# BEGIN HMWP_RULES
<IfModule mod_rewrite.c>
	RewriteEngine On
	RewriteRule ^([_0-9a-zA-Z-]+/)?ajax-call$ /wp-admin/admin-ajax.php [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ghost-admin/(.*) /wp-admin/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ghost-login$ /wp-login.php [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ghost-login/(.*) /wp-login.php$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?lostpass$ /wp-login.php?action=lostpassword [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?register$ /wp-login.php?action=register [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?disconnect$ /wp-login.php?action=logout [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/75a5bdb080/(.*) /wp-content/plugins/301-redirects/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/e32b144910/(.*) /wp-content/plugins/astra-addon/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/f62c451686/(.*) /wp-content/plugins/astra-widgets/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/5815d69d8f/(.*) /wp-content/plugins/searchpro/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/bf393a2dd7/(.*) /wp-content/plugins/cloudfilt-codes/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/8bf376fe7b/(.*) /wp-content/plugins/Content-Boom+2.3.2/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/f65f29574d/(.*) /wp-content/plugins/elementor/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/ccc473c329/(.*) /wp-content/plugins/elementor-pro/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/5cdd94763b/(.*) /wp-content/plugins/email-encoder-bundle/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/cd90d660e8/(.*) /wp-content/plugins/malcare-security/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/03f6eec544/(.*) /wp-content/plugins/worker/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/ab82182374/(.*) /wp-content/plugins/modular-connector/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c6410261ce/(.*) /wp-content/plugins/security-ninja-premium/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/0db0162ca4/(.*) /wp-content/plugins/nsg-seo-generator/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/1a60a0f6ed/(.*) /wp-content/plugins/google-site-kit/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/540e04aa21/(.*) /wp-content/plugins/speculation-rules/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/882eb7ffb0/(.*) /wp-content/plugins/squirrly-seo/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/57e4d36d9e/(.*) /wp-content/plugins/squirrly-seo-pack/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/54ca832649/(.*) /wp-content/plugins/track-the-click/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/717caac2bc/(.*) /wp-content/plugins/ultimate-elementor/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c313883c11/(.*) /wp-content/plugins/wp-optimize/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/d0f4711431/(.*) /wp-content/plugins/hide-my-wp/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/8994e720f2/(.*) /wp-content/plugins/wp-setup-wizard/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/6a7a5f168e/(.*) /wp-content/plugins/wpvivid-backuprestore/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/6f5036e0a6/(.*) /wp-content/plugins/wpvivid-backup-pro/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/(.*) /wp-content/plugins/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/9dbb40d076/design.css$ /wp-content/themes/astra/style.css [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/9dbb40d076/(.*) /wp-content/themes/astra/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/(.*) /wp-content/themes/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?storage/(.*) /wp-content/uploads/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/(.*) /wp-content/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?lib/(.*) /wp-includes/$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?comments/(.*) /wp-comments-post.php$2 [QSA,NC,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?writer/(.*) /author/$2 [QSA,NC,L]
</IfModule>
# END HMWP_RULES
# BEGIN HMWP_VULNERABILITY
<IfModule mod_rewrite.c>
	RewriteEngine On
	RewriteCond %{REQUEST_URI} !/wp-admin [NC]
	RewriteCond %{QUERY_STRING} ^author=\d+ [NC]
	RewriteRule ^(.*)$ - [L,R=404]
</IfModule>
Options -Indexes
<IfModule mod_rewrite.c>
	RewriteEngine On
	RewriteCond %{REMOTE_ADDR} ^35.214.130.87$ [NC,OR]
	RewriteCond %{REMOTE_ADDR} ^192.185.4.40$ [NC,OR]
	RewriteCond %{REMOTE_ADDR} ^15.235.50.223$ [NC,OR]
	RewriteCond %{REMOTE_ADDR} ^172.105.48.130$ [NC,OR]
	RewriteCond %{REMOTE_ADDR} ^167.99.233.123$ [NC,OR]
	RewriteCond %{HTTP_USER_AGENT} (wpthemedetector|builtwith|isitwp|wappalyzer|Wappalyzer|mShots|WhatCMS|gochyu|wpdetector|scanwp) [NC]
	RewriteRule ^(.*)$ - [L,R=404]
</IfModule>
<IfModule mod_headers.c>
	Header always unset x-powered-by
	Header always unset server
	ServerSignature Off
</IfModule>
<IfModule mod_headers.c>
	Header set Strict-Transport-Security "max-age=15768000;includeSubdomains"
	Header set Content-Security-Policy "object-src 'none'"
	Header set X-XSS-Protection "1; mode=block"
</IfModule>
<IfModule mod_rewrite.c>
	RewriteEngine On
	RewriteBase /
	RewriteCond %{HTTP:Cookie} !(wordpress_logged_in_|hmwp_logged_in_) [NC]
	RewriteCond %{REQUEST_URI} ^/wp-content/?$ [NC,OR]
	RewriteCond %{REQUEST_URI} ^/wp-content/[^\.]+/?$ [NC,OR]
	RewriteCond %{THE_REQUEST} /wp-includes/?$ [NC,OR]
	RewriteCond %{THE_REQUEST} /wp-content/plugins/[^\.]+(\.php|\.htm|\.html|\.rtf|\.rtx|\.txt|\.lock) [NC,OR]
	RewriteCond %{THE_REQUEST} /wp-content/themes/[^\.]+(\.php|\.htm|\.html|\.rtf|\.rtx|\.txt|\.lock)    [NC,OR]
	RewriteCond %{THE_REQUEST} /wp-content/uploads/[^\.]+(\.php|\.htm|\.html|\.rtf|\.rtx|\.txt|\.lock) [NC,OR]
	RewriteCond %{THE_REQUEST} /wp-includes/[^\.]+(\.php|\.htm|\.html|\.rtf|\.rtx|\.txt|\.lock) [NC,OR]
	RewriteCond %{THE_REQUEST} /([_0-9a-zA-Z-]+/)?(wp-config-sample\.php|readme\.html|readme\.txt|install\.php|license\.txt|php\.ini|bb-config\.php|error_log|debug\.log) [NC]
	RewriteRule ^(.*)$ - [L,R=404]
</IfModule>
<IfModule mod_rewrite.c>
	RewriteEngine On
	RewriteCond %{REQUEST_URI} /(wp-config-sample\.php|readme\.html|readme\.txt|install\.php|license\.txt|php\.ini|bb-config\.php|error_log|debug\.log) [NC]
	RewriteRule ^(.*)$ - [L,R=404]
</IfModule>
# END HMWP_VULNERABILITY
# Block public access to load-scripts.php and load-styles.php
<FilesMatch "^load-(scripts|styles)\.php$">
	<IfModule mod_rewrite.c>
		RewriteEngine On
		
