It appears a SYN-flood style DDoS has been carried out on this system. Send us a list of the IP addresses of the attackers (in any order, separated by spaces), so we can track them down and stop them.

Pcap available to download here[1], or available to analyse online at CloudShark[2]

Hint: What's a defining pattern in a syn flood attack[3]?

[1]https://2013.picoctf.com/problems/syn_attack.pcap
[2]https://www.cloudshark.org/captures/88971318a309
[3]http://en.wikipedia.org/wiki/SYN_flood