SlideShare uma empresa Scribd logo

Windows xp services

Transferir como DOCX, PDF
proser tech
proser tech

This document provides a list of standard Windows XP services along with their default status, description, and notes. It includes services related to networking, system events, file sharing, security, backups, updates, and more. The list gives the name, process, description, and notes on the default status of each service to help understand its purpose and whether it can be safely disabled.

EducaçãoTecnologiaNotícias e política
1 de 18
Windows XP Services A list of all the standard services [update: SP 2 defaults are shown in Green] Default ServiceNa Service Process Description Status & me (Key) notes Alerter Alerter Services.exe Distribute Manual. administrative May be [HKLMSYSTEM alerts to specific disabled if CurrentControlSet users or machines. the alerts ServicesAlerterPara are not meters] e.g. Performance needed. Monitor thresholds [HKLMSYSTEM are distributed as CurrentControlSet alerts. ServicesSysmonLog Log Requires the Queries<alertname>] Messenger and Workstation services to be started. Application ALG alg.exe Support for Internet Manual Layer Connection Gateway Sharing and the Service Internet Connection Firewall Application appmgt Services.exe or Installation Manual Manageme svchost.exe services nt (Add/Remove Programs) - Assign, Publish, and Remove. Automatic wuaUserv svchost.exe -k Enable the Automatic. Updates wugroup download and If the installation of service is critical Windows stopped, updates. the operating system can be
manually updated at the Windows Update Web site. Background BITS svchost.exe -k Transfer files using Automatic Intelligent BITSgroup idle network switch to Transfer bandwidth, manual if Service maintain file you have transfers through problems - network Q314862 disconnections and computer restarts. Clipbook Clipsrv Clipsrv.exe Provides support Disabled Server for the Clipbook Viewer, which allows the clipboard of the source machine to be accessed remotely. COM+ Event svchost.exe -k netsvcs Automatic Manual Event System distribution of System events to subscribing COM components. Computer Browser Services.exe Collects the names Automatic. Browser of NetBIOS resources on the If the network, creating a machine is list so that it can not participate as a connected master browser or to a LAN basic browser (one (stand- that takes part in alone), or browser elections). will not participate This maintained list as a of resources master (computers) is browser or displayed in take part in Network elections,
Neighborhood and then feel Server Manager. If free to disabled you can change the still map drives, but status to can't browse the manual (or whole network. disabled) This does not equate to disabling TCP/IP so internet browsing is still possible. Cryptograp CryptSvc svchost.exe Management of Automatic hic Services Certification Authority certificates. Driver Catalog Database, Protected Root and Key certificate Services. DCOM DcomLaunc svchost.exe Launch DCOM Automatic Server h services Process Launcher DHCP Dhcp Services.exe or Manage network Automatic Client svchost.exe configuration by On a registering and stand- updating IP alone addresses and machine: DNS names. Disable Distributed TrkWks Services.exe or Send notification of Automatic Link svchost.exe files moving Can be set Tracking between NTFS to manual Client volumes in a if you dont network domain. need this function. Distributed msdtc MSDTC.exe Coordinate Manual Transaction transactions that Can be set Coordinator are distributed to Disabled
across two or more if you dont databases, need this message queues, function. file systems, or other transaction protected resource managers. DNS Client Dnscache Services.exe Resolves and Automatic caches Domain Name System (DNS) names. Directory Replicator Lmrepl.exe Replicate specified Automatic Replicator files & folders (Server between Domain only) computers. Controllers The host is the need this export server, and to replicate the target the machines are Netlogon called import share. computers. Replication is configured under Server in the Control Panel. Error Ersvc svchost.exe Report errors back Automatic Reporting to Microsoft in If you Service Redmond. never want to report system crash info. to Microsoft set this to disabled. EventLog EventLog Services.exe Record System, Automatic Security, and Application Events. Viewed with the MMC Event Viewer (eventvwr.exe in NT).
FastUserSwitching Fast User Compatibility svchost.exe Enable multiple Manual Switching users to login to Compatibilit the same PC y simultaneously. Fax Service Fax faxsvc.exe Send and receive Automatic faxes or Manual Help and helpsvc svchost.exe Help and Support Automatic. Support Center If stopped the help system will stop working. Human HidServ svchost.exe Support for extra Disabled Interface keyboard 'hot Device buttons' and other Access multimedia input devices. HTTP SSL HTTPFilter svchost.exe Support for HTTPS Manual (Secure Socket Layer) websites such as banking and e-commerce. IMAPI CD- ImapiServic imapi.exe CD-Rom Burning Manual Burning e If you have COM problems Service changing to Automatic may help. Indexing cisvc cisvc.exe Index the contents Manual Service and properties of For files on local and improved remote computers. performanc [ RESOURCE e Disable HOG ] or Uninstall thru C.Panel add/remov e IPSEC PolicyAgent lsass.exe Manage IP security Automatic
Policy policy and starts May be Agent the changed to ISAKMP/Oakley Manual if (IKE) and the IP IPSec is security driver. not needed. License LicenseServ Llssrv.exe License tracking on If disabled Logging ice a server or DC then Service (Domain licensing (Server) Controller). status alerts will not be generated. Logical Disk Dmserver services.exe or Required by the Automatic Manager svchost.exe MMC Disk Management plug- in. Logical Disk Dmadmin dmadmin.exe /com Administrative Manual Manager service for disk Administrati management ve Service requests Message mqsvc.exe Message Queuing Queuing Message mqtgsvc.exe Message Queuing Queuing Triggers MS swprv dllhost.exe Microsoft Backup Manual Software Utility Disable if Shadow you never Copy use Provider Shadow Service Copy features. Messenger Messenger Services.exe Process the receipt Disabled or delivery of pop- vulnerabilit up messages sent y once via NET SEND. used to Not related to send pop- Windows up spam. Messenger
Network Netman svchost.exe -k netsvcs Manage objects in Manual Connection the Network and s Dial-Up Connections folder (LAN and remote connections.) Net Logon Netlogon Lsass.exe Network Automatic (Local Security Authentication: For stand- Authority Subsystem) maintains a synced alone domain directory machines database between never the PDC and connected BDC(s), handles to a authentication of domain set respective to Manual. accounts on the DCs, and authenticates domain accounts on networked machines. NetMeeting Nmnsrvc mnmsrvc.exe Allows authorized Manual. Remote people to remotely A good Desktop access your idea to Sharing Windows desktop Disable using NetMeeting. unless you plan to allow remote connection s. Network NetDDE Netdde.exe Support the Disabled DDE network transport of DDE (Dynamic Data Exchange) connections. Requires Network DDE DSDM to be started. See Clipbook service Network NetDDEdsd Netdde.exe Manage shared Disabled DDE DSDM m DDE conversations (from shares like:
computernamend de$). See Clipbook service NLA - nla svchost.exe Part of Internet Manual Network Connection Location Sharing (ICS) and Awareness the Internet Connection Firewall (ICF) Network xmlprov svchost.exe Manage XML Manual Provisioning configuration files Service on a domain basis NT LM NtLmSsp Services.exe Extends NT Manual Security security to Remote Support Procedure Call Provider (RPC) programs using various transports other than named pipes. RPC activity is quite common, and most RPC apps don't use named pipes. Performanc sysmonLog smlogsvc.exe Configure Manual. e Logs and performance logs May be Alerts (XP) and alerts. disabled if the alerts Alerts and are not Performanc needed. e Logs (Win 2K) Plug and PlugPlay Services.exe Plug and Play. Automatic Play Do not disable this service. Universal UPNPhost svchost.exe Device Host detect Manual Plug and and configure Play Host external UPnP devices. UPnP<>PnP
Portable WmdmPmS svchost.exe Retrieves the serial Manual Media N number of any Disable if Serial portable media you never Number player connected use DRM Service to this computer. music devices. Print Spooler Spoolsv.exe The NT printing Automatic - Spooler or (Spoolss.exe in NT4) subsystem. If you print Spooler documents . If no printing is ever done set to manual (or disabled) Restarting this service will cancel all pending print jobs. ProtectedStorage Protected Pstores.exe Encrypt and store Automatic. Storage secure info: SSL certificates, passwords for Outlook, Outlook Express, Profile Assistant, MS Wallet, and digitally signed S/MIME keys. QoS RSVP rsvp rsvp.exe -s Provide network Manual signaling and local traffic control setup functionality for QoS-aware programs and control applets. Remote Rasauto svchost.exe -k netsvcs Activates Manual Access automatic dial-up May be Auto when a URL link is disabled if
