia.net/ https://*.scaletrk.com https://hotjar.com https://salesclix.net/ https://res.cloudinary.com/powerreviews/ https://ui.powerreviews.com/ https://t.powerreviews.com/ https://webchannel-content.eservice.emarsys.net/ https://cdn.taboola.com/ https://*.googlesyndication.com/ https://*.taboola.com/ https://*.sanborns.com.mx https://*.paypal.com/ https://pagead2.googlesyndication.com/ https://*.safeframe.googlesyndication.com/ https://securepubads.g.doubleclick.net/ https://tpc.googlesyndication.com/ https://*.uniko.co/ https://*.instana.io/ https://seapi.sanborns.com.mx/ https://staticw2.yotpo.com/ https://*.yotpo.com/ https://resources.claroshop.com/ https://*.youtube.com https://*.flixfacts.com/ https://*.flixsyndication.net/ https://*.flixfacts.co.uk/ https://*.flixcar.com/ https://*.flix360.com/ https://*.go-mpulse.net https://s.go-mpulse.net https://pixel-sync.sitescout.com https://*.poder.io/ https://www.clima.com https://www.googletagmanager.com https://www.sanborns.com.mx https://resources.sanborns.com.mx https://*.zopim.io https://www.youtube.com https://staasobj-api.telmex.com https://staasobj-api.telmex.com https://*.online-metrix.net/ https://*.adsrvr.org https://*.doubleclick.net https://dsync.rlcdn.com https://*.facebook.com https://*.facebook.net https://*.gigya.com https://*.googleadservices.com https://*.google-analytics.com https://*.googleapis.com https://*.google.com https://*.google.com.mx https://*.googletagmanager.com https://*.gstatic.com https://*.hotjar.com https://ib.adnxs.com https://*.jquery.com https://*.krxd.net https://*.pingdom.net https://*.scarabresearch.com https://*.thefancy.com https://*.wisepops.com https://*.criteo.com https://*.creativecdn.com https://*.zdassets.com https://*.criteo.net https://checkout.payulatam.com https://graylog.hotjar.com:12443 wss://*.hotjar.com/ wss://*.zopim.com https://*.zopim.com https://web-sdk-cdn.singular.net https://analytics.tiktok.com https://api.claropagos.com https://loginclaro.com https://*.powerreviews.com data: 'unsafe-inline' 'unsafe-eval'BomControlar os recursos que o agente do usuário pode carregar para uma determinada página.

Clique para saber mais...
Referrer-PolicyBomControlar a quantidade de informações de referência que devem ser incluídas nas solicitações.

Clique para saber mais...
Clear-Site-DataBomControlar os dados armazenados por um navegador cliente quanto às suas origens.

Clique para saber mais...
X-Permitted-Cross-Domain-PoliciesBomControlar se um cliente web, como Adobe Flash Player ou Adobe Acrobat, tem permissão para controlar dados entre domínios.

Clique para saber mais...
Permissions-PolicyRecentePermitir e negar o uso de recursos do navegador em um documento ou iframe.

Clique para saber mais...
Cross-Origin-Embedder-PolicyRecenteConfigurar a incorporação de recursos de origem cruzada no documento.

Clique para saber mais...
Cross-Origin-Opener-PolicyRecenteGarantir que um documento de nível superior não compartilhe um grupo de contexto de navegação com documentos de origem cruzada.

Clique para saber mais...
Cross-Origin-Resource-PolicyRecenteSolicitar que o navegador bloqueie solicitações de origem cruzada/entre sites no-cors para o recurso fornecido.

Clique para saber mais...
X-XSS-ProtectionDescontinuadoDescontinuado Impede o carregamento de páginas quando detectam ataques refletidos de cross-site scripting (XSS).

Clique para saber mais...
Feature-PolicyDescontinuadoDescontinuado Substituído pelo cabeçalho Permissions-Policy.

Clique para saber mais...
Expect-CTDescontinuadoDescontinuado Optar por relatar e/ou aplicar requisitos de transparência de certificados.

Clique para saber mais...
Public-Key-PinsDescontinuadoDescontinuado Permitir que sites HTTPS resistam à falsificação de invasores usando certificados emitidos incorretamente ou fraudulentos.

Clique para saber mais...

Performance Navigation Timing

Copy link

A interface PerformanceNavigationTiming fornece métricas relacionadas aos eventos de navegação de documentos do navegador

Saiba mais...

Processar evento não carregado

EventoTempo (ms)
unloadEventStart742
unloadEventEnd742

Redirecionar

EventoTempo (ms)
redirectStart0
redirectEnd0

Inicialização do Service Worker

EventoTempo (ms)
workerStart0

Evento de busca do Service Worker

EventoTempo (ms)
fetchStart8

DNS

EventoTempo (ms)
domainLookupStart8
domainLookupEnd8

TCP

EventoTempo (ms)
connectStart8
secureConnectionStart8
connectEnd8

Solicitação

EventoTempo (ms)
requestStart18

Resposta

EventoTempo (ms)
responseStart98
responseEnd109

Processamento

EventoTempo (ms)
domInteractive1576
domContentLoadedEventStart1667
domContentLoadedEventEnd1667
domComplete3918

Carregar

EventoTempo (ms)
loadEventStart3919
loadEventEnd3920