Windows Vista and Server 2008 Services Optimization (with Batch Command Script Optimizer)

Name: Application Experience
Description: Processes application compatibility cache requests for applications as they are launched.
Comment: This service is required by application compatibility mode to run old and not compatible programs in Windows. If you have no such programs, this service is not required to start.
Default: Automatic
Recommendation: Manual

Name: Application Information
Description: Facilitates the running of interactive applications with additional administrative privileges. If this service is stopped, users will be unable to launch applications with the additional administrative privileges they may require to perform desired user tasks.
Comment: For old applications that requires admin rights to install. Not required to start unless there is old programs used. This service works with system UAC, which can stop unknown Trojan and virus from installing.
Recommendation: Manual

Name: Application Layer Gateway Service
Description:Provides support for 3rd party protocol plug-ins for Internet Connection Sharing
Comment: This service is used by old incompatible apps under compatibility mode. Disable the servicve is there is no such programs.
Default: Manual
Recommendation: Disabled

Name: Application Management
Description: Processes installation, removal, and enumeration requests for software deployed through Group Policy. If the service is disabled, users will be unable to install, remove, or enumerate software deployed through Group Policy. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Normally used for centralized management in big corporations, such as deliver patches and updates when log on in Active Directory. Not require for personal user.
Default: Manual
Recommendation: Disabled

Name: Background Intelligent Transfer Service
Description: Transfers files in the background using idle network bandwidth. If the service is disabled, then any applications that depend on BITS, such as Windows Update or MSN Explorer, will be unable to automatically download programs and other information.
Comment: Used by Windows Update to transfer patches and updates in the background. Can be disabled if not using Windows Update.
Default: Automatic (Delayed Start)
Recommendation: Disabled

Name: Base Filtering Engine
Description: The Base Filtering Engine (BFE) is a service that manages firewall and Internet Protocol security (IPsec) policies and implements user mode filtering. Stopping or disabling the BFE service will significantly reduce the security of the system. It will also result in unpredictable behavior in IPsec management and firewall applications.
Comment: A security related service normally used by firewall, wide area network (WAN), Internet Connection Sharing and other seldom used protocols.
Recommendation: Automatic

Name: Block Level Backup Engine Service
Description: Engine to perform block level backup and recovery of data.
Comment: Used by Windows Vista backup and recovery service, can be disabled.
Default: Manual
Recommendation: Disabled

Name: Certificate Propagation
Description: Propagates certificates from smart cards.
Comment: Required by smart card reader program, which may require by some company’s user to remotely logon to corporate network via VPN.
Default: Manual
Recommendation: Automatic

Name:CNG Key Isolation
Description: The CNG key isolation service is hosted in the LSA process. The service provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements.
Comment: If Wired AutoConfig and WLAN AutoConfig services are started, and configured to use EAP (Extensible Authentication Protocol), then this service will be used. User who is not using automatic configuration of wired and wireless network can turn off the service.
Default: Manual
Recommendation: Disabled

Name: COM+ Event System
Description: Supports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components. If the service is stopped, SENS will close and will not be able to provide logon and logoff notifications. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Some applications may require COM+ component, such as Optimize System from BootVis, and Event Viewer will show DCOM is not started if disabled when required.
Default: Automatic
Recommendation: Manual

Name: COM+ System Application
Description: Manages the configuration and tracking of Component Object Model (COM)+-based components. If the service is stopped, most COM+-based components will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Some applications developed will require COM+ ocmponents, which may even include IIS and .NET. Do not disable the service but can se to Manual to load it when required.
Recommendation: Manual

Name: Computer Browser
Description: Maintains an updated list of computers on the network and supplies this list to computers designated as browsers. If this service is stopped, this list will not be updated or maintained. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: If not browing Local Area Network (LAN), this service is not required. Other it’s good to enable the service as it maintains and updates list of computers on the network.
Default: Automatic
Recommendation: Disabled

Name: Cryptographic Services
Description: Provides four management services: Catalog Database Service, which confirms the signatures of Windows files and allows new programs to be installed; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; Automatic Root Certificate Update Service, which retrieves root certificates from Windows Update and enable scenarios such as SSL; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Protect and manage certificates, private keys and security catalogs in the system. Besides, when visiting some websites such as Windows Update, Microsoft websites, or when accessing DRM avalidation, this service is used to verify digital signature of Windows files, so do not disable this service.
Recommendation: Automatic

Name: Desktop Window Manager Session Manager
Description: Provides Desktop Window Manager startup and maintenance services
Comment: Windows Aero and Windows Flip 3D require this service.
Recommendation: Automatic

