Title: HTTP ERROR 500 Last modified: September 1, 2016 --- # HTTP ERROR 500 * [Mehrdad32](https://wordpress.org/support/users/mehrdad32/) * (@mehrdad32) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/) * Hello. * Since version 4 of WP , iTheme Security Plugin my site getting to ERROR 500 and by rename ot deleting .htaccess file or disable this plugin it will be fixed! How I can fix without this two way? (Sorry yo my bad English) * Site: [http://www.mehrdad32.ir/](http://www.mehrdad32.ir/) * [https://wordpress.org/plugins/better-wp-security/](https://wordpress.org/plugins/better-wp-security/) Viewing 9 replies - 1 through 9 (of 9 total) * [Gerroald](https://wordpress.org/support/users/gerroald/) * (@gerroald) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585409) * Hi, * Do you see any errors in your PHP error logs? * Thanks, * Gerroald * Thread Starter [Mehrdad32](https://wordpress.org/support/users/mehrdad32/) * (@mehrdad32) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585413) * No all are WARNING about 401 error that not found in my error pages. * [dwinden](https://wordpress.org/support/users/dwinden/) * (@dwinden) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585416) * [@mehrdad32](https://wordpress.org/support/users/mehrdad32/) * Please confirm your website is running on LiteSpeed web server. * Also, please post the content of your .htaccess file. * dwinden * Thread Starter [Mehrdad32](https://wordpress.org/support/users/mehrdad32/) * (@mehrdad32) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585417) * [@dwinden](https://wordpress.org/support/users/dwinden/) * Thanks to answer, Yes, I’m sure about LiteSpeed… * My .htaccess file: * ``` # BEGIN iThemes Security - Do not modify or remove this line # iThemes Security Config Details: 2 # Enable HackRepair.com's blacklist feature - Security > Settings > Banned Users > Default Blacklist # Start HackRepair.com Blacklist RewriteEngine on # Start Abuse Agent Blocking RewriteCond %{HTTP_USER_AGENT} "^Mozilla.*Indy" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Mozilla.*NEWT" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^$" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Maxthon$" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^SeaMonkey$" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Acunetix" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^binlar" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^BlackWidow" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Bolt 0" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^BOT for JCE" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Bot mailto\:craftbot@yahoo\.com" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^casper" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^checkprivacy" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^ChinaClaw" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^clshttp" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^cmsworldmap" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^comodo" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Custo" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Default Browser 0" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^diavol" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^DIIbot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^DISCo" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^dotbot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Download Demon" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^eCatch" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^EirGrabber" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^EmailCollector" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^EmailSiphon" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^EmailWolf" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Express WebPictures" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^extract" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^ExtractorPro" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^EyeNetIE" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^feedfinder" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^FHscan" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^FlashGet" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^flicky" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^g00g1e" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^GetRight" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^GetWeb\!" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Go\!Zilla" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Go\-Ahead\-Got\-It" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^grab" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^GrabNet" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Grafula" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^harvest" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^HMView" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^ia_archiver" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Image Stripper" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Image Sucker" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^InterGET" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Internet Ninja" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^InternetSeer\.com" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^jakarta" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Java" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^JetCar" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^JOC Web