Something wierd just happened on my blog.

.ru is Russia and I would be extremely cautious about this.

Change your password, don't respond and "spam" it.

I would also make sure you have the most recent version of Wordpress.

You might also go to the forums at wordpress.org and see what they have to suggest.

Also, do you have Akismet running? If not, get that on.

There is a big problem with spam comments using that very same e-mail address.

Have somebody look at your blog for a hack.

Jay

Yes, it is a comment, you will see them all day long, until you install some spam protection, ( keep in mind that nothing is 100 percent )

but follow this and I can guarantee you that you will see less of this type of comment spam, and that is what it is, spam, in the form of a comment.

Blogging software wordpress: Setting up Spam protection

But I don't understand how ANY COMMENTS were made, if I have comments turned off. That doesn't make sense to me.

This is problem with spammers.i think it better you turn off comment mode so it help you protect your blog.do you use word press?

I've seen some things like this by people pointing to the page that processes the submitted comment (wp-comments-post.php)
More often I see it for member sign-ups.
This is no big secret or major hack so I'm not giving new news I believe.
If so there is no real damage that can be done except being spammed and people trying to create accounts.

I'm not quite sure what they are doing but I imagine they create an html form on their server with all of the appropriate fields both visible and hidden fields that are required, and then point the processing part of the form to your server and your wp-comments file.

So "their" opening form tag might read
<form action="http://www.YOURSITE.com/blog/wp-comments-post.php" method="post">

You could probably track it back through your server logs to find out for sure.
I'm not sure what other variables are needed but I'll wager it is something like this.

There are safeguards against this if this is the case using your .htaccess for control.

But check your server logs to find out what exactly happened and who the referrer was.
Also check the dates on your files to make sure none have been modified recently.

If you run into a snag or think you have been hacked PM me and I can give you a little bit of guidance to check this.

Ken

I expect you would need to remove some code in the comments.php page, in order to truly disable comments, and perhaps there is some code in the index.php page, not sure, but personally I want comments, I want the pings, I want the back links, it creates more traffic, more visitors, more potential, sure its a pain to go through the spam, and that is why you do all you can to keep it down, but it is what it is, a necessary evil

You learn something new every day. Thanks Warriors.

Are you using the Askimet plugin?

I would find it highly suspicious if you ask me. Recent trouble I had with one of my blogs is the fact that when I visited my site, it all seemed fine, but if someone clicked through from Google or Yahoo, there was this massive advertisement at the top that promoted some hosting site. I was left fuming and then when I had a look it made sense since I did not upgrade my wordpress to the latest version which resulted in the vulnerability plus this guy somehow added himself to my blog as an admin. I deleted his name, flagged his IP and posted it as spam. Then updated my blog and made sure everything was neat and in good order. So my suggestion...always check your blog now and again for these things. It might even be good to keep up to date with wordpress updates and understand why some updates are necessary.

I'm having at least 100 such spams over my blogs for a year or more now. These spams are created by some bots I think. Instead of using the normal wordpress comment forms, they can post it straight to your comments even if you don't have comments forms for them to comment on.

nothing to worry about - not some hackers who hacked into ur blog.