YENICAN.COM

                   all about health and fitness…

WINDOWS VISTA

MY HOBBY IS COMPUTERS
by Seyhan Yenican

You have purchased a new computer. Congratulations! Setting up a new computer involves more than plugging the wires in and letting it run. What about the security and privacy? Your computer most likely has a pre-configured default setting which includes a bunch of open doors (ports) and unnecessary futures (services) and programs. Your computer is a popular target for intruders. Intruders look for credit card numbers, bank account information, and any private information they can find. You must secure your computer by shutting down unnecessary services and closing unused ports.

Please note that before adjusting your service settings, ensure that you are aware of what you are doing. You need to have a good understanding of each service and the implications of disabling them. Each user can have their own optimum configuration. Provided below is an example of my personal recommendation for vista. With "SINGLE" setting you will very possibly have no sharing, synchronizing, and remote control ability. You cannot use Windows Media Center and some programs may not work properly. If you are not sure, DO NOT TOUCH!  The services written in red color are known to be vulnerable to online security problems.

  • Click on Start button
  • In the search box, type “services.msc” and push enter
  • Choose a Service to disable
  • Click on the Service
  • On General tab, stop the service
  • Choose disable from the drop-down menu
  • Click on Apply.

Note: If you are not happy for any reason whatsoever, you can always go back to the "DEFAULT" setting!


WINDOWS VISTA SERVICES

For Home Use

Recommendation

SERVICE NAME

NOTES

DEFAULT

SINGLE

SHARED

Application Experience

3rd party apps;

Automatic

Automatic

Automatic

Application Information

Admin rights; run as;

Manual

Manual

Manual

Application Layer Gateway Service

ICS; 3rd party protocol plug-ins;

Manual

Manual

Manual

Application Management

Install, remove software;

Manual

Manual

Manual

Background Intelligent Transfer Service

Windows Update;

Automatic (Delayed Start)

Automatic (Delayed Start)

Automatic (Delayed Start)

Base Filtering Engine

Firewall; Internet Protocol security;

Automatic

Automatic

Automatic

Block Level Backup Engine Service

Backup and Restore;

Manual

Manual

Manual

Certificate Propagation

Smart Cards;

Manual

Disable

Manual

CNG Key Isolation

Encryption;

Manual

Manual

Manual

COM+ Event System

Essential services;

Automatic

Automatic

Automatic

COM+ System Application

Essential services;

Manual

Manual

Manual

Computer Browser

Search computers;

Automatic

Disable

Automatic

Cryptographic Services

Windows update;

Automatic

Automatic

Automatic

DCOM Server Process Launcher

Essential services;

Automatic

Automatic

Automatic

Desktop Window Manager Session Manager

Aero theme;

Automatic

Automatic

Automatic

DFS Replication

Synchronize folders on networks;

Manual

Disable

Manual

DHCP Client

Internet;  Network;

Automatic

Automatic

Automatic

Diagnostic Policy Service

Problem solver;

Automatic

Automatic

Automatic

Diagnostic Service Host

Problem solver;

Manual

Manual

Manual

Diagnostic System Host

Problem solver;

Manual

Manual

Manual

Distributed Link Tracking Client

Maintains links;

Automatic

Disable

Automatic

Distributed Transaction Coordinator

Coordinates transactions;

Manual

Manual

Manual

DNS Client

Internet, Network;

Automatic

Automatic

Automatic

Extensible Authentication Protocol

Wi-Fi; VPN;

Manual

Manual

Manual

Fax

Fax;

Manual

Disable

Manual

Function Discovery Provider Host

Share Networked devices/resources;

Manual

Disable

Manual

Function Discovery Resource Publication

Share Networked devices/resources;

Automatic

Disable

Automatic

Group Policy Client

Essential services;

Automatic

Automatic

Automatic

Health Key and Certificate Management

Encryption;

Manual

Manual

Manual

Human Interface Device Access

Hot buttons; Keyboards, remotes;

Manual

Disable

Disable

IKE and AuthIP IPsec Keying Modules

Security for Corporate networks;

Automatic

Automatic

Automatic

Interactive Services Detection

System event pop-ups; notification;

Manual

Manual

Manual

Internet Connection Sharing (ICS)

Internet sharing; (security risk)