Name: DHCP Client
Description: Registers and updates IP addresses and DNS records for this computer. If this service is stopped, this computer will not receive dynamic IP addresses and DNS updates. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: The base service for Internet connectivity to get a dynamic IP address.
Recommendation: Automatic

Name: Diagnostic Policy Service
Description: The Diagnostic Policy Service enables problem detection, troubleshooting and resolution for Windows components. If this service is stopped, diagnostics will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Windows Vista or IE7 may occasionally pops up dialog box to ask if user want it to help finding the cause and resolution to the problem. However, 99% of the time it doesn’t help much to resolve the issue, can be disabled.
Default: Automatic
Recommendation: Disabled

Name: Diagnostic Service Host
Description: The Diagnostic Service Host service enables problem detection, troubleshooting and resolution for Windows components. If this service is stopped, some diagnostics will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Helping Diagnostic Policy Service for its tasks, will be started when DPS started, and can be disabled together with DPS.
Default: Manaul
Recommendation: Disabled

Name: Diagnostic System Host
Description: The Diagnostic System Host service enables problem detection, troubleshooting and resolution for Windows components. If this service is stopped, some diagnostics will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Similar to DPS and WdiServiceHost, can be disabled altogether.
Default: Manual
Recommendation: Disabled

Name: Distributed Link Tracking Client
Description: Maintains links between NTFS files within a computer or across computers in a network.
Comment: Required for system using NTFS file system.
Recommendation: Automatic

Name: Distributed Transaction Coordinator
Description: Coordinates transactions that span multiple resource managers, such as databases, message queues, and file systems. If this service is stopped, these transactions will not occur. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: A lot of applications such as SQL Server and Exchange BizTalk uses the server. Do not start the service unless needed, but do not disable it either.
Recommendation: Manual

Name: DNS Client
Description: The DNS Client service (dnscache) caches Domain Name System (DNS) names and registers the full computer name for this computer. If the service is stopped, DNS names will continue to be resolved. However, the results of DNS name queries will not be cached and the computer’s name will not be registered. If the service is disabled, any services that explicitly depend on it will fail to start.
Comment: Required for normal Internet browsing experience.
Recommendation: Automatic

Name: Extensible Authentication Protocol
Description: The Extensible Authentication Protocol (EAP) service provides network authentication in such scenarios as 802.1x wired and wireless, VPN, and Network Access Protection (NAP). EAP also provides application programming interfaces (APIs) that are used by network access clients, including wireless and VPN clients, during the authentication process. If you disable this service, this computer is prevented from accessing networks that require EAP authentication.
Comment: User not using 802.1x authentication, wireless or VPN client can stop it from loading with Windows, but do not disable it.
Recommendation: Manual

Name: Function Discovery Provider Host
Description: Host process for Function Discovery providers.
Comment: Related to PnP-X and SSDP.
Recommendation: Manual

Name: Function Discovery Resource Publication
Description: Publishes this computer and resources attached to this computer so they can be discovered over the network. If this service is stopped, network resources will no longer be published and they will not be discovered by other computers on the network.
Comment: Related to PnP-X and SSDP.
Default: Automatic
Recommendation: Manual

Name: Health Key and Certificate Management
Description: Provides X.509 certificate and key management services for the Network Access Protection Agent (NAPAgent). Enforcement technologies that use X.509 certificates may not function properly without this service.
Comment: A service for NAP to build Health Registration Authority mechanism.
Recommendation: Manual

Name: Human Interface Device Access
Description: Enables generic input access to Human Interface Devices (HID), which activates and maintains the use of predefined hot buttons on keyboards, remote controls, and other multimedia devices. If this service is stopped, hot buttons controlled by this service will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Requires for special function keys on keyboard, joystick and other devices to work. Disabled unless required.
Default: Manual
Recommendation: Disabled

Name: IKE and AuthIP IPsec Keying Modules
Description: The IKEEXT service hosts the Internet Key Exchange (IKE) and Authenticated Internet Protocol (AuthIP) keying modules. These keying modules are used for authentication and key exchange in Internet Protocol security (IPsec). Stopping or disabling the IKEEXT service will disable IKE and AuthIP key exchange with peer computers. IPsec is typically configured to use IKE or AuthIP; therefore, stopping or disabling the IKEEXT service might result in an IPsec failure and might compromise the security of the system. It is strongly recommended that you have the IKEEXT service running.
Comment: Primarily used for authentication purpose on VPN and other network environment.
Default: Automatic
Recommendation: Manual

