ahsquared/arc/master/.htaccess - Htaccess File

ahsquared/arc/master/.htaccess

#WFIPBLOCKS - Do not remove this line. Disable Web Caching in Wordfence to remove this data.
Order Deny,Allow
#Do not remove this line. Disable Web Caching in Wordfence to remove this data - WFIPBLOCKS
#WFCACHECODE - Do not remove this line. Disable Web Caching in Wordfence to remove this data.
<IfModule mod_deflate.c>
  AddOutputFilterByType DEFLATE text/css text/x-component application/x-javascript application/javascript text/javascript text/x-js text/html text/richtext image/svg+xml text/plain text/xsd text/xsl text/xml image/x-icon application/json
  <IfModule mod_headers.c>
    Header append Vary User-Agent env=!dont-vary
  </IfModule>
  <IfModule mod_mime.c>
    AddOutputFilter DEFLATE js css htm html xml
  </IfModule>
</IfModule>
<IfModule mod_mime.c>
  AddType text/html .html_gzip
  AddEncoding gzip .html_gzip
  AddType text/xml .xml_gzip
  AddEncoding gzip .xml_gzip
</IfModule>
<IfModule mod_setenvif.c>
  SetEnvIfNoCase Request_URI .html_gzip$ no-gzip
  SetEnvIfNoCase Request_URI .xml_gzip$ no-gzip
</IfModule>
<IfModule mod_headers.c>
  Header set Vary "Accept-Encoding, Cookie"
</IfModule>
<IfModule mod_rewrite.c>
  #Prevents garbled chars in cached files if there is no default charset.
  AddDefaultCharset utf-8

  #Cache rules:
  RewriteEngine On
  RewriteBase /
  RewriteCond %{HTTPS} on
  RewriteRule .* - [E=WRDFNC_HTTPS:_https]
  RewriteCond %{HTTP:Accept-Encoding} gzip
  RewriteRule .* - [E=WRDFNC_ENC:_gzip]
  RewriteCond %{REQUEST_METHOD} !=POST
  RewriteCond %{HTTPS} off
  RewriteCond %{QUERY_STRING} ^(?:d+=d+)?$
  RewriteCond %{REQUEST_URI} (?:/|.html)$ [NC]

  RewriteCond %{HTTP_COOKIE} !(comment_author|wp-postpass|wf_logout|wordpress_logged_in|wptouch_switch_toggle|wpmp_switcher) [NC]

  RewriteCond %{REQUEST_URI} /*([^/]*)/*([^/]*)/*([^/]*)/*([^/]*)/*([^/]*)(.*)$
  RewriteCond "%{DOCUMENT_ROOT}/wp-content/wfcache/%{HTTP_HOST}_%1/%2~%3~%4~%5~%6_wfcache%{ENV:WRDFNC_HTTPS}.html%{ENV:WRDFNC_ENC}" -f
  RewriteRule /*([^/]*)/*([^/]*)/*([^/]*)/*([^/]*)/*([^/]*)(.*)$ "/wp-content/wfcache/%{HTTP_HOST}_$1/$2~$3~$4~$5~$6_wfcache%{ENV:WRDFNC_HTTPS}.html%{ENV:WRDFNC_ENC}" [L]
</IfModule>
#Do not remove this line. Disable Web caching in Wordfence to remove this data - WFCACHECODE

# BEGIN iThemes Security
  # BEGIN Ban Users
    # Begin HackRepair.com Blacklist
    RewriteEngine on
    RewriteCond %{HTTP_USER_AGENT} ^[Ww]eb[Bb]andit [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Acunetix [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^binlar [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Bolt 0 [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Bot mailto:craftbot@yahoo.com [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^BOT for JCE [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^casper [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^checkprivacy [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^clshttp [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^cmsworldmap [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^comodo [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Custo [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Default Browser 0 [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^diavol [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^DIIbot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^DISCo [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^dotbot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Download Demon [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^eCatch [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^EmailCollector [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Express WebPictures [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^extract [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^feedfinder [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^FHscan [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^FlashGet [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^flicky [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^GetRight [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^g00g1e [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^grab [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^GrabNet [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Grafula [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^harvest [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^HMView [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^ia_archiver [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Image Stripper [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Image Sucker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^InterGET [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Internet Ninja [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^InternetSeer.com [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^jakarta [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Java [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^JetCar [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^JOC Web Spider [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^kanagawa [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^kmccrew [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^larbin [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^libwww [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Mass Downloader [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Maxthon$ [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^microsoft.url [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^MIDown tool [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^miner [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Mister PiX [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Mozilla.*Indy [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Mozilla.*NEWT [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^MSFrontPage [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Navroad [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^NearSite [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Net Vampire [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^NetAnts [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^NetSpider [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^NetZIP [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^nutch [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Octopus [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Offline Explorer [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Offline Navigator [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Papa Foto [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^pavuk [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^PeoplePal [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^planetwork [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^psbot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^purebot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^pycurl [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^RealDownload [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^ReGet [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Rippers 0 [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^SeaMonkey$ [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^sitecheck.internetseer.com [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^skygrid [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^sucker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^SuperBot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Surfbot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Teleport Pro [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Toata dragostea mea pentru diavola [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^turnit [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^vikspider [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Web Image Collector [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Web Sucker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebAuto [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebCopier [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebFetch [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebGo IS [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebReaper [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebSauger [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WPScan [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Website eXtractor [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Website Quester [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebStripper [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WebZIP [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Wget [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Widow [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WWW-Mechanize [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Xaldon WebSpider [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Yandex [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^Zeus [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ^zmeu [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} AhrefsBot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} CazoodleBot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} discobot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ecxi [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} GT::WWW [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} heritrix [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} HTTP::Lite [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} HTTrack [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ia_archiver [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} id-search [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} id-search.org [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} IDBot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Indy Library [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} IRLbot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ISC Systems iRc Search 2.1 [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} LinksManager.com_bot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} linkwalker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} lwp-trivial [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} MFC_Tear_Sample [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Microsoft URL Control [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Missigua Locator [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} MJ12bot [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} panscient.com [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} PECL::HTTP [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} PHPCrawl [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} PleaseCrawl [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} SBIder [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Snoopy [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Steeler [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} URI::Fetch [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} urllib [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Web Sucker [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} webalta [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} WebCollage [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} Wells Search II [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} WEP Search [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} zermelo [NC,OR]
    RewriteCond %{HTTP_USER_AGENT} ZyBorg [NC]
    RewriteRule ^.* - [F,L]
    # End HackRepair.com Blacklist, http://pastebin.com/u/hackrepair
    SetEnvIF REMOTE_ADDR "^8.21.4.254$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^8.21.4.254$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^8.21.4.254$" DenyAccess

