[ad_1]
I solved the issue.
Updating the plugin and changing the trigger back to click on your popup WILL NOT SOLVE THE PROBLEM. Memorize the post ID for the popup, and completely delete the it (remove from trash afterwards), and make sure the DB settings for that popup are gone:
Access your database and in the wp_post_meta table, search for the rows associated to your compromised popup ID and make sure there is no data. The malicious code lives inside sg_popup_scripts and sg_popup_options row.
If you need help with this email me at [email protected]