I agree with Barnez. I have gone through and made sure all the nicknames were set to names different than the actual login. I found many attempts with valid usernames until I realized that wordpress defaults to using your login name for a the post author unless you change that.
I'll ask our dev team next call we have about the possibility of showing the passwords they used as well. If nothing else, I think it would be really interesting to see what the bots attempted it with.
tim