    SetEnvIF REMOTE_ADDR "^65.46.48.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^65.46.48.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^65.46.48.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^65.160.238.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^65.160.238.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^65.160.238.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^85.92.222.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^85.92.222.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^85.92.222.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^206.51.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^206.51.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^206.51.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^216.52.23.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^216.52.23.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^216.52.23.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.100.19.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.100.19.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.100.19.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.100.21.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.100.21.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.100.21.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.100.41.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.100.41.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.100.41.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.105.71.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.105.71.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.105.71.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.105.83.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.105.83.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.105.83.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.112.21.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.112.21.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.112.21.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.118.42.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.118.42.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.118.42.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^65.213.208.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^65.213.208.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^65.213.208.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^65.222.176.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^65.222.176.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^65.222.176.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^65.222.185.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^65.222.185.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^65.222.185.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^38.103.17.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^38.103.17.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^38.103.17.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^66.113.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^66.113.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^66.113.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^70.35.113.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^70.35.113.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^70.35.113.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^204.15.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^204.15.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^204.15.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^66.17.15.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^66.17.15.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^66.17.15.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^69.84.207.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^69.84.207.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^69.84.207.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^69.84.207.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^69.84.207.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^69.84.207.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^72.36.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^72.36.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^72.36.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^72.232.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^72.232.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^72.232.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^72.233.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^72.233.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^72.233.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^216.[0-9]+.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^216.[0-9]+.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^216.[0-9]+.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^67.192.231.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^67.192.231.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^67.192.231.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^208.90.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^208.90.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^208.90.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^209.147.127.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^209.147.127.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^209.147.127.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^198.186.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^198.186.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^198.186.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^198.186.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^198.186.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^198.186.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^198.186.194.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^198.186.194.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^198.186.194.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^207.210.99.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^207.210.99.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^207.210.99.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^4.53.120.22$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^4.53.120.22$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^4.53.120.22$" DenyAccess

    SetEnvIF REMOTE_ADDR "^66.194.6.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^66.194.6.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^66.194.6.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^67.117.201.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^67.117.201.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^67.117.201.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^69.67.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^69.67.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^69.67.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^131.191.87.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^131.191.87.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^131.191.87.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^204.15.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^204.15.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^204.15.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^208.80.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^208.80.[0-9]+.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^208.80.[0-9]+.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^212.62.26.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^212.62.26.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^212.62.26.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^213.168.226.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^213.168.226.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^213.168.226.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^213.168.241.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^213.168.241.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^213.168.241.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^213.168.242.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^213.168.242.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^213.168.242.[0-9]+$" DenyAccess

    SetEnvIF REMOTE_ADDR "^213.236.150.[0-9]+$" DenyAccess
    SetEnvIF X-FORWARDED-FOR "^213.236.150.[0-9]+$" DenyAccess
    SetEnvIF X-CLUSTER-CLIENT-IP "^213.236.150.[0-9]+$" DenyAccess

