In recent days my isp TPG has not even tryd to stop the litle cunt smurfing its users. thus I have taken matters into my own hands. I would be interested in knowing if any other users of the isp TPG are having problems also?

For those who dont know smurfing is a DOS (denial of service) attack that is much more effective then the old style "SYN flood" attacks

How it works

A smurf begins when a single malicious user sends a stream of Internet Control Message Protocol, or ping, packets - used to determine if a machine is alive - to a target network's central "directed broadcast" address, which is rarely used, but easily obtained. This address pings all the machines - often 255 boxes or more - on the target network.

Each of the hundreds of hosts on that target network will dutifully respond with a "yes, I'm here faggit " answer packet back to what they understand to be the ping's origin address. But the cracker has forged the source address of the originating ping packets.The faked originating address is the poor victim of the smurf. the target network is hopelessly clogged and poor stoners like me are left without a place to post our dumb stoner shit....

There is alot more to it but i dont feel like explaining atm

I know v little about computer security, except that FW and AV software is impt. Would the FW deny access to the original attack to produce the dummy address? If not any info/links etc on detection and/or fixing the prob. would be much appreciated. Is this a problem with dial up or is it ADSL TPG that is targeted?. Personally I've had no real probs so far but I just may have not noticed it. Thanks for the original post.

DOS attacks are childish, and an absolute pain in the ass for net users. Here's an in depth explanation of smurfing, including ways to protect yourself and minimize it happening, and ways of tracing the little bastard that's doing it..............if you have your isp's cooperation that is, and even then it's very difficult to trace.
Note: This paper is based on a cisco router, but it's pretty general info wise

Oops......... :: Here's the link for Smurfing:Smurfing (DOS attacks)

Chev iv alredy looked over that its almost useless unless you got the isp on your side or a large network......

I think that the attacks are coming from 127.0.0.1 as that is the adress that keeps trying to give me sub7 I cant download a port scanner atm so could someone scan that ip for me? Plz

:: I would if I could........but that's usually your computer I think, have you been messing around with sub7 on your system? If so, I'd check it over, you could have accidently infected yourself.

I was with tpg for a few years until i got adsl with internode who are top notch.
I dont think you are being attacked i think its just tpgs shithouse service and connections, what plan are you on cause i used to on the 6month one and they would be all good for the first month then fuck you over the next five cause you paid ahead.

Anyway, get adsl sooooo much better, OH YEAH

No I dont have a crappy trojen made by a pimple faced *&%$.....

No it is not tpgs crappy service

Its not my Ip I dont have sub7 at all LISTEN
That is the sorce addy for the attacks and since i posted the dude is attacking every 1 min mostly ping attacks and a few net bus's...
Forget I even asked chev you should know better

Ok, i'll explain it a little bit better.

That address is a loopback address, essentially meaning "this machine", for your NIC, or localhost. If somebody is trying to 'give' you sub7, the only way they can do that really is if they:
1. Already have access to your machine.(physically, or net)
2.You've downloaded a file with the virus attached unknowingly, then ran it.
3.You or someone else has accidently ran the server.exe on your machine.
4.You are already infected with another virus that is holding a backdoor open for sub7.
How'd you know he's specifically trying to give you sub7, if you don't mind my asking? It is set-up to run on specific ports, but it can be run on any. And can I also ask what firewall you have running?

Why not change ISP's then. Another point you should also remember is that this is primarily a stoner site and not an in depth PC security site, we only worry about PC security basics here.

Also, I understand you are stressed but please do not abuse the members that are attempting to assist you, there are much more pleasant ways to tell someone that you don't agree with them.

yeah, you should know that Taz

just pulling your chain chev....

Who ever it is has my ip and im running zonalarm pro and pc cillen on my pcs . Never mind about it dllhost.exe WAS running as a server....

Had any worms lately?

I have also been pinged (ZA) at least once by this IP addy listed above, althogh I wouldn't know if my computer is slower or not because I have a faulty line outside (straight cable) that I only discovered this morning.
do you use dial up or broadband? Hope this helps Black One, it looks like you have it sorted though, but your PM was after these posts so I will include the info as asked. Good luck amd I hope you can find a big mean cat to get that smurf! ::

I taught the guy a lesson AMD's hot run very very hot if you get my meening............

I did have worms no that you mention it recon a dose of chocky conbantrain should fix them OH GREAT AND POWERFULL MOD?
If i get on your nerves just say as i love shit stirring

DoS Attacks are lame speaking in general terms because these days they are used buy kiddies who hardly know what they are doing BUT a DoS attack can just be the beginings of other things like an IPspoof but the good news is that no script kiddy is gonna be sucsesfull in IP spoofing


If you wanna catch his ass Install a packet snifer and anylise the packets that are comming yourself this will help to identify a posible ipspoof if one is occouring aswell