Connection clicked. the Manager machine or Required for some has no Remote but not all RAS, internet Access ADSL or Cable access. AutoDial connections. Manager Remote Rasman svchost.exe -k netsvcs Required for most Manual. Access but not all RAS, Required Connection ADSL or Cable for Internet Manager connections. Connection Sharing or accessing remote servers via RAS. Remote RDSessMgr sessmgr.exe Remote Desktop Manual Desktop Help Session May be Help Manager. disabled if Session RDP is Manager never used. Remote RpcSs svchost -k rpcss This RPC Automatic Procedure subsystem is Call (RPC) crucial to the Do not Service operations of any disable or RPC activities Remote taking place on a Many Procedure system (e.g. essential Call (RPC) DCOM) services are dependent on RPC. Remote RpcLocator Locator.exe Maintain the RPC Manual. Procedure name server Call (RPC) database, requires Locator the RPC service (below) to be started. Database of available server applications. Remote RemoteRegi regsvc.exe Allow remote Automatic
Registry stry registry A good Service (XP manipulation. idea to Pro only) disable this, unless you have some reason to allow remote registry editing. Removable Ntmssvc svchost.exe -k netsvcs Manage removable Manual. Storage media, drives, and libraries. RIP Listen for RIP To use the Listener announcements RIP (XP - from routers and Listener option) modify the routing service, table accordingly. your adjacent routers must support the RIP v1 protocol. You'll find the RIP Listener service under Add/Remo ve Windows Componen ts - Networking Services. Routing and RemoteAcc svchost.exe -k netsvcs Allow incoming Disabled Remote ess connections via Access dial in or VPN. (WAN Routing) Secondary secLogon services.exe or Enables starting Automatic Logon (Win svchost.exe processes under You may
XP) alternate want to RunAs (Win credentials. stop this 2K) service if you never use RunAs Security SamSs lsass.exe Stores security Automatic Accounts information for Manager local user (Win 2K) accounts. Security wscsvc svchost.exe Monitor system Automatic Center security settings You may and configurations. want to disable this if firewall and virus updates are controlled via other means. Server LanmanServ Services.exe Support for peer-to Automatic er peer file sharing, May be print sharing, and disabled if named pipe you dont sharing via SMB host file or services. print shares. (Admin$ shares) ShellHWDetection Shell svchost.exe CD Autoplay Automatic. Hardware Detection Smart Card ScardSrv SCardSvr.exe Manages and Manual controls access to If you a smart card never use inserted into a smart smart card reader cards, attached to the Disable computer. Smart Card ScardDrv SCardSvr.exe legacy smart card Removed Helper readers in XP SP2
SNMP Snmp snmp.exe Agents that Automatic Service monitor the activity (if installed) in network devices and report to the network console workstation. SSDP SSDPSRV svchost.exe Simple Service Manual Discovery Discovery Protocol. May be Service Enables discovery disabled if of UPnP devices on as is likely your home network you dont have any UPnP devices) System SENS svchost.exe -k netsvcs Track system Automatic. Event events such as Notification Windows logon, network, and power events. Notifiy COM+ Event System subscribers of these events. System srservice svchost.exe Creates system Automatic Restore snap shots. Service [ RESOURCE If the HOG ] machine's configurati on has been cloned/bac ked up - turn off System Restore in Control Panel, System. Task Schedule atsvc.exe or This service is Automatic Scheduler mstask.exe required to or Schedule schedule background tasks (run at a specific
date & time) Under NT it's a Resource Hog. Under XP it's used by some auto- tuning operations. TCP/IP lmHosts Services.exe Support for name Automatic NetBIOS resolution in a If not Helper Windows 2000 required or domain. may be set TCP/IP (Netbios/Wins) to manual. NetBIOS An alternative to Helper DNS lookup. Service Telephony TapiSrv Tapisrv.exe Telephony API Manual (TAPI) support for programs that control telephony devices and IP based voice connections. e.g unimodem modems. Telnet TlntSvr tlntsvr.exe Allows a remote Disabled (Win 2K) user to log on to Very the system and run insecure, console programs presents a using the security command line. risk when running. Terminal TermServic svchost.exe Required for Fast Manual Services e User Switching, If not Remote Desktop required and Remote may be Assistance Disabled Themes Themes svchost.exe XP Active Desktop Automatic Themes, and quick Set to launch toolbars Manual or [ RESOURCE Disabled if HOG ] you dont like
themes. UPS or UPS Ups.exe Support for an Manual Uninterrupti Uninteruptable Not every ble Power Power Supply UPS will Supply (UPS) physically need or connected to the use this machine. service. Universal UPNPhost svchost.exe Device Host detect Manual Plug and and configure Play Host external UPnP devices. UPnP<>PnP Upload uploadmgr svchost.exe Upload Manager. Removed Manager in XP SP2 Volume VSS vssvc.exe MS Backup - A Manual Shadow volume shadow If not Copy copy is a picture of required the volume at a may be particular moment disabled in time. That see MS means a computer Software can be backed up Shadow while files are open Copy and applications Provider running. Service WebClient WebClient svchost.exe Allow access to Automatic web-resident disk If not storage from an required ISP. WebDAV may be "internet disks" disabled such as Apple's iDisk. Windows AudioSrv svchost.exe Sound Driver Automatic Audio Note that disabling If no sound the sound driver card fitted won't stop sounds then from playing - you disable. just won't hear them. Windows SharedAcce svchost.exe -k netsvcs Network address Automatic. Firewall (XP ss translation, For better
SP2) addressing, and protection name resolution consider Internet services for all adding a Connection computers on your third party Firewall home network firewall. (XP) through a dial-up connection. Internet Connection Sharing (Win 2K) Windows stisvc svchost.exe Required for some Manual Image but not all Acquisition cameras, scanners, and digital video cameras. Windows MSIServer MsiExec.exe /V Install, repair and Manual Installer remove software according to instructions contained in .MSI files. Windows WinMgmt C:WINNTSystem32 WMI provides Automatic Manageme WBEMWinMgmt.exe system nt management Instrumenta information. tion Windows Wmi svchost.exe Provides systems Manual Manageme management nt information to and Instrumenta from drivers. tion Driver Extensions Windows W32time services.exe Update the Automatic Time computer clock by reference to an internet time source or a time server. Wireless WZCSVC svchost.exe Configure wireless Automatic
Zero network devices disable if Configuratio (802.11a/b/g). you don't n have any wireless devices. WMI WmiApSrv wmiapsrv.exe Collect Manual Performanc performance library e Adapter information. lanmanworkstation Workstation Services.exe Communications Automatic and network connections. Services dependent on this being started: Alerter, Messenger, and Net Logon. Before changing any of the defaults - use the links above to find what exactly the service does. The Elder Geek also has some good advice about services. It is inadvisable to disable a service without being aware of the consequences, always start by setting the service to manual, reboot and test for any problems. A service set to manual may be automatically restarted if another service is dependent on it. A service set to disabled will not restart even if it's required to boot the machine! Stopping or disabling a service will generally save a small amount of memory and will reduce the number of software interrupts (cpu message queue.) The main reason for tinkering with services is to harden the system against security vulnerabilities. Disable everything that you don't need or use - then any future problems with those services cannot affect the machine. To document all the services currently installed: SC QUERY state= all |findstr "DISPLAY_NAME STATE" >my_services.csv Some XP services communicate and send data directly to Microsoft, this is not generally something to lose sleep over. Managing the running of these services may be a consideration if confidentiality/anonymity is highly important to you. Removing a service completely
To delete a service, you may be tempted to hack the registry settings under (HKLM/SYSTEM/CurrentControlSet/Services) this is not a reliable or recommended method, far better is to use the SC command: SC delete NameofServiceTodelete Enable or Disable Ports Many services and applications rely on the use of a specific PORT - to determine if a particular port is enabled for use, review the list of Service names and port numbers held in the "services" file ('windowssystem32driversetcservices') Installing a good firewall is the easiest way to manage this. "The service we render to others is really the rent we pay for our room on this earth. It is obvious that man is himself a traveler; that the purpose of this world is not 'to have and to hold' but 'to give and serve.' There can be no other meaning." - Sir Wilfred T. Grenfell Related: SC - Service Control TASKLIST - List running tasks and services WinMSD - List running services ServiceStatus.ps1 - List all services (Powershell) Safe Mode - Press F8 during bootup to start with mimimal services running. Recovery - The Recovery Console WMIC SERVICE - WMI access to services DRIVERQUERY - display device drivers and properties (Resource Kit) DComCnfg - Disable/configure DCOM Microsoft.com - WinXP services - default settings Microsoft.com - Win2003 services - 138 page Word Doc Microsoft.com - Managing System Services.doc - 2003 The Elder Geek - Services Guide The Register - Part 1 & 2 - Review of Win XP Services Sysinternals - how to disable every service SecurityFocus - Securing Windows Services Wikipedia - Windows service Q137890 - SRVANY - create a User-Defined Service Q288129 - Grant users the right to manage services Q263201 - Default Processes Q244905 - How to disable a service at boot Q314056 - What is SvcHost Q825826 - Troubleshoot missing network connection icons