Name: Interactive Services Detection
Description: Enables user notification of user input for interactive services, which enables access to dialogs created by interactive services when they appear. If this service is stopped, notifications of new interactive service dialogs will no longer function and there may no longer be access to interactive service dialogs. If this service is disabled, both notifications of and access to new interactive service dialogs will no longer function.
Comment: Maintain manual so that it will be started when required.
Recommendation: Manual

Name: Internet Connection Sharing (ICS)
Description: Provides network address translation, addressing, name resolution and/or intrusion prevention services for a home or small office network.
Comment: Not required for standalone user or those not sharing Internet connection with others.
Recommendation: Disabled

Name: IP Helper
Description: Provides automatic IPv6 connectivity over an IPv4 network. If this service is stopped, the machine will only have IPv6 connectivity if it is connected to a native IPv6 network.
Comment: Provides support for IPv6, which is not yet neccessary at this time.
Default: Automatic
Recommendation: Disabled

Name: IPsec Policy Agent
Description: Internet Protocol security (IPsec) supports network-level peer authentication, data origin authentication, data integrity, data confidentiality (encryption), and replay protection. This service enforces IPsec policies created through the IP Security Policies snap-in or the command-line tool “netsh ipsec”. If you stop this service, you may experience network connectivity issues if your policy requires that connections use IPsec. Also,remote management of Windows Firewall is not available when this service is stopped.
Comment: Some corporate network requires IPsec to provide secure connection on TCP/IP from client to server. In other cases, disable is recommended.
Default: Automatic
Recommendation: Disabled

Name: KtmRm for Distributed Transaction Coordinator
Description: Coordinates transactions between MSDTC and the Kernel Transaction Manager (KTM).
Comment: Mostly used by developers and programmers.
Default: Automatic (Delayed Start)
Recommendation: Disabled

Name: Link-Layer Topology Discovery Mapper
Description: Creates a Network Map, consisting of PC and device topology (connectivity) information, and metadata describing each PC and device. If this service is disabled, the Network Map will not function properly.
Comment: Provides LLTD technology to accurately display network location of LLTD-supported network devices.
Recommendation: Manual

Name: Microsoft .NET Framework NGEN v2.0.50727_X86
Description: Microsoft .NET Framework NGEN
Comment: Provides support for .NET FX3 and NGEN applications.
Recommendation: Manual

Name: Microsoft iSCSI Initiator Service
Description: Manages Internet SCSI (iSCSI) sessions from this computer to remote iSCSI target devices. If this service is stopped, this computer will not be able to login or access iSCSI targets. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Not required if local PC has no iSCSI device, and does not connect to remote iSCSI device.
Default: Manual
Recommendation: Disabled

Name: Microsoft Software Shadow Copy Provider
Description: Manages software-based volume shadow copies taken by the Volume Shadow Copy service. If this service is stopped, software-based volume shadow copies cannot be managed. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Required by Previous Versions, System Restore and other applications.
Recommendation: Manual

Name: Multimedia Class Scheduler
Description: Enables relative prioritization of work based on system-wide task priorities. This is intended mainly for multimedia applications. If this service is stopped, individual tasks resort to their default priority.
Comment: Primarily used to set priority for audio and video streams. If disable, may affect functionality of sound card. Set to Manual will also be launched automatically with Windows startup.
Recommendation: Automatic

Name: Netlogon
Description: Maintains a secure channel between this computer and the domain controller for authenticating users and services. If this service is stopped, the computer may not authenticate users and services and the domain controller cannot register DNS records. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Used to log on to Active Directory domain controller.
Recommendation: Manual

Name: Network Access Protection Agent
Description: Enables Network Access Protection (NAP) functionality on client computers.
Comment: Client for NAP protocol.
Default: Manual
Recommendation: Disabled

Name: Network Connections
Description: Manages objects in the Network and Dial-Up Connections folder, in which you can view both local area network and remote connections.
Comment: This service is almost unavoidable for user hook onto Internet. Used whenever accessing Network and Dial-Up Connections folder.
Default: Manual
Recommendation: Automatic

Name: Network List Service
Description: Identifies the networks to which the computer has connected, collects and stores properties for these networks, and notifies applications when these properties change.
Comment: Displays current wired and wireless network connections state and status.
Recommendation: Automatic

Name: Network Location Awareness
Description: Collects and stores configuration information for the network and notifies programs when this information is modified. If this service is stopped, configuration information might be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Provides enhanced support for user who uses multiple network or Internet connections. Normally started with Network Connections.
Recommendation: Automatic

