https://www.sanborns.com.mx/

扫描 ID：: 40ff20a2-c3e5-4385-90d0-f69492351d7e已完成
提交的 URL：: https://www.sanborns.com.mx/
报告完成时间：: 2025年1月15日 21:54:17

Cookie · 找到 13 个

Cookie 是存储在用户设备上的小文本文件，通常用于记住用户偏好并实现个性化体验

名称	值	域	路径	到期 (UTC)	保护	仅 HTTP
ak_bmsc	91B8D90E938ED4D7D4A9F5B4F33A8DF2~000000000000000000000000000000~YAAQw9MRAtqKQ2qUAQAARA/2axqo7Y1BhM8yTkUI1gzU3lBzuNWs381F8lkIP2wZaz8FIFMG8kk+IP/PK4ABXQdiPJvTfQ3Yv1bZ+IeN4g9SqFdGvrI2NmW1q2GUPH74YAC6JWRE3BR/1EHZwb3aJjjpk22pHfvLMxgnpLJ4q2Um+v1BjbsSjzJDuwcjNkmag3I03tCaKDw/Sr1z0Dy0sOZrSt3lsX/ddIX/ag7J4t7P7qU3AYSWDvSSMmXDvf0hZwqGpzv53J5al1VnFs92Znxsg05wXw1xEvkGCWcwQQJdwJopLMgo0LAzX9A9fl/KvweTO+lUL4D9+r17pH/JqIQogH5dbWiQIAqFLHnZnqkYsZEylyEDB7ikQ3cc0MqAvUvIkbIEoJTRnCbYSR/a	.sanborns.com.mx	/	2025年1月15日 23:54:35	否	否
bm_sz	3CF59A73E37F8808B5A874AE3E48E489~YAAQw9MRAjuLQ2qUAQAA0h/2axpFkXZ105igt4nPlolx+X9tVIb7rU+55OyrBMYT7PU9VV7LCnktDK7Cu84fN8evzt43P62VqHsn0fTZCjOS0G6knR1ySNBnf3RuA0E9MGh78U+qa1ZCQ63YL5NEhNyHKmhLfIBMcik2ubhmSUaI1oB3Cbm1z8njZQeMsZhmh3BxcOcL0yLUZEyWI/6TmPf/tJRfPsbBoWx04sFa4r5/EmDQTlVWq2E+i++RzFjfJnJ8ANxUvUYEdAarUWrb5YNIG4TeG7O9KnsDLggKkVUxWOuuwIfOmdjI07tvvKzvxC5SzaYjRhHdZliRtiyZpVPCSO5P8h/4TshLMEvjCcJ7Ii3crtN2s6hasyRKAZEe7gav0HQmsjcpmjyL3wTGXL52irwnN6Q=~3490355~3224115	.sanborns.com.mx	/	2025年1月16日 01:54:35	否	否
bm_sv	FF2692D01156EA3A6BF68FF4AC962F93~YAAQw9MRAkWLQ2qUAQAA6CH2axrNoto5cDj49U+cxX6na2OA+ldFy1HBqjqJtvHTCMMNNLyX1KCvd7o9NDEgbNJpF5CRF3A39a9gVisO/hMcT5+OMAcf8nrIn7TczWPm8NApce9ddjymyjhFQ/RUNtJ+/nQOVhMhWaNBbYEIBKqEcgoNEX9SsBJuTNqVSAp8K+lNVbnQxjms+EaX2uptklpC0HAai9CQrlVlOs8KRRT1BjmrddeJ57gkJgBKQHfgxQ1hENY=~1	.sanborns.com.mx	/	2025年1月15日 23:54:39	是	否
_abck	1EBA38B599ADD420B99112A2067E7732~0~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~-1~-1~-1	.sanborns.com.mx	/	2026年1月15日 21:54:40	是	否
_ga_9JTKT3F2ZS	GS1.1.1736978081.1.0.1736978081.60.0.0	.sanborns.com.mx	/	2026年2月19日 21:54:41	否	否
_gcl_au	1.1.1232761543.1736978082	.sanborns.com.mx	/	2025年4月15日 21:54:42	否	否
_gid	GA1.3.922120569.1736978083	.sanborns.com.mx	/	2025年1月16日 21:54:42	否	否
_dc_gtm_UA-738463-25	1	.sanborns.com.mx	/	2025年1月15日 21:55:42	否	否
_gat_UA-69122442-17	1	.sanborns.com.mx	/	2025年1月15日 21:55:42	否	否
_dc_gtm_UA-69122442-16	1	.sanborns.com.mx	/	2025年1月15日 21:55:42	否	否