# Allow only logged-in users (must have wordpress_logged_in_ cookie)
		RewriteCond %{HTTP_COOKIE} !wordpress_logged_in_
		RewriteRule .* - [F,L]
	</IfModule>
</FilesMatch>

RewriteOptions inherit
# BEGIN Gzip Compression
<IfModule mod_deflate.c>
# Compress HTML, CSS, JavaScript, Text, XML and fonts
	AddOutputFilterByType DEFLATE application/javascript
	AddOutputFilterByType DEFLATE application/rss+xml
	AddOutputFilterByType DEFLATE application/vnd.ms-fontobject
	AddOutputFilterByType DEFLATE application/x-font
	AddOutputFilterByType DEFLATE application/x-font-opentype
	AddOutputFilterByType DEFLATE application/x-font-otf
	AddOutputFilterByType DEFLATE application/x-font-truetype
	AddOutputFilterByType DEFLATE application/x-font-ttf
	AddOutputFilterByType DEFLATE application/x-javascript
	AddOutputFilterByType DEFLATE application/xhtml+xml
	AddOutputFilterByType DEFLATE application/xml
	AddOutputFilterByType DEFLATE font/opentype
	AddOutputFilterByType DEFLATE font/otf
	AddOutputFilterByType DEFLATE font/ttf
	AddOutputFilterByType DEFLATE image/svg+xml
	AddOutputFilterByType DEFLATE image/x-icon
	AddOutputFilterByType DEFLATE text/css
	AddOutputFilterByType DEFLATE text/html
	AddOutputFilterByType DEFLATE text/javascript
	AddOutputFilterByType DEFLATE text/plain
	AddOutputFilterByType DEFLATE text/xml
</IfModule>
# END Gzip Compression

