Posted on 2008-11-03
Last Modified: 2013-11-22
Get below mentioned error, this are the details from Event Viewer Application section.
When i get this error my internet stops working.
I'm unable to disconnect also when this happens.
Only option remains is to restart the system.

What u experts think is it ISP problem or my system or OS problem?

I have broadband connection.
OS: Windows XP Corporate Edition SP2
Antivirus: AVG 8 Free Updated

Details of Error:-
Event Type: Error
Event Source: Application Error
Event Category: (100)
Event ID: 1000
Date: 11/2/2008
Time: 9:15:07 PM
User: N/A
Faulting application svchost.exe, version 5.1.2600.2180, faulting module netapi32.dll, version 5.1.2600.2952, fault address 0x00018809.

Question by:VINOD MORE
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
  • +1
LVL 35

Expert Comment

by:Joseph Daly
ID: 22867890
Just a quick question have you updated to the ms08-067 security patch that was just released?
LVL 35

Expert Comment

by:Joseph Daly
ID: 22867965
The reason I am asking this is because this update patches this netapi32.dll and the newest version is 5.1.2600.2976


Author Comment

ID: 22868661
Downloaded, i'll patch it.
But started getting this problem from last one week.
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

LVL 22

Expert Comment

ID: 22869261
You can also update to SP3.
LVL 12

Expert Comment

ID: 22875258
xxdcmast is quite correct, this is the MS08-067 vulnerability being exploited and, in the cases of the event log entries failing causing the svchost.exe (probably the Server Service) to crash.

What you don't see is whether there were any successful attempts to exploit this vulnerability.  I'm not completely certain, but I think it unlikely that your Anti-Virus solution would detect and prevent such exploits and so you perhaps should assume that there was a successful exploit and that you may be running malware dropped by Trojan-Spy:W32/Gimmiv.A or Exploit.Win32.MS08-067.g

As well as patching your box I'd advise you to head to an online virus scanner of one of the companies who are currently detecting these exploits, such as
LVL 12

Expert Comment

ID: 22875264
By the way, are you using a firewall?

Author Comment

ID: 22875535
Its home PC. No Firewall. jahboite
LVL 12

Accepted Solution

jahboite earned 500 total points
ID: 22876084
If you are really not using a firewall and you are not behind a device that perfoms Network Address Translation (thereby preventing connections to your windows machine initiated by hosts on the internet) then you are exposing your computer to numerous threats from the internet - not just the MS08-067 worms.

I'd advise heading to , read the blurb before Proceeding and then perform an "All Service Ports" scan.  This will show you whether your public interface to the internet responds to connection attempts from the internet and any services that might be exposed.

For instance, if TCP port 445 is marked as Open then there's all sorts of information about your computer available to anybody that connects to that port and is also one of the ports used by the MS08-067 worms.

Author Closing Comment

ID: 31512720

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
For both online and offline retail, the cross-channel business is the most recent pattern in the B2C trade space.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question