JavaScript 变量 · 找到 67 个

在页面窗口对象上加载的全局 JavaScript 变量是在函数外部声明的变量，可以从当前范围内的代码中的任何位置访问

名称	类型
0	object
1	object
onbeforetoggle	object
documentPictureInPicture	object
onscrollend	object
akamServiceWorkerInvoked	boolean
aka3pmLog	function
InstanaEumObject	string
ineum	function
gtag	function

控制台日志消息 · 找到 6 条

记录到 Web 控制台的消息

Level	来源	Message
error	network	URL https://s2.go-mpulse.net/boomerang/SDYW5-P2RXT-GSKT4-XALPC-ZJ5EF 文本 Failed to load resource: the server responded with a status of 404 ()
warning	other	URL https://www.gstatic.com/firebasejs/10.7.2/firebase-analytics.js 文本 [2025-01-15T21:54:40.358Z] @firebase/analytics: Failed to fetch this Firebase app's measurement ID from the server. Falling back to the measurement ID G-WY79FXJDVQ provided in the "measurementId" field in the local Firebase config. [Failed to fetch]
error	network	URL https://s2.go-mpulse.net/boomerang/SDYW5-P2RXT-GSKT4-XALPC-ZJ5EF 文本 Failed to load resource: the server responded with a status of 404 ()
error	security	URL https://www.sanborns.com.mx/ 文本 Refused to load the image 'https://www.google.es/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9JTKT3F2ZS&cid=1172137844.1736978081&gtm=45je51e0v888583879z8859033452za200zb859033452&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178&tag_exp=101925629~102067555~102067808~102081485~102198178&z=648610869' because it violates the following Content Security Policy directive: "default-src 'self' blob: https://event.syndigo.cloud https://.syndigo.com/ https://content.syndigo.com/ https://api.emarsys.net/api/v2/* https://yrjk5wm0ee-1.algolianet.com https://yrjk5wm0ee-2.algolianet.com https://yrjk5wm0ee-3.algolianet.com https://yrjk5wm0ee-dsn.algolia.net https://.algolia.io https://.algolia.net/ https://.scaletrk.com https://hotjar.com https://salesclix.net/ https://res.cloudinary.com/powerreviews/ https://ui.powerreviews.com/ https://t.powerreviews.com/ https://webchannel-content.eservice.emarsys.net/ https://cdn.taboola.com/ https://.googlesyndication.com/ https://.taboola.com/ https://.sanborns.com.mx https://.paypal.com/ https://pagead2.googlesyndication.com/ https://.safeframe.googlesyndication.com/ https://securepubads.g.doubleclick.net/ https://tpc.googlesyndication.com/ https://.uniko.co/ https://.instana.io/ https://seapi.sanborns.com.mx/ https://staticw2.yotpo.com/ https://.yotpo.com/ https://resources.claroshop.com/ https://.youtube.com https://.flixfacts.com/ https://.flixsyndication.net/ https://.flixfacts.co.uk/ https://.flixcar.com/ https://.flix360.com/ https://.go-mpulse.net https://s.go-mpulse.net https://pixel-sync.sitescout.com https://.poder.io/ https://www.clima.com https://www.googletagmanager.com https://www.sanborns.com.mx https://resources.sanborns.com.mx https://.zopim.io https://www.youtube.com https://staasobj-api.telmex.com https://staasobj-api.telmex.com https://.online-metrix.net/ https://.adsrvr.org https://.doubleclick.net https://dsync.rlcdn.com https://.facebook.com https://.facebook.net https://.gigya.com https://.googleadservices.com https://.google-analytics.com https://.googleapis.com https://.google.com https://.google.com.mx https://.googletagmanager.com https://.gstatic.com https://.hotjar.com https://ib.adnxs.com https://.jquery.com https://.krxd.net https://.pingdom.net https://.scarabresearch.com https://.thefancy.com https://.wisepops.com https://.criteo.com https://.creativecdn.com https://.zdassets.com https://.criteo.net https://checkout.payulatam.com https://graylog.hotjar.com:12443 wss://.hotjar.com/ wss://.zopim.com https://.zopim.com https://web-sdk-cdn.singular.net https://analytics.tiktok.com https://api.claropagos.com https://loginclaro.com https://.powerreviews.com data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
