Jason-Saggers.com

How I have my services

This list I have compiled from my knowledge and personal experience. Most of the services I have disabled below I find are pointless for 99% of home users and the others as stated below are either set to manual or automatic. The main 3 advantages of disabling services is firstly for security, secondly purely for the fact that if you disable a service it wont load at startup or be running in the background and thirdly your your system will feal alot smother and responsive (or so one would think). I know most
people I talk to about
setting up or tweaking a PC dont really care about services but I think it is a big issue

(please note that these services I have below are with windows x64 but I have noticed that they are the same (or close to) for Windows XP Home and Pro as well

The 4 services below are ones that I highly recommended you disable as they are major security threats for your machine

The service’s below are how I have the services on my system.

Alerter: Disabled	Notifies users of administrative alerts. I think this is a useless services
Application Layer Gateway: Disabled	Used with internet connection sharing (ICS) so if you don’t use ICS then kill this one or at least set it to manual
Application Management: Manual	Used when you modify a file in add remove programs section. Setting of manual is fine and if windows needs tis service it will load it
Automatic updates: Disabled	Contacts Microsoft’s web site to see if there are any updates available for your computer (in internet explorer just click tools/windows update and visit the site manually) I actually prefer too use the autopatcher application my self
Background Intelligent Transfer: Disabled	Transfers files in the background using idle network bandwidth, windows update needs this one. If you use windows update windows will load this one when it is needed and then unload it when it’s done. I don’t use windows update so I have this service disabled
Clipbook: Disabled	Used to store information when you cut and paste things over a network from say one machine to your machine (has nothing to do with normal windows cut and paste) I have this disabled and have no problems cutting, pasting or coping over a network
COM+ Event System: Manual	I don’t know a lot about this so I just set it to manual.What microsoft say ” Supports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components”
COM+ System Application: Manual	I have this set to manual and if windows needs this service it will load it. What microsoft say “Manages the configuration and tracking of Component Object Model (COM)+-based components“
Computer Browser: Manual	Basically it keeps track of your computers on the network. (If you have no network or dont visit lans etc then you could disable this service or just to be safe set it to manual)
Cryptographic Services: Automatic	This is a major windows service so leave it alone. Microsoft says “Provides three management services: Catalog Database Service, which confirms the signatures of Windows files; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; and Key Service, which helps enrol this computer for certificates” Also to do with uncertified driver notifications
DCOM Server Process Launcher: Automatic	Seems to be need by windows so I leave it alone. Simple really
DHCP Client: Automatic	To do with dynamic IP address so you can connect to the internet, most cable and dsl connections need this so leave it at automatic or at the very least set it to manual. Upto you really
Distributed Link Tracking Client: Manual	Maintains links between NTFS files from one volume to another on your computer or across a domain. To do with damains, databases, NTFS etc. Bascically keeps links across machines upto date and also keeps databases over a network up to date, tracks the creation and movement of linked files across NTFS-formatted volumes and servers, more info here
Distributed Transaction Coordinator: Disabled	Similar to the above. More of a service for servers and workstations I would think than the home user. Coordinates databases, message queues/queing and file systems that span multiple resource managers
DNS Client: Automatic	Microsoft says “Resolves and caches Domain Name System (DNS) names for this computer.” You’ll normally get DNS errors if you touch this one so leave it at automatic
Error Reporting Service: Disabled	If there is a error this will contact microsoft about the problem. I think it is a security/privacy breach. Disable this service. (Also disable error reporting in system properties)
Event Logs: Automatic	This service can be stopped but it is used by event viewer to veis system/app problems.EDIT: Enables event log messages issued by Windows-based programs and components to be viewed in Event Viewer
Fast User Switching Compatibility: Manual	Just as the name says really. I have it set to manual (if you disable this you will loose the ability to login via the welcome screen and also loose the ability to switch between users)
Help and Support: Disabled	This service is normally set to automatic and I have switched it to disabled as I don’t use windows help (I prefer to use google)
HID Input: Manual	This is surpose to do with the multimedia items such as remotes and the multimedia key’s along the top off most keyboards (I have disabled this one and my multimedia keys on my keyboard still work fine) So just in case I have this set to manual and if this service is needed windows will load
HTTP SSL: Automatic	To do with hypertext transfer protocol (HTTPS) and Secure Socket Layer (SSL) in web sites so set it to automatic
IMAPI CD-Burning COM Service: Disabled	This is the windows built it cd burning process and I recommended that you disable it because most people use other burning software like nero for example (disabling this service will not affect other burning programs)
Indexing service: Disabled	I find this to be a useless services (disable it in the drive properties on each hdd first) then disable this. I’t indexes your files for faster searching. useless if you ask me. (I have noticed my system and hdd to be a lot faster with this service disabled/off)
IPSEC: Manual	(short for IP Security) A host authentication device used with data transfer and encryption operations on a domain. (a server or workstation service maybe) I really don’t think this is needed for the home user so I have it set to manual just to be safe. (EDITt: To do with managing IP security policies etc)