# BEGIN WordPress
# The directives (lines) between "BEGIN WordPress" and "END WordPress" are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.
<IfModule mod_rewrite.c>
	RewriteEngine On
	RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
	RewriteBase /
	RewriteRule ^index\.php$ - [L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ajax-call$ /wp-admin/admin-ajax.php [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ghost-admin/(.*) /wp-admin/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ghost-login$ /wp-login.php [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?ghost-login/(.*) /wp-login.php$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?lostpass$ /wp-login.php?action=lostpassword [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?register$ /wp-login.php?action=register [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?disconnect$ /wp-login.php?action=logout [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/75a5bdb080/(.*) /wp-content/plugins/301-redirects/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/e32b144910/(.*) /wp-content/plugins/astra-addon/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/f62c451686/(.*) /wp-content/plugins/astra-widgets/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/5815d69d8f/(.*) /wp-content/plugins/searchpro/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/bf393a2dd7/(.*) /wp-content/plugins/cloudfilt-codes/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/8bf376fe7b/(.*) /wp-content/plugins/Content-Boom+2.3.2/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/f65f29574d/(.*) /wp-content/plugins/elementor/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/ccc473c329/(.*) /wp-content/plugins/elementor-pro/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/5cdd94763b/(.*) /wp-content/plugins/email-encoder-bundle/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/cd90d660e8/(.*) /wp-content/plugins/malcare-security/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/03f6eec544/(.*) /wp-content/plugins/worker/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/ab82182374/(.*) /wp-content/plugins/modular-connector/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c6410261ce/(.*) /wp-content/plugins/security-ninja-premium/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/0db0162ca4/(.*) /wp-content/plugins/nsg-seo-generator/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/1a60a0f6ed/(.*) /wp-content/plugins/google-site-kit/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/540e04aa21/(.*) /wp-content/plugins/speculation-rules/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/882eb7ffb0/(.*) /wp-content/plugins/squirrly-seo/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/57e4d36d9e/(.*) /wp-content/plugins/squirrly-seo-pack/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/54ca832649/(.*) /wp-content/plugins/track-the-click/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/717caac2bc/(.*) /wp-content/plugins/ultimate-elementor/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c313883c11/(.*) /wp-content/plugins/wp-optimize/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/d0f4711431/(.*) /wp-content/plugins/hide-my-wp/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/8994e720f2/(.*) /wp-content/plugins/wp-setup-wizard/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/6a7a5f168e/(.*) /wp-content/plugins/wpvivid-backuprestore/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/6f5036e0a6/(.*) /wp-content/plugins/wpvivid-backup-pro/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/(.*) /wp-content/plugins/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/9dbb40d076/design.css$ /wp-content/themes/astra/style.css [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/9dbb40d076/(.*) /wp-content/themes/astra/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/(.*) /wp-content/themes/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?storage/(.*) /wp-content/uploads/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?core/(.*) /wp-content/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?lib/(.*) /wp-includes/$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?comments/(.*) /wp-comments-post.php$2 [QSA,L]
	RewriteRule ^([_0-9a-zA-Z-]+/)?writer/(.*) /author/$2 [QSA,L]
	RewriteCond %{REQUEST_FILENAME} !-f
	RewriteCond %{REQUEST_FILENAME} !-d
	RewriteRule . /index.php [L]
</IfModule>

# END WordPress
# BEGIN LiteSpeed
# The directives (lines) between "BEGIN LiteSpeed" and "END LiteSpeed" are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.
<IfModule Litespeed>
	SetEnv noabort 1
</IfModule>
# END LiteSpeed

# BEGIN WPvivid Rewrite Rule for Webp
# The directives (lines) between "BEGIN WPvivid Rewrite Rule for Webp" and "END WPvivid Rewrite Rule for Webp" are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.

# END WPvivid Rewrite Rule for Webp

# BEGIN WP Setup Wizard Settings
# The directives (lines) between "BEGIN WP Setup Wizard Settings" and "END WP Setup Wizard Settings" are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.
# END WP Setup Wizard Settings

# BEGIN Block access to xmlrpc.php
# The directives (lines) between "BEGIN Block access to xmlrpc.php" and "END Block access to xmlrpc.php" are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.
<Files xmlrpc.php>
	Order Deny,Allow
	Deny from all
</Files>
# END Block access to xmlrpc.php

# php -- BEGIN cPanel-generated handler, do not edit
# Set the “ea-php81” package as the default “PHP” programming language.
<IfModule mime_module>
	AddHandler application/x-httpd-ea-php81___lsphp .php .php8 .phtml
</IfModule>
# php -- END cPanel-generated handler, do not edit