Spider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^kanagawa" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^kmccrew" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^larbin" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^LeechFTP" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^libwww" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Mass Downloader" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^microsoft\.url" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^MIDown tool" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^miner" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Mister PiX" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^MSFrontPage" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Navroad" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^NearSite" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Net Vampire" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^NetAnts" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^NetSpider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^NetZIP" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^nutch" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Octopus" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Offline Explorer" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Offline Navigator" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^PageGrabber" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Papa Foto" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^pavuk" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^pcBrowser" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^PeoplePal" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^planetwork" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^psbot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^purebot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^pycurl" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^RealDownload" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^ReGet" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Rippers 0" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^sitecheck\.internetseer\.com" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^SiteSnagger" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^skygrid" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^SmartDownload" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^sucker" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^SuperBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^SuperHTTP" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Surfbot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^tAkeOut" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Teleport Pro" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Toata dragostea mea pentru diavola" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^turnit" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^vikspider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^VoidEYE" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Web Image Collector" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Web Sucker" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebAuto" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebBandit" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebCopier" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebFetch" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebGo IS" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebLeacher" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebReaper" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebSauger" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Website eXtractor" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Website Quester" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebStripper" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebWhacker" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WebZIP" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Wget" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Widow" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WPScan" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WWW\-Mechanize" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^WWWOFFLE" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Xaldon WebSpider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^Zeus" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "^zmeu" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "360Spider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "AhrefsBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "CazoodleBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "discobot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "EasouSpider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "ecxi" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "GT\:\:WWW" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "heritrix" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "HTTP\:\:Lite" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "HTTrack" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "ia_archiver" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "id\-search" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "IDBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Indy Library" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "IRLbot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "ISC Systems iRc Search 2\.1" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "LinksCrawler" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "LinksManager\.com_bot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "linkwalker" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "lwp\-trivial" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "MFC_Tear_Sample" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Microsoft