You receive EVENT ID 4226, TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts, in the System event log on Windows XP SP2. In Service Pack 2, the TCP/IP stack now limits the number of simultaneous incomplete outbound TCP connection attempts. When the limit is reach, further attempts are queued and resolved at 10 per second, in order to limit the speed at which malicious programs spread.
If you encounter this limit without any malicious programs, download the Intelligent TCPIP.SYS patcher / EventID 4226 patch (http://www.lvllord.de/?lang=en&url=downloads&PHPSESSID=90a0412ed3f436c4581f4c17d0cb2a3b) and unzip it.
When you run EvID4226Patch.exe, you receive:
Intelligent TCPIP.SYS patcher / EventID 4226 patch Version 2.23d
(c) 2004-05 LvlLord (www.LvlLord.de) use parameter /? for more options

This program is in development. Visit http://www.LvlLord.de for a new version
-------------------------------------------------------------------------------
- Windows mode
- Recognised Windows-directory: C:\WINDOWS

- 'Windows XP SP2 or newer' TCPIP.SYS detected ...

- Build of TCPIP.SYS : 5.1.2600.2827 (I386)
- Build of safety copy: 5.1.2600.2827 (I386)

Found limit position : 0x4F5A2
Current maximum concurrent half-open connections: 10

If you continue, please press 'Abort' and 'Yes' on the popup from Windows
File Protection. Because we change system files, Windows tries to restore the
original one. So it's normal.

Do you really want to change the limit to 50?
(Y=Yes / N=No / C=Change limit / U=Uninstall)When you press Y and Cancel the subsequent Windows File Protection, your %SystemRoot\System32\DRIVERS\Tcpip.sys and %SystemRoot\System32\DLLCACHE\Tcpip.sys are patched. NOTE: It is best to restart your computer.
http://www.jsifaq.com/SF/Tips/Tip.aspx?id=10301

That's one of the reasons I don't use SP2. You can always apply the P2P crack to increase the limit to 500.

Carlos

I was thinking about RedLib and DIMES projects and the possible impact it may have had for those running SP2.
500??? Where is that mod?

I was thinking about RedLib and DIMES projects and the possible impact it may have had for those running SP2.
500??? Where is that mod?

I think the patch is the same but I can't find it here on my machine. I'm sure you could increase the limit to unlimited (I remember that). I also remember to apply that patch after every windows update.

Carlos

I build and update an unattended (automatic install) windows sp2 disk every now and again from the forums on MSFN. All that sort of stuff and many of the programs you would like to use can be built into windows and various parameters altered or set and stored on your install cd.
Nlite is a good starter for altering/removing/slipstreaming packs and stuff with Ryan VMs update packs and addon progs from his forums installable either via Nlite or his own installer prog.
Good stuff and not too difficult to use and Nlite is now a stable but still updated list as are all the Windows updates to date available via Ryna VM`s packs.

Links.....
http://www.ryanvm.net/forum/viewforum.php?f=1&sid=c370c4d15d869b222ae9a9c7b4789555

http://www.msfn.org/board/index.php?showforum=82


http://unattended.msfn.org/unattended.xp/