| Event Id | 1009 |
| Source | W3SVC |
| Description | A process serving application pool DefaultAppPool terminated unexpectedly. The process ID was 2928. The process exit code was 0xc0000005. |
| Event Information | "According To Microsoft:" CAUSE: The AUTH_TYPE server variable is populated from data that is contained in an internal object. The object stores information about the user and about how the user was authenticated. If the AUTH_TYPE server variable is requested in a filter before the user is authenticated in Microsoft Internet Information Services (IIS), the pointer to that internal object is NULL, and an access violation occurs. RESOLUTION Hotfix information: A supported hotfix is now available from Microsoft, but it is only intended to correct the problem that is described in this article. Only apply it to systems that are experiencing this specific problem. This hotfix may receive additional testing. Therefore, if you are not severely affected by this problem, we recommend that you wait for the next Windows Server 2003 service pack that contains this hotfix. File information: The English version of this hotfix has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in coordinated universal time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time tool in Control Panel. |
| Reference Links | An access violation may occur when you use an ISAPI filter in IIS 6.0 |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.