error	security	URL https://www.sanborns.com.mx/ 文本 Refused to load the image 'https://www.google.es/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-WY79FXJDVQ&cid=1172137844.1736978081&gtm=45je51e0v9179674181za200zb859033452&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101925629~102067555~102067808~102081485~102123607~102198178&tag_exp=101925629~102067555~102067808~102081485~102123607~102198178&z=687682506' because it violates the following Content Security Policy directive: "default-src 'self' blob: https://event.syndigo.cloud https://.syndigo.com/ https://content.syndigo.com/ https://api.emarsys.net/api/v2/* https://yrjk5wm0ee-1.algolianet.com https://yrjk5wm0ee-2.algolianet.com https://yrjk5wm0ee-3.algolianet.com https://yrjk5wm0ee-dsn.algolia.net https://.algolia.io https://.algolia.net/ https://.scaletrk.com https://hotjar.com https://salesclix.net/ https://res.cloudinary.com/powerreviews/ https://ui.powerreviews.com/ https://t.powerreviews.com/ https://webchannel-content.eservice.emarsys.net/ https://cdn.taboola.com/ https://.googlesyndication.com/ https://.taboola.com/ https://.sanborns.com.mx https://.paypal.com/ https://pagead2.googlesyndication.com/ https://.safeframe.googlesyndication.com/ https://securepubads.g.doubleclick.net/ https://tpc.googlesyndication.com/ https://.uniko.co/ https://.instana.io/ https://seapi.sanborns.com.mx/ https://staticw2.yotpo.com/ https://.yotpo.com/ https://resources.claroshop.com/ https://.youtube.com https://.flixfacts.com/ https://.flixsyndication.net/ https://.flixfacts.co.uk/ https://.flixcar.com/ https://.flix360.com/ https://.go-mpulse.net https://s.go-mpulse.net https://pixel-sync.sitescout.com https://.poder.io/ https://www.clima.com https://www.googletagmanager.com https://www.sanborns.com.mx https://resources.sanborns.com.mx https://.zopim.io https://www.youtube.com https://staasobj-api.telmex.com https://staasobj-api.telmex.com https://.online-metrix.net/ https://.adsrvr.org https://.doubleclick.net https://dsync.rlcdn.com https://.facebook.com https://.facebook.net https://.gigya.com https://.googleadservices.com https://.google-analytics.com https://.googleapis.com https://.google.com https://.google.com.mx https://.googletagmanager.com https://.gstatic.com https://.hotjar.com https://ib.adnxs.com https://.jquery.com https://.krxd.net https://.pingdom.net https://.scarabresearch.com https://.thefancy.com https://.wisepops.com https://.criteo.com https://.creativecdn.com https://.zdassets.com https://.criteo.net https://checkout.payulatam.com https://graylog.hotjar.com:12443 wss://.hotjar.com/ wss://.zopim.com https://.zopim.com https://web-sdk-cdn.singular.net https://analytics.tiktok.com https://api.claropagos.com https://loginclaro.com https://.powerreviews.com data: 'unsafe-inline' 'unsafe-eval'". Note that 'img-src' was not explicitly set, so 'default-src' is used as a fallback.
error	network	URL https://resources.sanborns.com.mx/imagenes-sanborns-ii/1200/9786073853972.jpg?scale=150&qlty=65 文本 Failed to load resource: the server responded with a status of 403 ()