Recomendados

1556 a 08
1556 a 081556 a 08
1556 a 08
Lê Liêu
 
Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09
Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09
Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09
Theresa Cummings
 
Network Management in System Center 2012 SP1 - VMM
Network Management in System Center 2012 SP1 - VMM Network Management in System Center 2012 SP1 - VMM
Network Management in System Center 2012 SP1 - VMM
Microsoft TechNet - Belgium and Luxembourg
 
2008 Nov iVT Rock Star
2008 Nov iVT Rock Star2008 Nov iVT Rock Star
2008 Nov iVT Rock Star
MarkoElo
 
16. Computer Systems Basic Software 2
16. Computer Systems Basic Software 216. Computer Systems Basic Software 2
16. Computer Systems Basic Software 2
New Era University
 
Dell UPS | Power Management in the Virtualized World
Dell UPS | Power Management in the Virtualized WorldDell UPS | Power Management in the Virtualized World
Dell UPS | Power Management in the Virtualized World
Dell TechCenter
 
Daemons
DaemonsDaemons
Daemons
christina555
 
CSS Alarm Handler (BEAST) 2009
CSS Alarm Handler (BEAST) 2009CSS Alarm Handler (BEAST) 2009
CSS Alarm Handler (BEAST) 2009
Robert-Emmanuel Mayssat
 

Recomendados

1556 a 08
1556 a 081556 a 08
1556 a 08
Lê Liêu
 
Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09
Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09
Lit Pc Replacement Reimage Project Schedule Q3 Q4 Fy09
Theresa Cummings
 
Network Management in System Center 2012 SP1 - VMM
Network Management in System Center 2012 SP1 - VMM Network Management in System Center 2012 SP1 - VMM
Network Management in System Center 2012 SP1 - VMM
Microsoft TechNet - Belgium and Luxembourg
 
2008 Nov iVT Rock Star
2008 Nov iVT Rock Star2008 Nov iVT Rock Star
2008 Nov iVT Rock Star
MarkoElo
 
16. Computer Systems Basic Software 2
16. Computer Systems Basic Software 216. Computer Systems Basic Software 2
16. Computer Systems Basic Software 2
New Era University
 