Disabled

Disabled

Disabled

IP Helper

IPv6;

Automatic

Disable

Disable

IPsec Policy Agent

Security for Corporate networks;

Automatic

Automatic

Automatic

KtmRm for Distributed Transaction Coordinator

Databases;

Automatic (Delayed Start)

Automatic (Delayed Start)

Automatic (Delayed Start)

Link-Layer Topology Discovery Mapper

Network map;

Manual

Manual

Manual

Microsoft .NET Framework NGEN v2.0.50727_X86

.Net stuff;

Manual

Disable

Disable

Microsoft iSCSI Initiator Service

Connect to devices;

Manual

Manual

Manual

Microsoft Software Shadow Copy Provider

Backup;

Manual

Manual

Manual

Multimedia Class Scheduler

Multimedia apps; audio;

Automatic

Automatic

Automatic

Net.Tcp Port Sharing Service

.Net apps; (security risk)

Disabled

Disabled

Disabled

Netlogon

Corporate; domain;

Manual

Disable

Manual

Network Access Protection Agent

Corporate; setting security requirements;

Manual

Manual

Manual

Network Connections

Internet, Network;

Manual

Manual

Manual

Network List Service

Internet, Network;

Automatic

Automatic

Automatic

Network Location Awareness

Internet, Network;

Automatic

Automatic

Automatic

Network Store Interface Service

Internet, Network;

Automatic

Automatic

Automatic

Offline Files

Offline files;

Automatic

Disable

Disable

Parental Controls

Parental;

Manual

Manual

Manual

Peer Name Resolution Protocol

Corporate; peer to peer; windows meeting;

Manual

Disable

Manual

Peer Networking Grouping

Corporate; peer networking;

Manual

Disable

Manual

Peer Networking Identity Manager

Corporate; peer identity;

Manual

Disable

Manual

Performance Logs & Alerts

Performance logs;

Manual

Manual

Manual

Plug and Play

Plug and play;

Automatic

Automatic

Automatic

PnP-X IP Bus Enumerator

Network connected devices;

Manual

Disable

Manual

PNRP Machine Name Publication Service

Corporate; publishes a machine;

Manual

Disable

Manual

Portable Device Enumerator Service

Manage iPods/cameras; removable devices;

Automatic

Automatic

Automatic

Print Spooler

Printing;

Automatic

Automatic

Automatic

Problem Reports and Solutions Control Panel Support

Problem report;

Manual

Manual

Manual

Program Compatibility Assistant Service

Program compatibility;

Automatic

Automatic

Automatic

Protected Storage

Save passwords;

Manual

Manual

Manual

Quality Windows Audio Video Experience

Video, audio for home networks;

Manual

Manual

Manual

ReadyBoost

speed cache; USB flash drive;

Automatic

Automatic

Automatic

Remote Access Auto Connection Manager

DNS lookup; connect to the net;

Manual

Manual

Manual

Remote Access Connection Manager

Internet, Network;

Manual

Manual

Manual

Remote Procedure Call (RPC)

Essential services;(vital)

Automatic

Automatic

Automatic

Remote Procedure Call (RPC) Locator

Corporate; RPC locator;

Manual

Manual

Manual

Remote Registry

Remote; (security risk)

Manual

Disable

Disable

Routing and Remote Access

Remote; (security risk)

Disabled

Disabled

Disabled

Secondary Logon

Run as;

Automatic

Automatic

Automatic

Security Accounts Manager

Stores passwords;

Automatic

Automatic

Automatic

Security Center

Windows security center;

Automatic (Delayed Start)

Automatic (Delayed Start)

Automatic (Delayed Start)

Server

Sharing of file/print;

Automatic

Disable

Automatic

Shell Hardware Detection

Autoplay; CD/Flash drives;

Automatic

Automatic

Automatic

SL UI Notification Service

Software activation;

Manual

Manual

Manual

Smart Card

Smart card;

Manual

Disable

Disable

Smart Card Removal Policy

Smart card;

Manual

Disable

Disable

SNMP Trap

Corporate; monitor network-attached devices;

Manual

Disable

Manual

Software Licensing

Windows update;

Automatic

Automatic

Automatic

SSDP Discovery

UPnP devices; (security risk)