Logical Disk Manager: Automatic	Really just as microsoft says “Detects and monitors new hard disk drives and sends disk volume information to Logical Disk Manager Administrative Service for configuration.” So its essential for hdd operation
Logical Disk Manager Administrative: Manual	Really as the name states (works with the above service) windows has this one is set to manual as it is only neede when you a managing hdd’s (setting up new hdd’s etc)
Machine Debug Manager: Disabled	Used for local and remote debugging for visual studio debuggers. So unless you are one of these then disable this. I think this is also needed for other visual studio things also (I don’t use these so I have it disabled)EDIT: I have just noticed that this no longer seems to be in my services list, very strange?
Messenger services: Disabled	This should be all ready disabled when you install sp2 but just incase its not I highly recommend that you disable it (it can cause alot of popups with advertising for example) this has nothing to do with the messenger IM chat program that you use (messenger live for example)
MS Software Shadow Copy Provider: Disabled	Relates to the microsoft backup program, so if you don’t use the microsoft backup program then disable this and if you are unsure then set it to manual (not sure if other non microsoft backup programs need this or not, so if you use other backup software and are unsure then set this to manual just to be safe)
Net Logon: Disabled	Domain Authentication, used when you log into the Domain. Since I dont do that I have it disabled
Network Connections: Automatic	It controls the network and your ability to connect to the internet via dial-up. So unless you want to loose your network then leave this one alone
Network dde: Disabled	A pretty useless service I find. Short description is that it is used in conjunction with Network DDE DSDM below and is used for conversations between applications running over a network (between a server and client for example) As I have said a few times if you are a home user I doubt you will need this enabled
Network dde dsdm: Disabled	Also a pretty useless service (I have this and the above one disabled and have had no problems with windows or networking) Used in conjuction with the above and also a pretty useless service for the home user
Network location awareness NLA: Disabled	This is only used if you use internet connection sharing. I have it disabled because I use a router
NT LM Security Support Provider: Disabled	Provides support for Telnet and Message Queuing (again pretty pointless for the average home user) and no its nothing to do with messenger etc
Performance logs and alerts: Disabled	Collects performance related data to store it in a log or triggers an alert. (kinda pointless if you ask me) unless you really find that kinda information usefull
Plug and Play: Automatic	Used for the automatic detection and configuration of new hardware. Unless you want to screw up your system then I suggest you leave this one to automatic
Portable Media Serial Number: Manual	This service is needed for portable media players etc (mp3 players for example) and since I dont own such a device I have it switched to manual. Allthought I could actually set it to disabled.EDIT: The reason I have it to manual is because I have family and friends that come over with such devices
Print Spooler: Automatic	Turn this off and you loose you printer. Dont have a printer then set it to manual and all will be good. (I have a printer so I leave it to automatic)
Protected Storage: Manual	Microsoft says “Provides protected storage for sensitive data, such as private keys, to prevent access by unauthorized services, processes, or users.” class=”Apple-converted-space”> Basically to do with passwords and encrytion data etc. Also outlook users this and if you have is disabled it will ask for a password all the time, a setting of manual should be fine
QOS RSVP: Disabled	I have this disabled and have no problems with anything. (Resource Reservation Protocol – RSVP) Some people say that this can use upto 20% of your network/internet bandwidth but I don’t think that is true) Apperantly provides some type of load balancing that shifts bandwidth between applications where it’s most needed. personally I dont think it does any thing and have never had any problems with programs sharing the bandwidth. Upto you really.EDIT:  Provides network signaling and local traffic control
Remote Access Auto Connection Manager: Manual	Microsoft says “Creates a connection to a remote network whenever a program references a remote DNS or NetBIOS name or address.” I have it to manual. (sorry cant be much more help on that one. To do with embedded links within networks if I am not mistakin?)Microsoft also say “The Remote Access Auto Connection Manager service maps and maintains network addresses to connection destinations. This allows a destination to be automatically dialed from a program or from the command prompt. A network address can be an Internet host name, an Internet Protocol (IP) address, or a NetBIOS server name The Remote Access Auto Connection Manager service does not start automatically. You must manually start the service by using the Services node of the Component Services Microsoft Management Console (MMC) snap-in. The service provides the following autodial functions”
Remote Desktop Help Session Manager: Disabled	Pretty much just as the name says. Another useless security risk in Windows so disable it
Remote Procedure Call (RPC): Automatic	Used by windows for everything so leave it alone. You cant adjust this one anyway
Remote Procedure Call (RPC) Locator: Disabled	I have this disabled (Apart from that not a lot known about this service)
Removable Storage: Manual	A service used for zip drives, tape drives etc. I have it set to manual and my thumb drive seems to work just fine (allthought I dont think that this has to do with that?) More of a service for a server more than anything because a server would have a tape backup maybe?
Routing and remote access: Disabled	I have it disabled. Mainly used in large corperate networks (my home network still works fine) Allows LAN and WAN dial in access to the computer which cant be a good thing
Secondary logon: Disabled	This is related to the run as command, allowing a lower user to run a program under admin settings for example. Can be handy if you have multiple accounts on your system, but for the average user this isn’t needed (Abit of a security issue if you ask me)