Dell UPS | Power Management in the Virtualized World
Dell UPS | Power Management in the Virtualized WorldDell UPS | Power Management in the Virtualized World
Dell UPS | Power Management in the Virtualized World
Dell TechCenter
 
Daemons
DaemonsDaemons
Daemons
christina555
 
CSS Alarm Handler (BEAST) 2009
CSS Alarm Handler (BEAST) 2009CSS Alarm Handler (BEAST) 2009
CSS Alarm Handler (BEAST) 2009
Robert-Emmanuel Mayssat
 
新增Microsoft power point 簡報 (3)
新增Microsoft power point 簡報 (3)新增Microsoft power point 簡報 (3)
新增Microsoft power point 簡報 (3)
winging44
 
Homophones Lesson
Homophones LessonHomophones Lesson
Homophones Lesson
jgd7971
 
Ariel2 1
Ariel2 1Ariel2 1
Ariel2 1
Bakai Magdolna
 
Duchowski Scanpath Comparison Revisited
Duchowski Scanpath Comparison RevisitedDuchowski Scanpath Comparison Revisited
Duchowski Scanpath Comparison Revisited
Kalle
 
הרצליה עברית סופי
הרצליה עברית סופיהרצליה עברית סופי
הרצליה עברית סופי
haimkarel
 
Lindsey And Noah Slide1
Lindsey And Noah Slide1Lindsey And Noah Slide1
Lindsey And Noah Slide1
ncomee
 
BridgeAtMainALA2015
BridgeAtMainALA2015BridgeAtMainALA2015
BridgeAtMainALA2015
mel gooch
 
TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)
TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)
TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)
TDR d.o.o Rovinj
 
Hulu
HuluHulu
Hulu
natalie
 
Chamber presentation
Chamber presentationChamber presentation
Chamber presentation
Sandy Chamber
 
Digi Conv
Digi ConvDigi Conv
Digi Conv
Chauhan Saheb
 
Navarra1
Navarra1Navarra1
Navarra1
oscargaliza
 
Palestine – Israel
Palestine – IsraelPalestine – Israel
Palestine – Israel
haimkarel
 
Presentatie Lastafel
Presentatie LastafelPresentatie Lastafel
Presentatie Lastafel
Laspartners Multiweld BV
 
TEMA 2B GRAMMAR NOUNS
TEMA 2B GRAMMAR NOUNSTEMA 2B GRAMMAR NOUNS
TEMA 2B GRAMMAR NOUNS
SenoraAmandaWhite
 
M&A Integration Check Lists and Benchmarks From Our Most Successful
M&A Integration Check Lists and Benchmarks From Our Most SuccessfulM&A Integration Check Lists and Benchmarks From Our Most Successful
M&A Integration Check Lists and Benchmarks From Our Most Successful
peregoff
 
84780 recurso inconstitucionalidade contra reais decretos
84780 recurso inconstitucionalidade contra reais decretos84780 recurso inconstitucionalidade contra reais decretos
84780 recurso inconstitucionalidade contra reais decretos
oscargaliza
 
Muhammad yustan Curriculum Vitae
Muhammad yustan Curriculum VitaeMuhammad yustan Curriculum Vitae
Muhammad yustan Curriculum Vitae
Muhammad Yustan
 
news file
news filenews file
news file
rachit5609
 
AR VERB CONJUGATION
AR VERB CONJUGATIONAR VERB CONJUGATION
AR VERB CONJUGATION
SenoraAmandaWhite
 
Windows Xp Services That Can Be Disabled
Windows Xp Services That Can Be DisabledWindows Xp Services That Can Be Disabled
Windows Xp Services That Can Be Disabled
YAXXINE
 
Historia de los sistemas operativos antiguos
Historia de los sistemas operativos antiguosHistoria de los sistemas operativos antiguos
Historia de los sistemas operativos antiguos
Yisney Muñoz Cifuentes
 

Mais conteúdo relacionado

Destaque

新增Microsoft power point 簡報 (3)
新增Microsoft power point 簡報 (3)新增Microsoft power point 簡報 (3)
新增Microsoft power point 簡報 (3)
winging44
 
Duchowski Scanpath Comparison Revisited
Duchowski Scanpath Comparison RevisitedDuchowski Scanpath Comparison Revisited
Duchowski Scanpath Comparison Revisited
Kalle
 
הרצליה עברית סופי
הרצליה עברית סופיהרצליה עברית סופי
הרצליה עברית סופי
haimkarel
 
Lindsey And Noah Slide1
Lindsey And Noah Slide1Lindsey And Noah Slide1
Lindsey And Noah Slide1
ncomee
 
Chamber presentation
Chamber presentationChamber presentation
Chamber presentation
Sandy Chamber
 
Palestine – Israel
Palestine – IsraelPalestine – Israel
Palestine – Israel
haimkarel
 
M&A Integration Check Lists and Benchmarks From Our Most Successful
M&A Integration Check Lists and Benchmarks From Our Most SuccessfulM&A Integration Check Lists and Benchmarks From Our Most Successful
M&A Integration Check Lists and Benchmarks From Our Most Successful
peregoff
 
84780 recurso inconstitucionalidade contra reais decretos
84780 recurso inconstitucionalidade contra reais decretos84780 recurso inconstitucionalidade contra reais decretos
84780 recurso inconstitucionalidade contra reais decretos
oscargaliza
 
Muhammad yustan Curriculum Vitae
Muhammad yustan Curriculum VitaeMuhammad yustan Curriculum Vitae
Muhammad yustan Curriculum Vitae
Muhammad Yustan
 

Destaque (20)

新增Microsoft power point 簡報 (3)
新增Microsoft power point 簡報 (3)新增Microsoft power point 簡報 (3)
新增Microsoft power point 簡報 (3)
 
Homophones Lesson
Homophones LessonHomophones Lesson
Homophones Lesson
 
Ariel2 1
Ariel2 1Ariel2 1
Ariel2 1
 
Duchowski Scanpath Comparison Revisited
Duchowski Scanpath Comparison RevisitedDuchowski Scanpath Comparison Revisited
Duchowski Scanpath Comparison Revisited
 
הרצליה עברית סופי
הרצליה עברית סופיהרצליה עברית סופי
הרצליה עברית סופי
 
Lindsey And Noah Slide1
Lindsey And Noah Slide1Lindsey And Noah Slide1
Lindsey And Noah Slide1
 
BridgeAtMainALA2015
BridgeAtMainALA2015BridgeAtMainALA2015
BridgeAtMainALA2015
 
TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)
TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)
TDR - inovator i regionalni lider (Kanfanar, 17.06.2010.)
 
