Home / malware HackTool:Win32/Evidpatch.A
First posted on 12 May 2012.
Source: MicrosoftAliases :
HackTool:Win32/Evidpatch.A is also known as VirTool.Evidpatch.A (VirusBuster), HackTool.AB (AVG), Win32/Tool.EvID4226 (ESET), Not-A-Virus.Patch.TCPIP (Ikarus), HackTool/EvID (Panda), VirTool:Win32/Evidpatch.A (other).
Explanation :
HackTool:Win32/Evidpatch.A is a tool that modifies the Windows system file "TCPIP.SYS". It removes the security limits imposed on the default number of concurrent TCP connection attempts within a specific time period. It backs up the original copy of "TCPIP.SYS", then performs the changes.
Analysis by Jireh SanicoLast update 12 May 2012
