Breakthrough in SP2, the limit of concurrent connections often wants to play SP2, but for its thread restrictions have been a bit. How do you not do your patch, use FF and use not to use it. Today is finally poisoned. Is a Trojan! The hard disk is afraid of people ... I am worried about the SP2. The following work is to break through the number of concurrent connections.
In order to effectively prevent the impact wave, the worm-like multithreaded attack, SP2 built a OOB Messages Dynamic Link Link increases the limitations of TCP simultaneous connection attempts, the dynamic link library monitors the number of concurrent lines of each process in real time. As long as it exceeds the number of secure threads that it thinks (maximum semi-connected HALF-OPEN Connections), the part of the part is started to reduce the number of threads. A bug that has to be mentioned: If you use a large number of applications such as scanning software or BT that may result in a semi-open connection status, other network applications may not work, resulting in abnormal networking. For example, IE cannot open Webpage, etc. (It is said to be the first BUG of SP2) You can see the ID of the ID (IP) 4226 in the Control Panel - Management Tool - Event Viewer - Systems: "TCP / IP has reached the safety limit of concurrent TCP connection attempts "Microsoft describes this warning as follows: Event 4226, Event_tcpip_tcp_connect_limit_reat_reached. Related documents: http://support.microsoft.com/default.aspx? Scid = kb; zh-tw; 884020 (no simplified related document) Patch: http://www.microsoft.com/downloads/details.aspx FamilyId = 17d997d2-5034-4bbb-b74d-ad8430a1f7c8 & displaylang = zh-cn (INTERNET Explorer accumulated security update (KB834707)) (KB834707)) is included in the patch, there is no network abnormal shutdown, However, TCP / IP can be concurrently tCP connection attempts still have no change.
To solve this problem, freely use multithreading software must modify "TCPIP.SYS", file TCPIP.SYS bit C: / Windows / System32 / Drivers, C: / Windows / ServicePackFiles / I386 with C: / Windows / System32 / DLLCACHE (System Hide Folder) This three folders.
Most users don't understand the core content of the Windows system, so they can't modify themselves, and tcpip.sys is a very important system file, which is protected by the Windows system. Under normal circumstances, it is impossible to replace, must be in security mode or Can be replaced in pure DOS mode. In order to facilitate the user to replace the "TCPIP.sys" file, there is a special replacement, so there is no need to modify itself.
First back up the TCPIP.sys file in the Windows XP system, its location is "C: / Windows / System32 / Drivers", then from "http://www.lvllord.de/download.php?url=EN/evid4226patch212- En.zip download the replacement.
After downloading the replacement and decompressed, run "evid4226patch.exe" and pop up the command line prompt window. First of all, the tool detects the TCPip.sys file version of the current Windows system, as well as the concurrent connection limit value (default is 10). Then ask if you limit the number of connections at 50, there are three options. If you want to modify the concurrent connection value to "100", you can enter "C" after the prompt, then the replacement will ask the limit value required to concurrent connections, and enter the value "100" "100" you need, then The prompt enters "Y" and carries the bus, and the system's TCPIP.sys file is successfully replaced. Since the system file protection feature of Windows XP is replaced, the system file protection dialog box will pop up. At this time, click the "Cancel" button, then click "Yes" button, then you can complete the system. Replacement of file TCPIP.SYS.
After the above operation, it can break through the limit of 10 concurrent connections. Everyone is running the scan tool or the P2P tool will never be limited by the thread.
Insufficient: sacrificing part of the security features of the Windows XP (SP2) system is at the expense. Once the machine is infected with viruses and Trojans, the new threads are enabled too much, and they will accelerate the virus and Trojan. It is recommended not to change the number of semi-open coupling, such as more than 100, because the half-open joints allowed by the system may increase the possibility of attacks such as SYN-FLOOD.
Note: Some P2P software such as BitComet has been improved, but we use the scanner or. . . Hey, no mother's child ...