Hulu
HuluHulu
Hulu
 
Chamber presentation
Chamber presentationChamber presentation
Chamber presentation
 
Digi Conv
Digi ConvDigi Conv
Digi Conv
 
Navarra1
Navarra1Navarra1
Navarra1
 
Palestine – Israel
Palestine – IsraelPalestine – Israel
Palestine – Israel
 
Presentatie Lastafel
Presentatie LastafelPresentatie Lastafel
Presentatie Lastafel
 
TEMA 2B GRAMMAR NOUNS
TEMA 2B GRAMMAR NOUNSTEMA 2B GRAMMAR NOUNS
TEMA 2B GRAMMAR NOUNS
 
M&A Integration Check Lists and Benchmarks From Our Most Successful
M&A Integration Check Lists and Benchmarks From Our Most SuccessfulM&A Integration Check Lists and Benchmarks From Our Most Successful
M&A Integration Check Lists and Benchmarks From Our Most Successful
 
84780 recurso inconstitucionalidade contra reais decretos
84780 recurso inconstitucionalidade contra reais decretos84780 recurso inconstitucionalidade contra reais decretos
84780 recurso inconstitucionalidade contra reais decretos
 
Muhammad yustan Curriculum Vitae
Muhammad yustan Curriculum VitaeMuhammad yustan Curriculum Vitae
Muhammad yustan Curriculum Vitae
 
news file
news filenews file
news file
 
AR VERB CONJUGATION
AR VERB CONJUGATIONAR VERB CONJUGATION
AR VERB CONJUGATION
 

Semelhante a Windows xp services

Windows Xp Services That Can Be Disabled
Windows Xp Services That Can Be DisabledWindows Xp Services That Can Be Disabled
Windows Xp Services That Can Be Disabled
YAXXINE
 
Historia de los sistemas operativos antiguos
Historia de los sistemas operativos antiguosHistoria de los sistemas operativos antiguos
Historia de los sistemas operativos antiguos
Yisney Muñoz Cifuentes
 
Advanced virtualization techniques for FAUmachine
Advanced virtualization techniques for FAUmachineAdvanced virtualization techniques for FAUmachine
Advanced virtualization techniques for FAUmachine
webhostingguy
 
Virtual networking concepts
Virtual networking conceptsVirtual networking concepts
Virtual networking concepts
wangjiayong
 
4-Taxonomy of virtualization.docx
4-Taxonomy of virtualization.docx4-Taxonomy of virtualization.docx
4-Taxonomy of virtualization.docx
shruti533256
 
Operation system structure
Operation system structureOperation system structure
Operation system structure
brysan30
 
Obn211111 i manager n2000 bms introduction r011 issue 1.0
Obn211111 i manager n2000 bms introduction r011 issue 1.0Obn211111 i manager n2000 bms introduction r011 issue 1.0
Obn211111 i manager n2000 bms introduction r011 issue 1.0
Vìctor Isaac Herrera Pérez
 

Semelhante a Windows xp services (20)

Windows Xp Services That Can Be Disabled
Windows Xp Services That Can Be DisabledWindows Xp Services That Can Be Disabled
Windows Xp Services That Can Be Disabled
 
Historia de los sistemas operativos antiguos
Historia de los sistemas operativos antiguosHistoria de los sistemas operativos antiguos
Historia de los sistemas operativos antiguos
 
Advanced virtualization techniques for FAUmachine
Advanced virtualization techniques for FAUmachineAdvanced virtualization techniques for FAUmachine
Advanced virtualization techniques for FAUmachine
 
Virtualization
VirtualizationVirtualization
Virtualization
 
Ch3: Operating System Structure
Ch3: Operating System StructureCh3: Operating System Structure
Ch3: Operating System Structure
 
STORAGE DEVICES & OPERATING SYSTEM SERVICES
STORAGE DEVICES & OPERATING SYSTEM SERVICESSTORAGE DEVICES & OPERATING SYSTEM SERVICES
STORAGE DEVICES & OPERATING SYSTEM SERVICES
 
Live migration
Live migrationLive migration
Live migration
 
Lesson 9 Device Management
Lesson 9 Device ManagementLesson 9 Device Management
Lesson 9 Device Management
 
It
ItIt
It
 
Virtual networking concepts
Virtual networking conceptsVirtual networking concepts
Virtual networking concepts
 
4-Taxonomy of virtualization.docx
4-Taxonomy of virtualization.docx4-Taxonomy of virtualization.docx
4-Taxonomy of virtualization.docx
 
Operation system structure
Operation system structureOperation system structure
Operation system structure
 
Obn211111 i manager n2000 bms introduction r011 issue 1.0
Obn211111 i manager n2000 bms introduction r011 issue 1.0Obn211111 i manager n2000 bms introduction r011 issue 1.0
Obn211111 i manager n2000 bms introduction r011 issue 1.0
 
RemoteExec Presentation
RemoteExec PresentationRemoteExec Presentation
RemoteExec Presentation
 
Nos Windows
Nos WindowsNos Windows
Nos Windows
 
Ch2
Ch2Ch2
Ch2
 
Embedded system
Embedded systemEmbedded system
Embedded system
 
Ch1
Ch1Ch1
Ch1
 
Ch1: Operating System- Introduction
Ch1: Operating System- IntroductionCh1: Operating System- Introduction
Ch1: Operating System- Introduction
 
cloud basics.
cloud basics.cloud basics.
cloud basics.
 

Mais de proser tech

A z index of the windows cmd command line
A z index of the windows cmd command lineA z index of the windows cmd command line
A z index of the windows cmd command line
proser tech
 
Difference between ntfs and fat32
Difference between ntfs and fat32Difference between ntfs and fat32
Difference between ntfs and fat32
proser tech
 
SpN corporate PPt
SpN corporate PPtSpN corporate PPt
SpN corporate PPt
proser tech
 

Mais de proser tech (19)

New search engine Alternative for Google..
New search engine Alternative for Google..New search engine Alternative for Google..
New search engine Alternative for Google..
 
