Recent experience would say yes, and I have a fresh example.
Some random guy with a botnet decided he liked the same nickname I've been using for a while and thought he'd just grab it because hey! He has a botnet, right? Sense of entitlement, you know how that goes. My penis bigger than yours, step aside thank you very much. Now before you say it's rather ironic I'm raising this issue, you should know that I consider nicknames fair game. You're offline, it's up for grabs. It just so happens that I never go offline and seeing this, it determined the said random guy with the botnet to start flooding me. At first he caught me with my pants down and got me to disconnect.
I whois-ed all 105 of his bots because my mIRC does so automatically.
I sent an e-mail first to username-abuse because the same guy has at least 4 CService usernames that he uses. A week went by, no reply. I joined #abuse and reported this. The response I got back was awesome:
"CService staff has to take note first of the abuser before action will be taken"
Oh ... ok. So even though I raised a red flag, apparently they can't be bothered to at least look into it.
Then I sent another e-mail, again complete with logs, this time to email@example.com
to report his botnet. Two days go by, I just happen to get the nickname again and once more I'm attacked. However, this time I was prepared and I didn't go down. My connection goes down 2 days later due to a heavy storm and he grabs the nickname but this time, and this is the funny part, he made sure around 10 bots are actively attempting to take it. I've noticed this because every now and then I whois it and I've seen at least that many different IPs.
Up until now it's been nice and quiet. No one from the Undernet side though got back to me about the botnet and to this day it still stands, probably doing mischief on other unsuspecting victims.
Don't get me wrong, this has nothing to do with the nickname "war" itself if you wanna call it that way because it seems that's what this guy thinks it's become and if it did, he's fighting it by himself. In no ways am I looking to retaliate, but the moment you start flooding me, the gloves come off and I ignore you no longer.
Now if I was a dick I could easily do the following: start talking to another random guy with a huge botnet and start throwing insults at him just to get him riled up. Then I could claim I'm the first guy with the botnet and provoke him into a head-to-head fight while I sit back, laugh, and the Undernet servers take a hit. And if I was an even bigger dick, I suppose I could get 4 of these idiots to fight each other.
This guy is Romanian. I'm also Romanian. It's crap like this that confirms my stand on the issue, that Romania DESERVES the reputation it gets online. Nothing but fraud, floods and script kiddies. 419 scams aren't just for Nigerians anymore folks!
Now if you want specifics, I have them too.
The usernames that are used on compromised machines are at least these:
You want logs? I've got all 105 of them. You can see the nice botnet if you join #Joxer, and that's not even the half of it.
How do I know the above usernames are the same guy? They're parked in the same channels most of the time, with nearly identical idle times and the nicknames used CTCP-ed me. Not to mention identical away messages, same format, same color, same lame Romanian insult.
How do I know the above nicknames are running on compromised machines? Because they go down once I report them to their network admins. I've been fetching the IPs when not logged to CService and been notifying the right folks.
So I ask you this. On issues such as this one, what does the Undernet staff/commitee/admins do? Because so far, absolutely not a damn thing. It is EXTREMELY tedious to sit there, use Superscan to whois each IP and write e-mails. I don't have the tools and means like the ones people in charge of stuff like this do, I'm just the little guy here. Am I condemned to be flooded at random times and especially when I happen to fetch said nickname?
And don't tell me to inject a silence script into my IRC client. I've already done that, but to say so is like a cop saying "ma'am, I know there's been a lot of rapes on this side of towm, so why don't you just lock yourself in the house for now. Kthxbye". I know Undernet is a free service and it's most likely understaffed and overworked, but there's a difference between my pleads and your typical "oh noes, I don't know how to log onto CService".
My shell provider has told me twice now that their machine[s] have been hit pretty good, luckily they have good DDoS protection. However, I wonder how long it will be before they decide to end my membership because I'm sure they're getting sick of this too.
My determination is unflinching. I will NOT yield to a loser like this.
Now, it just so happens I will be flying to Romania in about 3 days for a 2 week visit [so my activity on this topic may be lacking a bit during this time]. Maybe I should find out where he lives and go see him, lol.
Thanks for letting me vent. Hope someone here will take note of this topic and help me out.