    order allow,deny
    deny from env=DenyAccess
    deny from 8.21.4.254
    deny from 65.46.48
    deny from 65.160.238
    deny from 85.92.222
    deny from 206.51
    deny from 216.52.23
    deny from 38.100.19
    deny from 38.100.21
    deny from 38.100.41
    deny from 38.105.71
    deny from 38.105.83
    deny from 38.112.21
    deny from 38.118.42
    deny from 65.213.208
    deny from 65.222.176
    deny from 65.222.185
    deny from 38.103.17
    deny from 66.113
    deny from 70.35.113
    deny from 204.15
    deny from 66.17.15
    deny from 69.84.207
    deny from 69.84.207
    deny from 72.36
    deny from 72.232
    deny from 72.233
    deny from 216
    deny from 67.192.231
    deny from 208.90
    deny from 209.147.127
    deny from 198.186
    deny from 198.186
    deny from 198.186.194
    deny from 207.210.99
    deny from 4.53.120.22
    deny from 66.194.6
    deny from 67.117.201
    deny from 69.67
    deny from 131.191.87
    deny from 204.15
    deny from 208.80
    deny from 212.62.26
    deny from 213.168.226
    deny from 213.168.241
    deny from 213.168.242
    deny from 213.236.150
    allow from all

  # END Ban Users
  # BEGIN Hide Backend
      # Rules to hide the dashboard
      RewriteRule ^(/)?arclogin/?$ /wp-login.php [QSA,L]

  # END Hide Backend
  # BEGIN Tweaks
    # Rules to block access to WordPress specific files
    <files .htaccess>
      Order allow,deny
      Deny from all
    </files>
    <files readme.html>
      Order allow,deny
      Deny from all
    </files>
    <files readme.txt>
      Order allow,deny
      Deny from all
    </files>
    <files install.php>
      Order allow,deny
      Deny from all
    </files>
    <files wp-config.php>
      Order allow,deny
      Deny from all
    </files>

    # Rules to disable directory browsing
    Options -Indexes

    <IfModule mod_rewrite.c>
      RewriteEngine On

      # Rules to protect wp-includes
      RewriteRule ^wp-admin/includes/ - [F]
      RewriteRule !^wp-includes/ - [S=3]
      RewriteCond %{SCRIPT_FILENAME} !^(.*)wp-includes/ms-files.php
      RewriteRule ^wp-includes/[^/]+.php$ - [F]
      RewriteRule ^wp-includes/js/tinymce/langs/.+.php - [F]
      RewriteRule ^wp-includes/theme-compat/ - [F]

      # Rules to prevent php execution in uploads
      RewriteRule ^(.*)/uploads/(.*).php(.?) - [F]

      # Rules to block unneeded HTTP methods
      RewriteCond %{REQUEST_METHOD} ^(TRACE|DELETE|TRACK) [NC]
      RewriteRule ^(.*)$ - [F]

      # Rules to block suspicious URIs
      RewriteCond %{QUERY_STRING} ../ [NC,OR]
      RewriteCond %{QUERY_STRING} ^.*.(bash|git|hg|log|svn|swp|cvs) [NC,OR]
      RewriteCond %{QUERY_STRING} etc/passwd [NC,OR]
      RewriteCond %{QUERY_STRING} boot.ini [NC,OR]
      RewriteCond %{QUERY_STRING} ftp:  [NC,OR]
      RewriteCond %{QUERY_STRING} http:  [NC,OR]
      RewriteCond %{QUERY_STRING} https:  [NC,OR]
      RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]
      RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|%3D) [NC,OR]
      RewriteCond %{QUERY_STRING} base64_encode.*(.*) [NC,OR]
      RewriteCond %{QUERY_STRING} ^.*(%24&x).* [NC,OR]
      RewriteCond %{QUERY_STRING} ^.*(127.0).* [NC,OR]
      RewriteCond %{QUERY_STRING} ^.*(globals|encode|localhost|loopback).* [NC,OR]
      RewriteCond %{QUERY_STRING} ^.*(request|concat|insert|union|declare).* [NC]
      RewriteCond %{QUERY_STRING} !^loggedout=true
      RewriteCond %{QUERY_STRING} !^action=jetpack-sso
      RewriteCond %{QUERY_STRING} !^action=rp
      RewriteCond %{HTTP_COOKIE} !^.*wordpress_logged_in_.*$
      RewriteCond %{HTTP_REFERER} !^http://maps.googleapis.com(.*)$
      RewriteRule ^(.*)$ - [F]

      # Rules to help reduce spam
      RewriteCond %{REQUEST_METHOD} POST
      RewriteCond %{REQUEST_URI} ^(.*)wp-comments-post.php*
      RewriteCond %{HTTP_REFERER} !^(.*)test.dev.*
      RewriteCond %{HTTP_REFERER} !^http://jetpack.wordpress.com/jetpack-comment/ [OR]
      RewriteCond %{HTTP_USER_AGENT} ^$
      RewriteRule ^(.*)$ - [F]
    </IfModule>
  # END Tweaks
# END iThemes Security

# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress

On Github License

Files

Download PDF of Htaccess file
CACHE, DEFLATE, DOCUMENT_ROOT, ENV, GET, HTTP_COOKIE, HTTP_HOST, HTTP_REFERER, HTTP_USER_AGENT, HTTPS, no-gzip, POST, QUERY_STRING, REMOTE_ADDR, REQUEST_FILENAME, REQUEST_METHOD, REQUEST_URI, SCRIPT_FILENAME, WRDFNC_ENC, WRDFNC_HTTPS

Comments

Apache