URL Control" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Missigua Locator" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "MJ12bot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "panscient\.com" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "PECL\:\:HTTP" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "PHPCrawl" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "PleaseCrawl" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "SBIder" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "SearchmetricsBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "SeznamBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Snoopy" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Steeler" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "URI\:\:Fetch" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "urllib" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Web Sucker" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "webalta" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "WebCollage" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "Wells Search II" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "WEP Search" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "XoviBot" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "YisouSpider" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "zermelo" [NC,OR] RewriteCond %{HTTP_USER_AGENT} "ZyBorg" [NC,OR] # End Abuse Agent Blocking # Start Abuse HTTP Referrer Blocking RewriteCond %{HTTP_REFERER} "^https?://(?:[^/]+\.)?semalt\.com" [NC,OR] RewriteCond %{HTTP_REFERER} "^https?://(?:[^/]+\.)?kambasoft\.com" [NC,OR] RewriteCond %{HTTP_REFERER} "^https?://(?:[^/]+\.)?savetubevideo\.com" [NC] # End Abuse HTTP Referrer Blocking RewriteRule ^.* - [F,L] # End HackRepair.com Blacklist, http://pastebin.com/u/hackrepair # Ban Hosts - Security > Settings > Banned Users SetEnvIF REMOTE_ADDR "^175\.126\.62\.151$" DenyAccess SetEnvIF X-FORWARDED-FOR "^175\.126\.62\.151$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^175\.126\.62\.151$" DenyAccess SetEnvIF REMOTE_ADDR "^178\.137\.92\.94$" DenyAccess SetEnvIF X-FORWARDED-FOR "^178\.137\.92\.94$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^178\.137\.92\.94$" DenyAccess SetEnvIF REMOTE_ADDR "^178\.33\.177\.222$" DenyAccess SetEnvIF X-FORWARDED-FOR "^178\.33\.177\.222$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^178\.33\.177\.222$" DenyAccess SetEnvIF REMOTE_ADDR "^185\.25\.48\.43$" DenyAccess SetEnvIF X-FORWARDED-FOR "^185\.25\.48\.43$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^185\.25\.48\.43$" DenyAccess SetEnvIF REMOTE_ADDR "^188\.143\.233\.30$" DenyAccess SetEnvIF X-FORWARDED-FOR "^188\.143\.233\.30$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^188\.143\.233\.30$" DenyAccess SetEnvIF REMOTE_ADDR "^207\.182\.128\.162$" DenyAccess SetEnvIF X-FORWARDED-FOR "^207\.182\.128\.162$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^207\.182\.128\.162$" DenyAccess SetEnvIF REMOTE_ADDR "^31\.41\.218\.144$" DenyAccess SetEnvIF X-FORWARDED-FOR "^31\.41\.218\.144$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^31\.41\.218\.144$" DenyAccess SetEnvIF REMOTE_ADDR "^37\.9\.53\.126$" DenyAccess SetEnvIF X-FORWARDED-FOR "^37\.9\.53\.126$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^37\.9\.53\.126$" DenyAccess SetEnvIF REMOTE_ADDR "^199\.21\.149\.125$" DenyAccess SetEnvIF X-FORWARDED-FOR "^199\.21\.149\.125$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^199\.21\.149\.125$" DenyAccess SetEnvIF REMOTE_ADDR "^212\.159\.73\.13$" DenyAccess SetEnvIF X-FORWARDED-FOR "^212\.159\.73\.13$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^212\.159\.73\.13$" DenyAccess SetEnvIF REMOTE_ADDR "^94\.131\.14\.13$" DenyAccess SetEnvIF X-FORWARDED-FOR "^94\.131\.14\.13$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^94\.131\.14\.13$" DenyAccess SetEnvIF REMOTE_ADDR "^66\.117\.9\.60$" DenyAccess SetEnvIF X-FORWARDED-FOR "^66\.117\.9\.60$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^66\.117\.9\.60$" DenyAccess SetEnvIF REMOTE_ADDR "^91\.207\.66\.195$" DenyAccess SetEnvIF X-FORWARDED-FOR "^91\.207\.66\.195$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^91\.207\.66\.195$" DenyAccess SetEnvIF REMOTE_ADDR "^151\.238\.209\.15$" DenyAccess SetEnvIF X-FORWARDED-FOR "^151\.238\.209\.15$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^151\.238\.209\.15$" DenyAccess SetEnvIF REMOTE_ADDR "^178\.234\.64\.7$" DenyAccess SetEnvIF X-FORWARDED-FOR "^178\.234\.64\.7$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^178\.234\.64\.7$" DenyAccess SetEnvIF REMOTE_ADDR "^37\.187\.79\.229$" DenyAccess SetEnvIF X-FORWARDED-FOR "^37\.187\.79\.229$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^37\.187\.79\.229$" DenyAccess SetEnvIF REMOTE_ADDR "^72\.177\.107\.184$" DenyAccess SetEnvIF X-FORWARDED-FOR "^72\.177\.107\.184$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^72\.177\.107\.184$" DenyAccess SetEnvIF REMOTE_ADDR "^88\.198\.48\.46$" DenyAccess SetEnvIF X-FORWARDED-FOR "^88\.198\.48\.46$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^88\.198\.48\.46$" DenyAccess SetEnvIF REMOTE_ADDR "^91\.209\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-FORWARDED-FOR "^91\.209\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^91\.209\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF REMOTE_ADDR "^37\.203\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-FORWARDED-FOR "^37\.203\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^37\.203\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF REMOTE_ADDR "^85\.248\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-FORWARDED-FOR "^85\.248\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^85\.248\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF REMOTE_ADDR "^93\.115\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-FORWARDED-FOR "^93\.115\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^93\.115\.