Windows profile
Windows profileWindows profile
Windows profile
 
Outlook Express
Outlook ExpressOutlook Express
Outlook Express
 
Exchange server
Exchange serverExchange server
Exchange server
 
Double routing
Double routingDouble routing
Double routing
 
Certification authority
Certification authorityCertification authority
Certification authority
 
Active directory domain and trust
Active directory domain and trustActive directory domain and trust
Active directory domain and trust
 
Vpn
VpnVpn
Vpn
 
Windows xp services
Windows xp servicesWindows xp services
Windows xp services
 
Windows profile
Windows profileWindows profile
Windows profile
 
Windows profile how do i
Windows profile how do iWindows profile how do i
Windows profile how do i
 
Network printer
Network printerNetwork printer
Network printer
 
A z index of the windows cmd command line
A z index of the windows cmd command lineA z index of the windows cmd command line
A z index of the windows cmd command line
 
Difference between ntfs and fat32
Difference between ntfs and fat32Difference between ntfs and fat32
Difference between ntfs and fat32
 
Excell shortcuts
Excell shortcutsExcell shortcuts
Excell shortcuts
 
Windows xp tips
Windows xp tipsWindows xp tips
Windows xp tips
 
Xlshortcuts07
Xlshortcuts07Xlshortcuts07
Xlshortcuts07
 
Pavan Gadey Marriage Invitation Card
Pavan Gadey Marriage Invitation CardPavan Gadey Marriage Invitation Card
Pavan Gadey Marriage Invitation Card
 
SpN corporate PPt
SpN corporate PPtSpN corporate PPt
SpN corporate PPt
 

Último

Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...
Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...
Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...
fonyou31
 
9548086042 for call girls in Indira Nagar with room service
9548086042 for call girls in Indira Nagar with room service9548086042 for call girls in Indira Nagar with room service
9548086042 for call girls in Indira Nagar with room service
discovermytutordmt
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Krashi Coaching
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
PECB
 

Último (20)

Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...
Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...
Ecosystem Interactions Class Discussion Presentation in Blue Green Lined Styl...
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdf
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
APM Welcome, APM North West Network Conference, Synergies Across Sectors
APM Welcome, APM North West Network Conference, Synergies Across SectorsAPM Welcome, APM North West Network Conference, Synergies Across Sectors
APM Welcome, APM North West Network Conference, Synergies Across Sectors
 
9548086042 for call girls in Indira Nagar with room service
9548086042 for call girls in Indira Nagar with room service9548086042 for call girls in Indira Nagar with room service
9548086042 for call girls in Indira Nagar with room service
 
Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104Nutritional Needs Presentation - HLTH 104
Nutritional Needs Presentation - HLTH 104
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
 
Q4-W6-Restating Informational Text Grade 3
Q4-W6-Restating Informational Text Grade 3Q4-W6-Restating Informational Text Grade 3
Q4-W6-Restating Informational Text Grade 3
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpin
 
Unit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptxUnit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptx
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
Presentation by Andreas Schleicher Tackling the School Absenteeism Crisis 30 ...
 
fourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingfourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writing
 
