Hello,

First, please update SP Page Builder to the latest version (v6.2.2) if you have not already done so.

After updating, remove all suspicious files and folders that have been created inside the affected directories, including any malicious .php, .phtml, .ph56, or similar files.

We also recommend running a malware scan from your hosting control panel if your hosting provider offers this feature. This can help identify any additional infected files elsewhere on the server.

Additionally, please review the following post for some useful security recommendations and cleanup tips: https://www.joomshaper.com/forum/question/45152

Let us know if the issue continues after updating and cleaning the affected files.

Kind regards,