Server: Automatic	Provides basic file and printer sharing over the network (which is something I do so I leave it to automatic
Shell Hardware Detection: Automatic	Related to autoplay of items like cameras and optical drives or any other storage device that you plug in via usb really. If you dont use/like autoplay of such devices then by all means disable this
Smart Card: Disabled	Used for smart cards which are small credit card sized security cards for example (I thought this was for cards like MMC/SD cards etc) but it’s not
System restore service: Disabled	More of a personal preferance as to wether or not you have the system restore service on or off. (most people new to computer’s should really leave this one alone just to be on the safe side) I have it off/disabled because I don’t use it.(I dont really have any problem with this service, I dont install alot of programs that make major modifications to the system so I disable this)
System event notification: Manual	Tracks windows events like system logon and power events etc. I have this service to manual to be safe. I know that some people say that its required by alot of programs but my system has never had any problems. (Allthought I must admit I dont really use alot of over the top programs that would require suck a service)
Task Scheduler: Disabled	This is used by some system tools and virus scanners to schedule scans etc. (I have it disabled and have never had any problems with system tools or virus scanners.) Leave this service alone if you have/use symantec/norton products
TCP/IP NetBIOS Helper Service: Disabled	pretty much as the name says. I have it disabled because I think it is a security risk. Unless your network users netbios you can disable this service as it is a security risk. (also untick netbios in your network properties)
Telephony: Manual	Controls all dialup activity and some times cable and dsl items I have noticed that my windows install has this service started after I have it set to manual so I’ll leave it alone
Telnet: Disabled	This is in my list as a major threat because it can be used by people to remotely access your system (which is not a good thing) Allthought this can be a handy tool to administer a server for example (I use to use this to telnet into my old adsl modem/router)
Terminal Services: Disabled	Allows multiple users to be connected interactively to a machine as well as the display of desktops and applications to remote computers. The underlying of Remote Desktop (including remote desktop for Administrators), Fast User Switching, Remote Assistance, and Terminal Server.) I’deally you should have this one disabled but if you like the nice windows logon screen then leave this alone (since I like the nice logon screens I have this to automatic)
Themes: Automatic	Disable this you get the win 2000 look, which isn’t to nice
Uninterruptible power supply: Disabled	Unless you have a UPS leave this alone and if you dont own a UPS then disable it. To simple
Upload manager: Disabled	Used in conjuction with internet connection sharing (ICS) If you don’t use ICS then disable this
Volume Shadow Copy: Disabled	Once again mainly to do with the windows backup program so I have it disabled since I dont use that program or any other program like it.(not sure if other non microsoft backup programs need this or not, so if you use other backup software and are unsure then set this to manual just to be safe)
WebClient: Manual	I have no idea about this one so I have it set to manual. I have tryed setting it to manual, automatic and disabled and all still seems fine so I have it to manual just to be safe. Microsoft says ” Enables Windows-based programs to create, access, and modify Internet-based files”
Windows Audio: Automatic	leave this alone unless you want to loose all computer audio
Windows Firewall/Internet Connection Sharing (ICS): Automatic	Leave this alone, its that simple. (well unless you dont use the windows firewall and/or ICS then manual should be fine) but since I use the windows firewall I have this at default of Automatic
Windows Installer: Automatic	Windows users this service to install .msi programs (windows installer) a lot of programs are released in .msi instead of .exe these days.
Windows Image Acquisition (WIA): Automatic	Really as the name states, for scanners, cameras etc. So if you dont own any of them I say set it to manual. Since I have a scanner and a camera I have it at default of automatic
Windows Management Instrumentation: Automatic	Kill this service and you kill your computer) no more needs to be said
Windows Management Instrumentation Driver Extensions: Manual	I have no idea about this service so I set it to manual.EDIT: more info here
Windows security centre: Disabled	I have disabled the notifications in the security centre and then disabled this feature of sp2 (I find it kinda pointless personally, as I don’t really need some program telling me that I have my virus scanner disabled or what ever maybe the case.) Again more of a personal preference more than anything.I think this feature is more for the person that likes to be kept informed about what is going
Windows time: Disabled	Contacts different time servers on the internet. I would disable this privacy risk. (double click on the time in the sys tray and goto the internet time tab and untick automatically synchronize with an internet time server and then click okay) then disable this service
Wireless zero configuration: Disabled	Only used if you have a wireless card for example (802.11 pci card/router for example) Disable this unless you have/use wireless items, otherwise leave it enabled. (not sure if this affects bluetooth, would’nt think so) also this service has nothing to do with wireless mice an keyboards etc
WMI performance adapter: Manual	Collects information regarding performance. Apperntally required for essential applications to work properly. Dont know much about this one but I have it set to manual and have never had any problems before.EDIT: Seems to be connected to the Windows Management Instrumentation Driver Extensions service above
Workstation: Automatic	If the Workstation service is disabled, the system cannot connect to any shared file resources or shared print resources on a network, so leave it to automatic

That is all on services for now. I hope you understood it all.(do these at your own risk – I will not take responsibility for damage)