The use of this spoofing software is coming from linus or unix machines and they are utilizing level3.net backbone network to launch these scans. On macintosh machines they are coming through tcp port 445. I don't know what port windows users would find this type of scan coming into their computers, but if you can block this type of scaning you should do so as soon as possible if you don't want those brown shirt neanderthal repuglicans taking over your personal computer.
If you think your ISP will be helpful think about it--they don't care!!!!!!!! One has to consider who their CEO's are giving money to during this election cycle!