Hi all, first of all I love this plug in! I am a developer. I love the ease of use. I love the file upload capabilities. I love that the form can be customized virtually any way you want ( with a little know how and research ). However the problem I am having with the plug in has appeared multiple times, meaning on 2 different contact forms on 2 different sites. I have installed this plugin on 5 or 6 sites, but the last 2 sites that I have installed on have come back with malware attached to the form. Now this may be a coincident. This may be a case of a hacker just being a jerk. This also could be another developer upset that I am taking potential clients or another business owner upset that my sites are starting to rank high in the listings on Google. Another words there are too many variable to scientifically narrow down the cause, who, what, why, where and when. However I do know that in each case of this malware showing up in the contact from, it has cost me $90 bucks a pop to get the malware removed from the contact from. I still use contact form 7 and still love it, but would like to see some form of investigating on developer's side to find out how this is happening. Or someone can just tell me I'm full of crap and it is just a coincident. Either way I can't consider donating any more money for the development of this plugin until I figure out what the cause of the malware is. It's already cost me $180. Eric Sawyer
Contact Form 7
Possibility of Malware Attached (3 posts)
-
Ericthedesigner
Posted 1 year ago #
-
schmidyuc
Posted 11 months ago #
Yep I too am having the same issue with Contact form 7. I have reinstalled the wordpress files and I have deleted and reinstalled the Contact Form 7 Plugin and the Really Simple Captcha. Any time the plugins are activated a file is loaded with a name similar to this: http://mikapola.ru/yeot?7 and this: http://melaf.ru/jtrepj?7. The site tends to switch it appears as they get shutdown regularly. I get a malware warning when the plugins are loaded and then after i deactivate the plugin it goes away. When you go to the sites directly it will give an infection screen then try to get your to download their software which i am sure is a virus.
-
Posted 11 months ago #
Aha! strike that post. I was using Previewdns and the actual malware was on the original site, not my testing site. Anytime my test site referenced the old domain and did not find a file, its 404 was a malware website. During the remainder of the dev phase I will disable the contact form plugin.
Topic Closed
This topic has been closed to new replies.
