Generally, there are three situations in which the above errors will occur.
1. This is a virus. When the general host process of Win32 service is opened, you will be prompted that there is a problem with the process.
Shut down the ""remote RR oceaudrecall(RPC) service unexpectedly, and then automatically restart the computer. Generally speaking, the virus will create a msblast.exe key value in the registry HKEY _ local _ machine \ software \ Microsoft \ Windows \ currentversion \ run, and will also place a Trojan horse in msblast.exe in the directory c:\windows\system32. The solution is as follows:
RPC vulnerability
Detailed description:
Recently, it has been found that some RPC's improper handling of malformed messages when using TCP/IP protocol to process information exchange has created a security loophole. The vulnerability affects the DCOM interface using RPC, which is used to process DCOM object activation requests (such as UNC paths) sent by client computers to the server. If an attacker successfully exploits this vulnerability, he will gain local system privileges and be able to run arbitrary commands on the system, such as installing programs, viewing or changing, deleting data or establishing an account with system administrator privileges.
An attack phenomenon that has been discovered:
The attacker creates a key named "msupdate" in the user registry HKEY _ local _ machine \ software \ Microsoft \ Windows \ current version \ running, and the key value is generally msblast.exeC:\windows\system32. A Trojan horse program from msblast.exe will be placed in this directory.
In addition, the attacker will restart and display an error message, such as "The general host process of Win32 service needs to be shut down due to a problem" and "The remote RR OceadureCall (RPC) service terminated unexpectedly and Windows must be restarted immediately".
It is suggested to download the corresponding patch from/security/security _ bulletins/ms03-026.asp. If it has been attacked, it is suggested to unplug the network cable first, end the msblast.exe process in the task manager, clear the corresponding entries in the registry, delete the Trojan horse program under system32, and finally patch it.
The second situation is that after the virus is eliminated, such a problem still occurs. In general, the registration information of IE components in the registry will be destroyed. The following methods can be used to solve this problem:
1。 Open the Run window in the Start menu, enter "regsvr32 actxprxy.dll" in it, and then "OK". Then an information dialog box "DLLRegisterserver in actxprxy.dll succeeded" will appear, and click OK again.
2 Open the Run window again and enter "REGSVR32 shdocvw.dll".
3 Open the Run window again and enter "REGSVR32 oleaut32.dll".
4 Open the Run window again and enter "REGSVR32 actxprxy.dll".
5 Open the Run window again and enter "REGSVR32 mshtml.dll".
6 Open the Run window again and enter "REGSVR32 msjava.dll".
7 Open the Run window again and enter "REGSVR32 browseui.dll".
8 Open the Run window again and enter "REGSVR32 urlmon.dll".
If the virus problem is eliminated, the general problem can be solved by completing the registration of the above IE component.
3. If the computer has a printer, it may be because the printer driver is not installed correctly, which will also cause this error. The solution is as follows:
Reinstall the printer driver.
Generally speaking, after the above three steps, the problem can be completely solved.
Feel that the virus is more likely, format the hard disk and reinstall the system, and don't connect to the network before installing anti-virus software. In addition, Kaspersky's antivirus works well.