The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdf
 

Windows xp services

  • 1. Windows XP Services A list of all the standard services [update: SP 2 defaults are shown in Green] Default ServiceNa Service Process Description Status & me (Key) notes Alerter Alerter Services.exe Distribute Manual. administrative May be [HKLMSYSTEM alerts to specific disabled if CurrentControlSet users or machines. the alerts ServicesAlerterPara are not meters] e.g. Performance needed. Monitor thresholds [HKLMSYSTEM are distributed as CurrentControlSet alerts. ServicesSysmonLog Log Requires the Queries<alertname>] Messenger and Workstation services to be started. Application ALG alg.exe Support for Internet Manual Layer Connection Gateway Sharing and the Service Internet Connection Firewall Application appmgt Services.exe or Installation Manual Manageme svchost.exe services nt (Add/Remove Programs) - Assign, Publish, and Remove. Automatic wuaUserv svchost.exe -k Enable the Automatic. Updates wugroup download and If the installation of service is critical Windows stopped, updates. the operating system can be
  • 2. manually updated at the Windows Update Web site. Background BITS svchost.exe -k Transfer files using Automatic Intelligent BITSgroup idle network switch to Transfer bandwidth, manual if Service maintain file you have transfers through problems - network Q314862 disconnections and computer restarts. Clipbook Clipsrv Clipsrv.exe Provides support Disabled Server for the Clipbook Viewer, which allows the clipboard of the source machine to be accessed remotely. COM+ Event svchost.exe -k netsvcs Automatic Manual Event System distribution of System events to subscribing COM components. Computer Browser Services.exe Collects the names Automatic. Browser of NetBIOS resources on the If the network, creating a machine is list so that it can not participate as a connected master browser or to a LAN basic browser (one (stand- that takes part in alone), or browser elections). will not participate This maintained list as a of resources master (computers) is browser or displayed in take part in Network elections,
  • 3. Neighborhood and then feel Server Manager. If free to disabled you can change the still map drives, but status to can't browse the manual (or whole network. disabled) This does not equate to disabling TCP/IP so internet browsing is still possible. Cryptograp CryptSvc svchost.exe Management of Automatic hic Services Certification Authority certificates. Driver Catalog Database, Protected Root and Key certificate Services. DCOM DcomLaunc svchost.exe Launch DCOM Automatic Server h services Process Launcher DHCP Dhcp Services.exe or Manage network Automatic Client svchost.exe configuration by On a registering and stand- updating IP alone addresses and machine: DNS names. Disable Distributed TrkWks Services.exe or Send notification of Automatic Link svchost.exe files moving Can be set Tracking between NTFS to manual Client volumes in a if you dont network domain. need this function. Distributed msdtc MSDTC.exe Coordinate Manual Transaction transactions that Can be set Coordinator are distributed to Disabled
  • 4. across two or more if you dont databases, need this message queues, function. file systems, or other transaction protected resource managers. DNS Client Dnscache Services.exe Resolves and Automatic caches Domain Name System (DNS) names. Directory Replicator Lmrepl.exe Replicate specified Automatic Replicator files & folders (Server between Domain only) computers. Controllers The host is the need this export server, and to replicate the target the machines are Netlogon called import share. computers. Replication is configured under Server in the Control Panel. Error Ersvc svchost.exe Report errors back Automatic Reporting to Microsoft in If you Service Redmond. never want to report system crash info. to Microsoft set this to disabled. EventLog EventLog Services.exe Record System, Automatic Security, and Application Events. Viewed with the MMC Event Viewer (eventvwr.exe in NT).
  • 5. FastUserSwitching Fast User Compatibility svchost.exe Enable multiple Manual Switching users to login to Compatibilit the same PC y simultaneously. Fax Service Fax faxsvc.exe Send and receive Automatic faxes or Manual Help and helpsvc svchost.exe Help and Support Automatic. Support Center If stopped the help system will stop working. Human HidServ svchost.exe Support for extra Disabled Interface keyboard 'hot Device buttons' and other Access multimedia input devices. HTTP SSL HTTPFilter svchost.exe Support for HTTPS Manual (Secure Socket Layer) websites such as banking and e-commerce. IMAPI CD- ImapiServic imapi.exe CD-Rom Burning Manual Burning e If you have COM problems Service changing to Automatic may help. Indexing cisvc cisvc.exe Index the contents Manual Service and properties of For files on local and improved remote computers. performanc [ RESOURCE e Disable HOG ] or Uninstall thru C.Panel add/remov e IPSEC PolicyAgent lsass.exe Manage IP security Automatic
  • 6. Policy policy and starts May be Agent the changed to ISAKMP/Oakley Manual if (IKE) and the IP IPSec is security driver. not needed. License LicenseServ Llssrv.exe License tracking on If disabled Logging ice a server or DC then Service (Domain licensing (Server) Controller). status alerts will not be generated. Logical Disk Dmserver services.exe or Required by the Automatic Manager svchost.exe MMC Disk Management plug- in. Logical Disk Dmadmin dmadmin.exe /com Administrative Manual Manager service for disk Administrati management ve Service requests Message mqsvc.exe Message Queuing Queuing Message mqtgsvc.exe Message Queuing Queuing Triggers MS swprv dllhost.exe Microsoft Backup Manual Software Utility Disable if Shadow you never Copy use Provider Shadow Service Copy features. Messenger Messenger Services.exe Process the receipt Disabled or delivery of pop- vulnerabilit up messages sent y once via NET SEND. used to Not related to send pop- Windows up spam. Messenger
  • 7. Network Netman svchost.exe -k netsvcs Manage objects in Manual Connection the Network and s Dial-Up Connections folder (LAN and remote connections.) Net Logon Netlogon Lsass.exe Network Automatic (Local Security Authentication: For stand- Authority Subsystem) maintains a synced alone domain directory machines database between never the PDC and connected BDC(s), handles to a authentication of domain set respective to Manual. accounts on the DCs, and authenticates domain accounts on networked machines. NetMeeting Nmnsrvc mnmsrvc.exe Allows authorized Manual. Remote people to remotely A good Desktop access your idea to Sharing Windows desktop Disable using NetMeeting. unless you plan to allow remote connection s. Network NetDDE Netdde.exe Support the Disabled DDE network transport of DDE (Dynamic Data Exchange) connections. Requires Network DDE DSDM to be started. See Clipbook service Network NetDDEdsd Netdde.exe Manage shared Disabled DDE DSDM m DDE conversations (from shares like:
  • 8. computernamend de$). See Clipbook service NLA - nla svchost.exe Part of Internet Manual Network Connection Location Sharing (ICS) and Awareness the Internet Connection Firewall (ICF) Network xmlprov svchost.exe Manage XML Manual Provisioning configuration files Service on a domain basis NT LM NtLmSsp Services.exe Extends NT Manual Security security to Remote Support Procedure Call Provider (RPC) programs using various transports other than named pipes. RPC activity is quite common, and most RPC apps don't use named pipes. Performanc sysmonLog smlogsvc.exe Configure Manual. e Logs and performance logs May be Alerts (XP) and alerts. disabled if the alerts Alerts and are not Performanc needed. e Logs (Win 2K) Plug and PlugPlay Services.exe Plug and Play. Automatic Play Do not disable this service. Universal UPNPhost svchost.exe Device Host detect Manual Plug and and configure Play Host external UPnP devices. UPnP<>PnP
  • 9. Portable WmdmPmS svchost.exe Retrieves the serial Manual Media N number of any Disable if Serial portable media you never Number player connected use DRM Service to this computer. music devices. Print Spooler Spoolsv.exe The NT printing Automatic - Spooler or (Spoolss.exe in NT4) subsystem. If you print Spooler documents . If no printing is ever done set to manual (or disabled) Restarting this service will cancel all pending print jobs. ProtectedStorage Protected Pstores.exe Encrypt and store Automatic. Storage secure info: SSL certificates, passwords for Outlook, Outlook Express, Profile Assistant, MS Wallet, and digitally signed S/MIME keys. QoS RSVP rsvp rsvp.exe -s Provide network Manual signaling and local traffic control setup functionality for QoS-aware programs and control applets. Remote Rasauto svchost.exe -k netsvcs Activates Manual Access automatic dial-up May be Auto when a URL link is disabled if
  • 10. Connection clicked. the Manager machine or Required for some has no Remote but not all RAS, internet Access ADSL or Cable access. AutoDial connections. Manager Remote Rasman svchost.exe -k netsvcs Required for most Manual. Access but not all RAS, Required Connection ADSL or Cable for Internet Manager connections. Connection Sharing or accessing remote servers via RAS. Remote RDSessMgr sessmgr.exe Remote Desktop Manual Desktop Help Session May be Help Manager. disabled if Session RDP is Manager never used. Remote RpcSs svchost -k rpcss This RPC Automatic Procedure subsystem is Call (RPC) crucial to the Do not Service operations of any disable or RPC activities Remote taking place on a Many Procedure system (e.g. essential Call (RPC) DCOM) services are dependent on RPC. Remote RpcLocator Locator.exe Maintain the RPC Manual. Procedure name server Call (RPC) database, requires Locator the RPC service (below) to be started. Database of available server applications. Remote RemoteRegi regsvc.exe Allow remote Automatic