Name: Network Store Interface Service
Description: This service delivers network notifications (e.g. interface addition/deleting etc) to user mode clients. Stopping this service will cause loss of network connectivity. If this service is disabled, any other services that explicitly depend on this service will fail to start.
Comment: Supporting service for NLA (Network Location Awareness) such as storing profile of each network. Normally has the same state with NLA.
Recommendation: Automatic

Name: Offline Files
Description: The Offline Files service performs maintenance activities on the Offline Files cache, responds to user logon and logoff events, implements the internals of the public API, and dispatches interesting events to those interested in Offline Files activities and changes in cache state.
Comment: Can be disabled if not going to store a cached offline copy of Internet files.
Default: Automatic
Recommendation: Disabled

Name: Parental Controls
Description: This service enables Windows Parental Controls on the system. If this service is not running, Parental controls will not work.
Comment: Primarily used to restrict children usage time, permitted or blocked websites and gaming usage time. For own PC, no restriction required.
Default: Manual
Recommendation: Disabled

Name: Peer Name Resolution Protocol
Description: Enables Serverless Peer Name Resolution over the Internet. If disabled, some Peer to Peer and Collaborative applications, such as Windows Meetings, may not function.
Comment: Can be disabled if not using P2P functionality of WCF.
Default: Manual
Recommendation: Disabled

Name: Peer Networking Grouping
Description: Provides Peer Networking Grouping services.
Comment: Can be disabled if not using P2P functionality of WCF.
Default: Manual
Recommendation: Disabled

Name: Peer Networking Identity Manager
Description: Provides Identity service for Peer Networking.
Comment: Can be disabled if not using P2P functionality of WCF.
Default: Manual
Recommendation: Disabled

Name: Performance Logs & Alerts
Description: Performance Logs and Alerts Collects performance data from local or remote computers based on preconfigured schedule parameters, then writes the data to a log or triggers an alert. If this service is stopped, performance information will not be collected. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Used by Event Viewer, Task Manager and other benchmarking utility.
Recommendation: Manual

Name: PnP-X IP Bus Enumerator
Description: The PnP-X bus enumerator service manages the virtual network bus. It discovers network connected devices using the SSDP/WS discovery protocols and gives them presence in PnP. If this service is stopped or disabled, presence of NCD devices will not be maintained in PnP. All pnpx based scenarios will stop functioning.
Comment: Part of Windows Connect Now (WCN), an extension to Plug and Play service, and used to support networked intelligent electronic device such as refrigerator and rice cooker to connect to PC.
Default: Manual
Recommendation: Disabled

Name: PNRP Machine Name Publication Service
Description: This service publishes a machine name using the Peer Name Resolution Protocol. Configuration is managed via the netsh context ‘p2p pnrp peer’
Comment: Used to resolve and publish a server name in P2P network, usually not required.
Default: Manual
Recommendation:Disabled

Name: Portable Device Enumerator Service
Description: Enforces group policy for removable mass-storage devices. Enables applications such as Windows Media Player and Image Import Wizard to transfer and synchronize content using removable mass-storage devices.
Comment: Used for Windows Media Player and portable media player such as MP3 player to synchronize content and time.
Default: Automatic
Recommendation: Manual

Name: Print Spooler
Description: Loads files to memory for later printing
Comment: Can be disabled if the system has no printer, or do not need to connect or emulate a local or remote printer.
Default: Automatic
Recommendation: Disabled

Name: Problem Reports and Solutions Control Panel Support
Description: This service provides support for viewing, sending and deletion of system-level problem reports for the Problem Reports and Solutions control panel.
Comment: From many user experience, the service can’t solve too many problems.
Recommendation: Manual

Name: Protected Storage
Description: Provides protected storage for sensitive data, such as passwords, to prevent access by unauthorized services, processes, or users.
Comment: Not very useful but keep for security purpose.
Recommendation: Manual

Name: Quality Windows Audio Video Experience
Description: Quality Windows Audio Video Experience (qWave) is a networking platform for Audio Video (AV) streaming applications on IP home networks. qWave enhances AV streaming performance and reliability by ensuring network quality-of-service (QoS) for AV applications. It provides mechanisms for admission control, run time monitoring and enforcement, application feedback, and traffic prioritization.
Comment: Used primarily to improve and enhance the transmission and quality of audio and video streaming media on IP network. Not many devices and applications support this protocol.
Default: Manual
Recommendation:Disabled

