myaplus.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2798 ms crawled 2026-05-18

US · 99.83.188.150 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: APlus Convenience Stores
Description: From top quality fuels to fresh and delicious food and beverages, APlus has everything you need to stay on the go.
Language: en
Generator: Third Wave Digital CMS v7.0.1721
Canonical: https://www.myaplus.com/

Open Graph

url: https://www.myaplus.com//home
title: APlus Convenience Stores - MyAPlus
locale: en_US
site name: MyAPlus
description: From top quality fuels to fresh and delicious food and beverages, APlus has everything you need to stay on the go.

Technology

Server: volt-adc

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (2)

www.googletagmanager.com×2
use.typekit.net×1

Contact

Phone

1-800-786-6261

Address

P.O. Box 130148Dallas, TX 75313customerfirst@sunoco.com

Registration

Registrar

GoDaddy Corporate Domains, LLC

Created

2014-03-22

Expires

2027-04-27 341 days left

Updated

2025-09-10

Name servers

ns09.gcd-dns.com
ns10.gcd-dns.com

DNS records live

NS

ns09.gcd-dns.com
ns10.gcd-dns.com

Email authentication no MX

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-07-31 to 2026-07-31

Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.myaplus.com

present

strict-transport-security
content-security-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self'; connect-src 'self' https://www.google-analytics.com; img-src 'self' data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com; font-src 'self' https://*.typekit.net; style-src 'self' 'unsafe-inline' https://*.typekit.net; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; form-action 'self'; upgrade-insecure-requests; block-all-mixed-content;
strict-transport-security: max-age=31536000

Linked from (2)

sunoco.com×4
gosunoco.com×2