# BEGIN iThemes Security - Do not modify or remove this line
# iThemes Security Config Details: 2
	# Ban Hosts - Security > Settings > Banned Users
	SetEnvIF REMOTE_ADDR "^176\.123\.6\.186$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^176\.123\.6\.186$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^176\.123\.6\.186$" DenyAccess

	SetEnvIF REMOTE_ADDR "^176\.123\.18\.113$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^176\.123\.18\.113$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^176\.123\.18\.113$" DenyAccess

	SetEnvIF REMOTE_ADDR "^201\.18\.18\.173$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^201\.18\.18\.173$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^201\.18\.18\.173$" DenyAccess

	SetEnvIF REMOTE_ADDR "^176\.31\.126\.73$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^176\.31\.126\.73$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^176\.31\.126\.73$" DenyAccess

	SetEnvIF REMOTE_ADDR "^188\.165\.197\.221$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^188\.165\.197\.221$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^188\.165\.197\.221$" DenyAccess

	SetEnvIF REMOTE_ADDR "^198\.245\.62\.228$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^198\.245\.62\.228$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^198\.245\.62\.228$" DenyAccess

	SetEnvIF REMOTE_ADDR "^192\.99\.13\.13$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^192\.99\.13\.13$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^192\.99\.13\.13$" DenyAccess

	SetEnvIF REMOTE_ADDR "^192\.99\.13\.29$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^192\.99\.13\.29$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^192\.99\.13\.29$" DenyAccess

	SetEnvIF REMOTE_ADDR "^142\.4\.214\.159$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^142\.4\.214\.159$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^142\.4\.214\.159$" DenyAccess

	SetEnvIF REMOTE_ADDR "^46\.105\.96\.164$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^46\.105\.96\.164$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^46\.105\.96\.164$" DenyAccess

	SetEnvIF REMOTE_ADDR "^176\.31\.116\.34$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^176\.31\.116\.34$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^176\.31\.116\.34$" DenyAccess

	SetEnvIF REMOTE_ADDR "^188\.165\.247\.174$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^188\.165\.247\.174$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^188\.165\.247\.174$" DenyAccess

	SetEnvIF REMOTE_ADDR "^192\.99\.13\.15$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^192\.99\.13\.15$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^192\.99\.13\.15$" DenyAccess

	SetEnvIF REMOTE_ADDR "^198\.100\.145\.189$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^198\.100\.145\.189$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^198\.100\.145\.189$" DenyAccess

	SetEnvIF REMOTE_ADDR "^198\.100\.148\.23$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^198\.100\.148\.23$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^198\.100\.148\.23$" DenyAccess

	SetEnvIF REMOTE_ADDR "^198\.245\.62\.147$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^198\.245\.62\.147$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^198\.245\.62\.147$" DenyAccess

	SetEnvIF REMOTE_ADDR "^192\.99\.12\.35$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^192\.99\.12\.35$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^192\.99\.12\.35$" DenyAccess

	SetEnvIF REMOTE_ADDR "^176\.31\.246\.36$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^176\.31\.246\.36$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^176\.31\.246\.36$" DenyAccess

	SetEnvIF REMOTE_ADDR "^37\.59\.50\.223$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^37\.59\.50\.223$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^37\.59\.50\.223$" DenyAccess

	SetEnvIF REMOTE_ADDR "^94\.23\.4\.73$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^94\.23\.4\.73$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^94\.23\.4\.73$" DenyAccess

	SetEnvIF REMOTE_ADDR "^158\.69\.249\.121$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^158\.69\.249\.121$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^158\.69\.249\.121$" DenyAccess

	SetEnvIF REMOTE_ADDR "^46\.105\.101\.178$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^46\.105\.101\.178$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^46\.105\.101\.178$" DenyAccess

	SetEnvIF REMOTE_ADDR "^178\.137\.89\.234$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^178\.137\.89\.234$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^178\.137\.89\.234$" DenyAccess

	SetEnvIF REMOTE_ADDR "^144\.217\.190\.197$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^144\.217\.190\.197$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^144\.217\.190\.197$" DenyAccess

	SetEnvIF REMOTE_ADDR "^178\.137\.82\.147$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^178\.137\.82\.147$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^178\.137\.82\.147$" DenyAccess

	SetEnvIF REMOTE_ADDR "^134\.249\.141\.83$" DenyAccess
	SetEnvIF X-FORWARDED-FOR "^134\.249\.141\.83$" DenyAccess
	SetEnvIF X-CLUSTER-CLIENT-IP "^134\.249\.141\.83$" DenyAccess