Name: ReadyBoost
Description: Provides support for improving system performance using ReadyBoost.
Comment: A new feature in Windows Vista, but performance boost is in doubt. Disable if not using ReadyBoost, especially for notebook user who is unlikely to plug in a USB key everywhere everytime.
Default: Automatic
Recommendation:Disabled

Name: Remote Access Auto Connection Manager
Description: Creates a connection to a remote network whenever a program references a remote DNS or NetBIOS name or address.
Comment: When computer connects to a remote DNS or NetBIOS address or name, a connection will be created. General ADSL and VPN services may require this service, and disable may cause connections unable to be established.
Recommendation: Manual

Name: Remote Access Connection Manager
Description: Manages dial-up and virtual private network (VPN) connections from this computer to the Internet or other remote networks. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: When establishing connections in VPN, ADSL and dial-up network, the service may be required.
Recommendation: Manual

Name: Remote Procedure Call (RPC) Locator
Description: Manages the RPC name service database.
Comment: Supplement RPC service. Can set to manual, but not recommended to disable it.
Recommendation: Manual

Name: Remote Registry
Description: Enables remote users to modify registry settings on this computer. If this service is stopped, the registry can be modified only by users on this computer. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: For standalone PC, not required, unless user is managing multiple computers.
Default: Manual
Recommendation: Disabled

Name: Routing and Remote Access
Description: Offers routing services to businesses in local area and wide area network environments.
Comment: Provide routing service.
Recommendation: Disabled

Name: Secondary Logon
Description: Enables starting processes under alternate credentials. If this service is stopped, this type of logon access will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Provides support for two users log on to a computer simultaneously. Personal user does not require it.
Default: Automatic
Recommendation: Disabled

Name:Security Accounts Manager
Description: The startup of this service signals other services that the Security Accounts Manager (SAM) is ready to accept requests. Disabling this service will prevent other services in the system from being notified when the SAM is ready, which may in turn cause those services to fail to start correctly. This service should not be disabled.
Comment: Security Accounts Manager for the system.
Recommendation: Automatic

Name: Security Center
Description: Monitors system security settings and configurations.
Comment: New security center in Windows Vista, which allows user to tweak security settings and view security protection status. Security Center is just a management interface, may not be necessary if other security services are already started, but it’s convenient.
Default: Automatic (Delayed Start)
Recommendation: Automatic

Name: Server
Description: Supports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Provides file, print and named-pipe sharing for the computer. Not required if not sharing anything, especially on stand-alone system.
Default: Automatic
Recommendation: Disabled

Name: Shell Hardware Detection
Description: Provides notifications for AutoPlay hardware events.
Comment: For user who doesn’t like the Auto-Play feature, set service to manual start and then the system won’t prompt any notification when user inserts or plugs in a USB flash drive or portable hard disk.
Recommendation: Automatic

Name: SL UI Notification Service
Description: Provides Software Licensing activation and notification.
Comment: Provides activation service for Windows Vista and related product together with Software Licensing. Disable it does not mean that no activation is required.
Recommendation: Manual

Name: Smart Card
Description: Manages access to smart cards read by this computer. If this service is stopped, this computer will be unable to read smart cards. If this service is disabled, any services that explicitly depend on it will fail to start.
Comment: Smart card may be required in some environment to login to company network or connect to VPN. Disable if not using smart card.
Default: Manual
Recommendation: Disabled

Name: Smart Card Removal Policy
Description: Allows the system to be configured to lock the user desktop upon smart card removal.
Comment: Used to lock down computer when removing the smart card. Otherwise, disable the service.
Default: Manual
Recommendation: Disabled

Pages: 1 2 3

Related Articles

• Tweak and Improve Windows Vista Performance with Vista Services Optimizer
• Script to Backup Current Start State (Startup Type) of Windows Services
• Show Current Working Folder or Directory Full Path in Batch Command Script
• Free Memory Optimizer to Tune-Up, Reduce and Lower RAM Usage
• TimerNuke Crack Free Download to Disable Activation of Windows 7 and Server 2008
• Easier Way to Take Ownership and Grant Access Files or Directories in Vista
• How to Disable or Enable Vista User Access Control in Command Prompt
• TimerNuke Uninstall and Removal Script for Windows 7 and Server 2008
• Registry Hack to Download and Install Windows Vista SP2 Pre-Beta Version 6.0.6002.16489
• Official Registry Hack Script to Install Windows Server 2008 and Vista SP2 Beta Build 16497 (CPP) via Windows Update

This entry was posted on Saturday, June 28th, 2008 at 2:13 am and is filed under Operating Systems. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.