安全标头 · 找到 3 个

可以增强 Web 应用程序安全性的 HTTP 响应标头

名称	值	支持	信息
Strict-Transport-Security	max-age=15724800; includeSubDomains	良性	声明只能通过安全连接 (HTTPS) 访问网站。单击可了解更多信息...
X-Frame-Options	—	良性	表明是否允许浏览器在 <frame>、<iframe>、<embed> 或 <object> 中渲染页面。单击可了解更多信息...
X-Content-Type-Options	nosniff	良性	表明应该遵循 Content-Type 标头中公布的 MIME 类型，并且不得进行更改。单击可了解更多信息...
Content-Security-Policy	default-src 'self' blob: https://event.syndigo.cloud https://.syndigo.com/ https://content.syndigo.com/ https://api.emarsys.net/api/v2/* https://yrjk5wm0ee-1.algolianet.com https://yrjk5wm0ee-2.algolianet.com https://yrjk5wm0ee-3.algolianet.com https://yrjk5wm0ee-dsn.algolia.net https://.algolia.io https://.algolia.net/ https://.scaletrk.com https://hotjar.com https://salesclix.net/ https://res.cloudinary.com/powerreviews/ https://ui.powerreviews.com/ https://t.powerreviews.com/ https://webchannel-content.eservice.emarsys.net/ https://cdn.taboola.com/ https://.googlesyndication.com/ https://.taboola.com/ https://.sanborns.com.mx https://.paypal.com/ https://pagead2.googlesyndication.com/ https://.safeframe.googlesyndication.com/ https://securepubads.g.doubleclick.net/ https://tpc.googlesyndication.com/ https://.uniko.co/ https://.instana.io/ https://seapi.sanborns.com.mx/ https://staticw2.yotpo.com/ https://.yotpo.com/ https://resources.claroshop.com/ https://.youtube.com https://.flixfacts.com/ https://.flixsyndication.net/ https://.flixfacts.co.uk/ https://.flixcar.com/ https://.flix360.com/ https://.go-mpulse.net https://s.go-mpulse.net https://pixel-sync.sitescout.com https://.poder.io/ https://www.clima.com https://www.googletagmanager.com https://www.sanborns.com.mx https://resources.sanborns.com.mx https://.zopim.io https://www.youtube.com https://staasobj-api.telmex.com https://staasobj-api.telmex.com https://.online-metrix.net/ https://.adsrvr.org https://.doubleclick.net https://dsync.rlcdn.com https://.facebook.com https://.facebook.net https://.gigya.com https://.googleadservices.com https://.google-analytics.com https://.googleapis.com https://.google.com https://.google.com.mx https://.googletagmanager.com https://.gstatic.com https://.hotjar.com https://ib.adnxs.com https://.jquery.com https://.krxd.net https://.pingdom.net https://.scarabresearch.com https://.thefancy.com https://.wisepops.com https://.criteo.com https://.creativecdn.com https://.zdassets.com https://.criteo.net https://checkout.payulatam.com https://graylog.hotjar.com:12443 wss://.hotjar.com/ wss://.zopim.com https://.zopim.com https://web-sdk-cdn.singular.net https://analytics.tiktok.com https://api.claropagos.com https://loginclaro.com https://.powerreviews.com data: 'unsafe-inline' 'unsafe-eval'	良性	控制允许用户代理为指定页面加载的资源。单击可了解更多信息...
Referrer-Policy	—	良性	控制请求中应该包含多少引荐者信息。单击可了解更多信息...
Clear-Site-Data	—	良性	控制客户端浏览器为来源服务器存储的数据。单击可了解更多信息...
X-Permitted-Cross-Domain-Policies	—	良性	控制 Web 客户端（例如 Adobe Flash Player 或 Adobe Acrobat）是否拥有跨域处理数据的权限。单击可了解更多信息...
Permissions-Policy	—	新	允许和拒绝在文档或 iframe 中使用浏览器功能。单击可了解更多信息...
Cross-Origin-Embedder-Policy	—	新	配置将跨源资源嵌入到文档中。单击可了解更多信息...
Cross-Origin-Opener-Policy	—	新	确保顶级文档不与跨源文档共享浏览背景组。单击可了解更多信息...
Cross-Origin-Resource-Policy	—	新	请求浏览器阻止对给定资源的 no-cors 跨源/跨站点请求。单击可了解更多信息...
X-XSS-Protection	—	停用	已弃用。当检测到页面遭受反射式跨站点脚本 (XSS) 攻击时，停止加载页面。单击可了解更多信息...
Feature-Policy	—	停用	已弃用。替换为 Permissions-Policy 标头。单击可了解更多信息...
Expect-CT	—	停用	已弃用。选择加入报告和/或执行证书透明度要求。单击可了解更多信息...
Public-Key-Pins	—	停用	已弃用。允许 HTTPS 网站抵御攻击者使用错误颁发的或其他欺诈性证书进行假冒。单击可了解更多信息...

PerformanceNavigationTiming 界面会提供关于浏览器文档导航事件的指标

处理卸载事件

事件	计时（毫秒）
unloadEventStart	742
unloadEventEnd	742

重定向

事件	计时（毫秒）
redirectStart	0
redirectEnd	0

服务 Worker 初始化

事件	计时（毫秒）
workerStart	0

服务 Worker 提取事件

事件	计时（毫秒）
fetchStart	8

DNS

事件	计时（毫秒）
domainLookupStart	8
domainLookupEnd	8

TCP

事件	计时（毫秒）
connectStart	8
secureConnectionStart	8
connectEnd	8

请求

事件	计时（毫秒）
requestStart	18

响应

事件	计时（毫秒）
responseStart	98
responseEnd	109

正在处理

事件	计时（毫秒）
domInteractive	1576
domContentLoadedEventStart	1667
domContentLoadedEventEnd	1667
domComplete	3918

负载

事件	计时（毫秒）
loadEventStart	3919
loadEventEnd	3920