	<IfModule mod_authz_core.c>
		<RequireAll>
			Require all granted
			Require not env DenyAccess
			Require not ip 176.123.6.186
			Require not ip 176.123.18.113
			Require not ip 201.18.18.173
			Require not ip 176.31.126.73
			Require not ip 188.165.197.221
			Require not ip 198.245.62.228
			Require not ip 192.99.13.13
			Require not ip 192.99.13.29
			Require not ip 142.4.214.159
			Require not ip 46.105.96.164
			Require not ip 176.31.116.34
			Require not ip 188.165.247.174
			Require not ip 192.99.13.15
			Require not ip 198.100.145.189
			Require not ip 198.100.148.23
			Require not ip 198.245.62.147
			Require not ip 192.99.12.35
			Require not ip 176.31.246.36
			Require not ip 37.59.50.223
			Require not ip 94.23.4.73
			Require not ip 158.69.249.121
			Require not ip 46.105.101.178
			Require not ip 178.137.89.234
			Require not ip 144.217.190.197
			Require not ip 178.137.82.147
			Require not ip 134.249.141.83
		</RequireAll>
	</IfModule>
	<IfModule !mod_authz_core.c>
		Order allow,deny
		Allow from all
		Deny from env=DenyAccess
		Deny from 176.123.6.186
		Deny from 176.123.18.113
		Deny from 201.18.18.173
		Deny from 176.31.126.73
		Deny from 188.165.197.221
		Deny from 198.245.62.228
		Deny from 192.99.13.13
		Deny from 192.99.13.29
		Deny from 142.4.214.159
		Deny from 46.105.96.164
		Deny from 176.31.116.34
		Deny from 188.165.247.174
		Deny from 192.99.13.15
		Deny from 198.100.145.189
		Deny from 198.100.148.23
		Deny from 198.245.62.147
		Deny from 192.99.12.35
		Deny from 176.31.246.36
		Deny from 37.59.50.223
		Deny from 94.23.4.73
		Deny from 158.69.249.121
		Deny from 46.105.101.178
		Deny from 178.137.89.234
		Deny from 144.217.190.197
		Deny from 178.137.82.147
		Deny from 134.249.141.83
	</IfModule>

	# Disable XML-RPC - Security > Settings > WordPress Tweaks > XML-RPC
	<files xmlrpc.php>
		<IfModule mod_authz_core.c>
			Require all denied
		</IfModule>
		<IfModule !mod_authz_core.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>

	# Protect System Files - Security > Settings > System Tweaks > System Files
	<files .htaccess>
		<IfModule mod_authz_core.c>
			Require all denied
		</IfModule>
		<IfModule !mod_authz_core.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>
	<files readme.html>
		<IfModule mod_authz_core.c>
			Require all denied
		</IfModule>
		<IfModule !mod_authz_core.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>
	<files readme.txt>
		<IfModule mod_authz_core.c>
			Require all denied
		</IfModule>
		<IfModule !mod_authz_core.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>
	<files wp-config.php>
		<IfModule mod_authz_core.c>
			Require all denied
		</IfModule>
		<IfModule !mod_authz_core.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>

	# Disable Directory Browsing - Security > Settings > System Tweaks > Directory Browsing
	Options -Indexes

	<IfModule mod_rewrite.c>
		RewriteEngine On

		# Protect System Files - Security > Settings > System Tweaks > System Files
		RewriteRule ^wp-admin/install\.php$ - [F]
		RewriteRule ^wp-admin/includes/ - [F]
		RewriteRule !^wp-includes/ - [S=3]
		RewriteRule ^wp-includes/[^/]+\.php$ - [F]
		RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F]
		RewriteRule ^wp-includes/theme-compat/ - [F]
		RewriteCond %{REQUEST_FILENAME} -f
		RewriteRule (^|.*/)\.(git|svn)/.* - [F]

		# Disable PHP in Uploads - Security > Settings > System Tweaks > PHP in Uploads
		RewriteRule ^wp\-content/uploads/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F]

		# Disable PHP in Plugins - Security > Settings > System Tweaks > PHP in Plugins
		RewriteRule ^wp\-content/plugins/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F]

		# Disable PHP in Themes - Security > Settings > System Tweaks > PHP in Themes
		RewriteRule ^wp\-content/themes/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F]

		# Filter Request Methods - Security > Settings > System Tweaks > Request Methods
		RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK) [NC]
		RewriteRule ^.* - [F]
	</IfModule>
# END iThemes Security - Do not modify or remove this line

# BEGIN WordPress
# The directives (lines) between `BEGIN WordPress` and `END WordPress` are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /cms/
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /cms/index.php [L]
</IfModule>

# END WordPress
# BEGIN MainWP

# END MainWP