We won't know until the datacenter clears the information to us(generally after

1. We won't know until the datacenter clears the information to us(generally after the abuse report is filed and acted on).
2. The botnet was well over 300IPs (how many I can personally track without their tools), so it was someone who most likely hired a botnet for a brief period to cause issues.
3. The target was random Ports and IP on the machine from within those 300 IP, so currently I don't have any hunches on who the real target was.
4. If you had planned a large event today, or (most common) banned someone, please let me know.
5. Hired botnets generally do a very good job at not leading on to who was behind it, but with a motive it becomes night and day.