This issue is completely unrelated to this plugin. Your site has been hacked via some other theme or plugin and it is installing something malicious that happens to use the same name as this plugin. This plugin is a feature plugin for WordPress core and partially supported by WordPress.org.
Please contact your host or post on the general support forums for help identifying the real issue.
He’s right, hackers are trying to get into WordPress blogs through that plugin even if I don’t have it. I have some logs of this.