  • 11. Registry stry registry A good Service (XP manipulation. idea to Pro only) disable this, unless you have some reason to allow remote registry editing. Removable Ntmssvc svchost.exe -k netsvcs Manage removable Manual. Storage media, drives, and libraries. RIP Listen for RIP To use the Listener announcements RIP (XP - from routers and Listener option) modify the routing service, table accordingly. your adjacent routers must support the RIP v1 protocol. You'll find the RIP Listener service under Add/Remo ve Windows Componen ts - Networking Services. Routing and RemoteAcc svchost.exe -k netsvcs Allow incoming Disabled Remote ess connections via Access dial in or VPN. (WAN Routing) Secondary secLogon services.exe or Enables starting Automatic Logon (Win svchost.exe processes under You may
  • 12. XP) alternate want to RunAs (Win credentials. stop this 2K) service if you never use RunAs Security SamSs lsass.exe Stores security Automatic Accounts information for Manager local user (Win 2K) accounts. Security wscsvc svchost.exe Monitor system Automatic Center security settings You may and configurations. want to disable this if firewall and virus updates are controlled via other means. Server LanmanServ Services.exe Support for peer-to Automatic er peer file sharing, May be print sharing, and disabled if named pipe you dont sharing via SMB host file or services. print shares. (Admin$ shares) ShellHWDetection Shell svchost.exe CD Autoplay Automatic. Hardware Detection Smart Card ScardSrv SCardSvr.exe Manages and Manual controls access to If you a smart card never use inserted into a smart smart card reader cards, attached to the Disable computer. Smart Card ScardDrv SCardSvr.exe legacy smart card Removed Helper readers in XP SP2
  • 13. SNMP Snmp snmp.exe Agents that Automatic Service monitor the activity (if installed) in network devices and report to the network console workstation. SSDP SSDPSRV svchost.exe Simple Service Manual Discovery Discovery Protocol. May be Service Enables discovery disabled if of UPnP devices on as is likely your home network you dont have any UPnP devices) System SENS svchost.exe -k netsvcs Track system Automatic. Event events such as Notification Windows logon, network, and power events. Notifiy COM+ Event System subscribers of these events. System srservice svchost.exe Creates system Automatic Restore snap shots. Service [ RESOURCE If the HOG ] machine's configurati on has been cloned/bac ked up - turn off System Restore in Control Panel, System. Task Schedule atsvc.exe or This service is Automatic Scheduler mstask.exe required to or Schedule schedule background tasks (run at a specific
  • 14. date & time) Under NT it's a Resource Hog. Under XP it's used by some auto- tuning operations. TCP/IP lmHosts Services.exe Support for name Automatic NetBIOS resolution in a If not Helper Windows 2000 required or domain. may be set TCP/IP (Netbios/Wins) to manual. NetBIOS An alternative to Helper DNS lookup. Service Telephony TapiSrv Tapisrv.exe Telephony API Manual (TAPI) support for programs that control telephony devices and IP based voice connections. e.g unimodem modems. Telnet TlntSvr tlntsvr.exe Allows a remote Disabled (Win 2K) user to log on to Very the system and run insecure, console programs presents a using the security command line. risk when running. Terminal TermServic svchost.exe Required for Fast Manual Services e User Switching, If not Remote Desktop required and Remote may be Assistance Disabled Themes Themes svchost.exe XP Active Desktop Automatic Themes, and quick Set to launch toolbars Manual or [ RESOURCE Disabled if HOG ] you dont like
  • 15. themes. UPS or UPS Ups.exe Support for an Manual Uninterrupti Uninteruptable Not every ble Power Power Supply UPS will Supply (UPS) physically need or connected to the use this machine. service. Universal UPNPhost svchost.exe Device Host detect Manual Plug and and configure Play Host external UPnP devices. UPnP<>PnP Upload uploadmgr svchost.exe Upload Manager. Removed Manager in XP SP2 Volume VSS vssvc.exe MS Backup - A Manual Shadow volume shadow If not Copy copy is a picture of required the volume at a may be particular moment disabled in time. That see MS means a computer Software can be backed up Shadow while files are open Copy and applications Provider running. Service WebClient WebClient svchost.exe Allow access to Automatic web-resident disk If not storage from an required ISP. WebDAV may be "internet disks" disabled such as Apple's iDisk. Windows AudioSrv svchost.exe Sound Driver Automatic Audio Note that disabling If no sound the sound driver card fitted won't stop sounds then from playing - you disable. just won't hear them. Windows SharedAcce svchost.exe -k netsvcs Network address Automatic. Firewall (XP ss translation, For better
  • 16. SP2) addressing, and protection name resolution consider Internet services for all adding a Connection computers on your third party Firewall home network firewall. (XP) through a dial-up connection. Internet Connection Sharing (Win 2K) Windows stisvc svchost.exe Required for some Manual Image but not all Acquisition cameras, scanners, and digital video cameras. Windows MSIServer MsiExec.exe /V Install, repair and Manual Installer remove software according to instructions contained in .MSI files. Windows WinMgmt C:WINNTSystem32 WMI provides Automatic Manageme WBEMWinMgmt.exe system nt management Instrumenta information. tion Windows Wmi svchost.exe Provides systems Manual Manageme management nt information to and Instrumenta from drivers. tion Driver Extensions Windows W32time services.exe Update the Automatic Time computer clock by reference to an internet time source or a time server. Wireless WZCSVC svchost.exe Configure wireless Automatic
  • 17. Zero network devices disable if Configuratio (802.11a/b/g). you don't n have any wireless devices. WMI WmiApSrv wmiapsrv.exe Collect Manual Performanc performance library e Adapter information. lanmanworkstation Workstation Services.exe Communications Automatic and network connections. Services dependent on this being started: Alerter, Messenger, and Net Logon. Before changing any of the defaults - use the links above to find what exactly the service does. The Elder Geek also has some good advice about services. It is inadvisable to disable a service without being aware of the consequences, always start by setting the service to manual, reboot and test for any problems. A service set to manual may be automatically restarted if another service is dependent on it. A service set to disabled will not restart even if it's required to boot the machine! Stopping or disabling a service will generally save a small amount of memory and will reduce the number of software interrupts (cpu message queue.) The main reason for tinkering with services is to harden the system against security vulnerabilities. Disable everything that you don't need or use - then any future problems with those services cannot affect the machine. To document all the services currently installed: SC QUERY state= all |findstr "DISPLAY_NAME STATE" >my_services.csv Some XP services communicate and send data directly to Microsoft, this is not generally something to lose sleep over. Managing the running of these services may be a consideration if confidentiality/anonymity is highly important to you. Removing a service completely
  • 18. To delete a service, you may be tempted to hack the registry settings under (HKLM/SYSTEM/CurrentControlSet/Services) this is not a reliable or recommended method, far better is to use the SC command: SC delete NameofServiceTodelete Enable or Disable Ports Many services and applications rely on the use of a specific PORT - to determine if a particular port is enabled for use, review the list of Service names and port numbers held in the "services" file ('windowssystem32driversetcservices') Installing a good firewall is the easiest way to manage this. "The service we render to others is really the rent we pay for our room on this earth. It is obvious that man is himself a traveler; that the purpose of this world is not 'to have and to hold' but 'to give and serve.' There can be no other meaning." - Sir Wilfred T. Grenfell Related: SC - Service Control TASKLIST - List running tasks and services WinMSD - List running services ServiceStatus.ps1 - List all services (Powershell) Safe Mode - Press F8 during bootup to start with mimimal services running. Recovery - The Recovery Console WMIC SERVICE - WMI access to services DRIVERQUERY - display device drivers and properties (Resource Kit) DComCnfg - Disable/configure DCOM Microsoft.com - WinXP services - default settings Microsoft.com - Win2003 services - 138 page Word Doc Microsoft.com - Managing System Services.doc - 2003 The Elder Geek - Services Guide The Register - Part 1 & 2 - Review of Win XP Services Sysinternals - how to disable every service SecurityFocus - Securing Windows Services Wikipedia - Windows service Q137890 - SRVANY - create a User-Defined Service Q288129 - Grant users the right to manage services Q263201 - Default Processes Q244905 - How to disable a service at boot Q314056 - What is SvcHost Q825826 - Troubleshoot missing network connection icons