Depending on how the server is hacked, sometimes people overdue their attempts at Security. Check the SbHTTP service, to see what account it runs as (system or something else), then check permissions in the SBadmin folder. Additionally, set your AV software on the server to ignore the SBDATA folder. If you're running Symantec AV 8, 9, or 10... it doesn't matter and it is just incompatible with this product as it still tries to "watch" all the files in SBDATA.
Could you provide any more specifics on the server setup? SAN, physical/VM, memory, AV/HIPS software, any noteworthy errors in the event viewer.