To say again, Remote Procedure Call service is a critical vulnerability that you need to take care of.
The main indication of this is a 60 second shutdown counter just after connecting to the internet or "right after" an attack attempt. Many versions of Windows is affected, to include NT, 2000, XP and 2003. This affects computers directly connected to the internet and could cause the attacker to install code to do ANY sort of malicious activities. Exploits already exist! Upon examination of my firewall log files, I discovered that every two to five minutes, the vulnerable ports are being scanned. I have also included information on how you can temporarily stop the Remote Procedure Call service from automatically shutting down the computer while you attempt a resolution.