Malware Bytes say’s that https://themencode.com/ is a malware site and the plugin PDF viewer for WordPress is communicating with that site every time you click within it in admin.
I had the same issue 3 times, lots of work has been lost and I got no reply