[0-9]{1,3}\.[0-9]{1,3}$" DenyAccess SetEnvIF REMOTE_ADDR "^193\.251\.65\.223$" DenyAccess SetEnvIF X-FORWARDED-FOR "^193\.251\.65\.223$" DenyAccess SetEnvIF X-CLUSTER-CLIENT-IP "^193\.251\.65\.223$" DenyAccess Order allow,deny Allow from all Deny from env=DenyAccess Deny from 175.126.62.151 Deny from 178.137.92.94 Deny from 178.33.177.222 Deny from 185.25.48.43 Deny from 188.143.233.30 Deny from 207.182.128.162 Deny from 31.41.218.144 Deny from 37.9.53.126 Deny from 199.21.149.125 Deny from 212.159.73.13 Deny from 94.131.14.13 Deny from 66.117.9.60 Deny from 91.207.66.195 Deny from 151.238.209.15 Deny from 178.234.64.7 Deny from 37.187.79.229 Deny from 72.177.107.184 Deny from 88.198.48.46 Deny from 91.209.0.0/16 Deny from 37.203.0.0/16 Deny from 85.248.0.0/16 Deny from 93.115.0.0/16 Deny from 193.251.65.223 # Protect System Files - Security > Settings > System Tweaks > System Files Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all Order allow,deny Deny from all # Disable Directory Browsing - Security > Settings > System Tweaks > Directory Browsing Options -Indexes RewriteEngine On # Protect System Files - Security > Settings > System Tweaks > System Files RewriteRule ^wp-admin/includes/ - [F] RewriteRule !^wp-includes/ - [S=3] RewriteCond %{SCRIPT_FILENAME} !^(.*)wp-includes/ms-files.php RewriteRule ^wp-includes/[^/]+\.php$ - [F] RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F] RewriteRule ^wp-includes/theme-compat/ - [F] # Disable PHP in Uploads - Security > Settings > System Tweaks > Uploads RewriteRule ^wp\-content/uploads/.*\.(?:php[1-6]?|pht|phtml?)$ - [NC,F] # Disable XML-RPC - Security > Settings > WordPress Tweaks > XML-RPC Order allow,deny Deny from all # Enable the hide backend feature - Security > Settings > Hide Login Area > Hide Backend RewriteRule ^(/)??$ [QSA,L] RewriteRule ^(/)?$ [QSA,L] # END iThemes Security - Do not modify or remove this line # BEGIN WordPress RewriteEngine On RewriteBase / RewriteRule ^index\.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] # END WordPress ``` * (**Note:** I’m redirected login page and secure it in a bow code by …) * [dwinden](https://wordpress.org/support/users/dwinden/) * (@dwinden) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585419) * [@mehrdad32](https://wordpress.org/support/users/mehrdad32/) * OK, try and disable the **Default Blacklist** setting in the **Banned Users** module. * If the issue persists try and disable the **Uploads** setting AS WELL in the ** System Tweaks** module. * Oh one other thing. What is the version of LiteSpeed being used ? * dwinden * Thread Starter [Mehrdad32](https://wordpress.org/support/users/mehrdad32/) * (@mehrdad32) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585420) * [@dwinden](https://wordpress.org/support/users/dwinden/) * New problem! Now I want to change setting that you said, But see nothing in my admin area! 😐 * [http://s2.picofile.com/file/8260754484/iTheme.jpg](http://s2.picofile.com/file/8260754484/iTheme.jpg) * [dwinden](https://wordpress.org/support/users/dwinden/) * (@dwinden) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585464) * [@mehrdad32](https://wordpress.org/support/users/mehrdad32/) * Is there any error visible in the browser console ? * dwinden * Thread Starter [Mehrdad32](https://wordpress.org/support/users/mehrdad32/) * (@mehrdad32) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585465) * [@dwinden](https://wordpress.org/support/users/dwinden/) * No, Some Java Script errors that was before this 500 error and by disabling this java scripts my problem doesn’t be fixed 🙁 * [dwinden](https://wordpress.org/support/users/dwinden/) * (@dwinden) * [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585470) * [@mehrdad32](https://wordpress.org/support/users/mehrdad32/) * Just to determin whether any of the 2 settings mentioned earlier is causing the ERROR 500 msg you can manually remove the corresponding lines from the .htaccess file. * First manually remove the many many many “HackRepair.com Blacklist” lines. * If that does not make any difference remove the 2 “Disable PHP in Uploads” lines too. * Both of these settings add a RewriteCond/RewriteRule to the .htaccess file with a regular expression which could be causing your issue. * dwinden Viewing 9 replies - 1 through 9 (of 9 total) The topic ‘HTTP ERROR 500’ is closed to new replies. * ![](https://ps.w.org/better-wp-security/assets/icon.svg?rev=3529351) * [Kadence Security – Password, Two Factor Authentication, and Brute Force Protection](https://wordpress.org/plugins/better-wp-security/) * [Frequently Asked Questions](https://wordpress.org/plugins/better-wp-security/#faq) * [Support Threads](https://wordpress.org/support/plugin/better-wp-security/) * [Active Topics](https://wordpress.org/support/plugin/better-wp-security/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/better-wp-security/unresolved/) * [Reviews](https://wordpress.org/support/plugin/better-wp-security/reviews/) ## Tags * [HTTP](https://wordpress.org/support/topic-tag/http/) * 9 replies * 3 participants * Last reply from: [dwinden](https://wordpress.org/support/users/dwinden/) * Last activity: [9 years, 10 months ago](https://wordpress.org/support/topic/http-error-500-519/#post-7585470) * Status: not resolved