Hello,
Thank you for the update.
The .htaccess rules are intended only as a preventive measure to help block similar exploit attempts. They do not remove malware that has already been uploaded, and they may conflict with custom .htaccess rules generated by third-party extensions such as Admin Tools.
Since your site displays a white screen after adding the rules, we recommend restoring your previous working .htaccess file first so your website is accessible again.
If your site has already been compromised, the recommended steps are:
- Restore a clean backup taken before the compromise, or manually remove all malicious files from the server.
- Upgrade SP Page Builder to v6.6.2 if you haven't already.
- Scan your site to identify any remaining malicious files or backdoors. You can use the Joomla Security Scanner mentioned above to assist with the cleanup.
- Once the site is confirmed clean, you may reapply the recommended
.htaccess protection after verifying that it is compatible with your server configuration and any rules generated by Admin Tools.
Thanks