[GTER] DDoS proveniente do PTT-SP

[Marcelo Gondim]

Pessoal,

Estamos recebendo uns ataques proveniente do PTT-SP. Alguém mais está 
sofrendo com isso? Abaixo os gráficos e uns trechos do ataque:

O gráfico acima é do PTT-SP reparem os 3 picos acima e agora abaixo 
nosso clear channel de uma cidade nossa:

Trecho do ataque:

16:55:49.224255 IP 209.74.104.250.19 > 191.xxx.xxx.22.24352: UDP, length 
5752
16:55:49.224260 IP 118.123.240.167 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224354 IP 58.213.145.93.19 > 191.xxx.xxx.22.23466: UDP, length 2463
16:55:49.224367 IP 210.75.240.129.19 > 191.xxx.xxx.22.36682: UDP, length 851
16:55:49.224371 IP 218.84.36.106.19 > 191.xxx.xxx.22.63604: UDP, length 2931
16:55:49.224375 IP 209.74.104.250 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224382 IP 202.100.243.118.19 > 191.xxx.xxx.22.41245: UDP, 
length 2329
16:55:49.224387 IP 218.84.36.106 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224402 IP 116.55.248.236.19 > 191.xxx.xxx.22.3819: UDP, length 146
16:55:49.224410 IP 202.100.243.118 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224488 IP 183.60.143.145.19 > 191.xxx.xxx.22.10956: UDP, length 
4577
16:55:49.224493 IP 218.84.36.106 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224604 IP 218.84.247.80 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224608 IP 218.84.247.80.19 > 191.xxx.xxx.22.30676: UDP, length 5968
16:55:49.224621 IP 59.53.63.97.19 > 191.xxx.xxx.22.2082: UDP, length 2915
16:55:49.224624 IP 209.74.104.250 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224628 IP 183.60.143.145 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224631 IP 217.195.206.32 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224729 IP 59.53.63.97 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224734 IP 209.74.104.250 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224746 IP 219.150.233.12.19 > 191.xxx.xxx.22.5535: UDP, length 2644
16:55:49.224761 IP 183.60.143.145 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224765 IP 183.60.143.145 > 191.xxx.xxx.22: ip-proto-17
16:55:49.224770 IP 219.150.233.12 > 191.xxx.xxx.22: ip-proto-17