Bummer, I would change all of your passwords immediately.
It’s possible, hard to say without seeing your site, that they created the user as a subscriber.
If that’s not a possibility with your site, then read and follow the instructions here:
http://codex.wordpress.org/FAQ_My_site_was_hacked
I had exactly the same username/password appear on my own hosted site. I have no idea how they eveb found the site as the url is VERY complex… I have had no other users registered (not even spam ones).
They appear to have signed up as a subscriber. I’m unsure of what they did next.
I’ve taken the website offline for now…
(I’m getting paranoid now… maybe I shouldn’t be publically connecting my blog to that username…)
George, don’t panic yet. Like Matt indicated, check your general settings. If “Anyone can register” is checked, there’s nothing to worry about, just uncheck and save the change. Delete the user. If it is NOT checked, you do have a problem. Follow Matt’s link. Still no reason to panic, it happens. It’s just data in cyberspace, no one is physically hurt here.
If your site is online, spambots will find it no matter how obscure. Complex URLs are a challenge to humans, not ‘bots. They’ll try to register on any form they come across, hoping it’ll lead to their ability to drop spam in comments. This is very likely what jlhy101 is.