Manual

Disable

Disable

Superfetch

Improves system performance;

Automatic

Automatic

Automatic

System Event Notification Service

Tracks/notifies system events;

Automatic

Automatic

Automatic

Tablet PC Input Service

Pen and ink;

Automatic

Disable

Disable

Task Scheduler

Schedules task;

Automatic

Automatic

Automatic

TCP/IP NetBIOS Helper

NetBIOS and/or WINS;

Automatic

Disable

Disable

Telephony

Modem;

Manual

Manual

Manual

Terminal Services

Remote; (security risk)

Automatic

Disable

Disable

Terminal Services Configuration

see above

Manual

Disable

Disable

Terminal Services UserMode Port Redirector

see above

Manual

Disable

Disable

Themes

Fancy themes;

Automatic

Automatic

Automatic

Thread Ordering Server

Thread! (No idea!)

Manual

Manual

Manual

TPM Base Services

Security;

Manual

Manual

Manual

UPnP Device Host

Networking devices; UPnP; (security risk)

Automatic

Disable

Disable

User Profile Service

User profile management;

Automatic

Automatic

Automatic

Virtual Disk

Disk management;

Manual

Manual

Manual

Volume Shadow Copy

Backups;

Manual

Manual

Manual

WebClient

Managing Internet-based files;

Automatic

Automatic

Automatic

Windows Audio

Audio;

Automatic

Automatic

Automatic

Windows Audio Endpoint Builder

Audio;

Automatic

Automatic

Automatic

Windows Backup

Backup;

Manual

Manual

Manual

Windows CardSpace

Digital ID;

Manual

Manual

Manual

Windows Color System

Windows colors;

Manual

Manual

Manual

Windows Connect Now - Config Registrar

Configure a secure wireless network;

Manual

Manual

Manual

Windows Defender

Spyware;

Automatic

Automatic

Automatic

Windows Driver Foundation - User-mode Driver Framework

Controls drivers;

Manual

Manual

Manual

Windows Error Reporting Service

Windows error reporting;

Automatic

Disable

Disable

Windows Event Collector

Event logs;

Manual

Manual

Manual

Windows Event Log

Event logs; Task Scheduler;

Automatic

Automatic

Automatic

Windows Firewall

Windows firewall;

Automatic

Automatic

Automatic

Windows Image Acquisition (WIA)

Scanners and cameras;

Manual

Manual

Manual

Windows Installer

Installs programs;

Manual

Manual

Manual

Windows Management Instrumentation

Essential services;

Automatic

Automatic

Automatic

Windows Media Center Extender

Extender devices; (security risk)

Disabled

Disabled

Disabled

Windows Media Center Receiver Service

TV; radio;

Manual

Disable

Manual

Windows Media Center Scheduler Service

Records TV;

Manual

Disable

Manual

Windows Media Center Service Launcher

TV;

Automatic (Delayed Start)

Disable

Automatic (Delayed Start)

Windows Media Player Network Sharing Service

Sharing music/video and …

Manual

Disable

Manual

Windows Modules Installer

Windows updates;

Manual

Manual

Manual

Windows Presentation Foundation Font Cache 3.0.0.0

Caches fonts; .Net;

Manual

Manual

Manual

Windows Remote Management (WS-Management)

Remote; (security risk)

Manual

Disable

Disable

Windows Search

Windows search;

Automatic

Automatic

Automatic

Windows Time

Windows time;

Automatic

Automatic

Automatic

Windows Update

Windows update;

Automatic (Delayed Start)

Automatic (Delayed Start)

Automatic (Delayed Start)

WinHTTP Web Proxy Auto-Discovery Service

Proxy;

Manual

Manual

Manual

Wired AutoConfig

Wired;

Manual

Manual

Manual

WLAN AutoConfig

Wireless;

Manual

Disable

Disable

WMI Performance Adapter

Collects performance information;

Manual

Manual

Manual

Workstation

Networking; Remote; (Alerter, Browser, Messenger, Net Logon, RPC Locator will not work if disabled)

Automatic

Disable

Automatic

Disclaimer: The information provided on this page is provided "as is" without warranty of any kind. I disclaim all warranties, either express or implied!

------------------------------------------------------------------------------------------------------------------------------

Content copyright . Yenican. All rights reserved.