I personally modified this based on the service optimization instructions provided online ([ ] is what I set myself). I closed some of the system's own firewalls and firewalls after installing Kaspersky and Kingsoft Internet Security. Secure service, good for home computers. Let’s take a look at it. Basically, after optimization, the system starts up and runs very quickly!
Adaptive Brightness【Disabled】
Monitors the ambient light sensor to detect changes in ambient light and adjust the display's brightness. If this service is stopped or disabled, monitor brightness will not adjust based on lighting conditions.
The default operation mode of this service is manual. If you do not use a device such as a touch screen to intelligently adjust the screen brightness, this function can be safely disabled.
Application Experience【Manual】
Handles application compatibility cache requests for applications on application startup.
The default running mode of this service is automatic, manual operation is recommended.
Application Information【Manual】
Use secondary administrative rights to facilitate the running of interactive applications. If you stop this service, users will not be able to launch applications with secondary administrative rights that may be required to perform required user tasks.
The default running mode of this service is manual and it is not recommended to change it.
Application Layer Gateway Service [Disabled] [Pending test results]
Provides support for third-party protocol plug-ins for Internet connection sharing. If a third-party firewall is installed and there is no need to use ICS to share the Internet, it can be completely disabled.
Application Management【Disabled】
Handles installation, removal, and enumeration requests for software deployed through Group Policy. If this service is disabled, users will not be able to install, remove, or enumerate software deployed through Group Policy. If this service is disabled, all services that directly depend on it will fail to start.
The default running mode of this service is manual. This function is mainly suitable for centralized management in large enterprise environments, so home users can safely disable this service.
Ati External Event Utility【Manual】
This process will occur if the ATI graphics driver is installed. It is recommended to do it manually.
Background Intelligent Transfer Service【Manual】
Use free network bandwidth to transfer files in the background. If the service is disabled, any applications that rely on BITS (such as Windows Update or MSN Explorer) will not be able to automatically download programs and other information.
The main purpose of this service is to perform Windows Update or automatic updates. If an update package is used to update, it can be completely disabled.
Base Filtering Engine【Auto】
Basic Filtering Engine (BFE) is a service that manages firewall and Internet Protocol Security (IPsec) policies and enforces user-mode filtering. Stopping or disabling the BFE service will greatly reduce system security. It will also cause unpredictable behavior of IPsec management and firewall applications.
It also provides dependent services for system firewall, VPN and IPsec, as well as system security services. If you use third-party VPN dial-up software and do not use the system firewall and ICS to share the Internet, for the sake of system resources, close it, otherwise leave it alone. .
BitLocker Drive Encryption Service【Disabled】
BDESVC hosts the BitLocker Drive Encryption service. BitLocker Drive Encryption provides secure boot for the operating system and full-volume encryption for the OS, fixed volumes, and removable volumes. Using this service, BitLocker can prompt users to perform various actions related to mounted volumes and automatically unlock volumes without user interaction. Additionally, it stores recovery information to Active Directory (if this method is available and required) and ensures that the most recent recovery certificate is used. Stopping or disabling the service prevents users from using this feature.
The default running mode of this service is manual, and if you are not using a BitLocker device, this feature can be safely disabled.
Block Level Backup Engine Service【Manual】
Engine that performs block-level backup and recovery. It is estimated to be a service used for backup and recovery, and has no dependencies. The default is manual, and I have never seen it started. Just leave it there and forget about it.
Bluetooth Support Service【Disabled】
The Bluetooth service supports the discovery and association of remote Bluetooth devices. Stopping or disabling this service may prevent installed Bluetooth devices from operating correctly and may prevent new devices from being discovered and associated.
The default mode of operation of this service is manual, and if you are not using a Bluetooth device, this feature can be safely disabled.
Certificate Propagation【Disabled】
Provide a certificate for the smart card. The default running mode of this service is manual. If you are not using a smart card, you can safely disable this service.
CNG Key Isolation【Manual】
The CNG key isolation service is hosted in the LSA process. As required by general principles, the service provides key process isolation for private keys and related cryptographic operations. The service stores and uses long-lived keys in a secure process consistent with general principles requirements. If the Wired AutoConfig/WLAN AutoConfig services are turned on and EAP (ExtensibleAuthentication Protocol) is used, then this service will be used. It is recommended that those who do not use automatic wired network configuration and wireless networks can turn it off.
COM+ Event System【Automatic】
Supports the System Event Notification Service (SENS), which provides automatic distribution of events to subscribed Component Object Model (COM) components. If you stop this service, SENS will shut down and will not be able to provide login and logout notifications. If you disable this service, no other services that explicitly depend on this service will be able to start.
A very primitive ancient service. The default running mode of this service is automatic. This is an important system service. If it is set to manual, it will run automatically. If it is set to disabled, it seems to have no effect, but a large number of errors will appear in the log.
We'd better stay still.
COM+ System Application【Manual】
Manage the configuration and tracking of Component Object Model (COM+)-based components. If you stop this service, most COM+-based components will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start. Those who are engaged in development are relatively clear. Previous COM+ programs and even applications in IIS/.NET will use this service.
As long as it is not set to disabled, it is basically a service that rarely runs.
Computer Browser【Manual】
Maintains an updated list of computers on the network and makes the list available for designated viewing by computers. If the service is stopped, the list will not be updated or maintained. If a service is disabled, any services that directly depend on this service will fail to start. The service runs automatically by default, but it can be disabled if you are not using a LAN. Even if you want to use it in the LAN, just set it to manual, because you never know when it will be used, and it will start by itself when you use it.
Credential Manager【Manual】
Provides secure storage and retrieval of credentials for users, applications, and security service packages.
The default running mode of this service is manual, and it is recommended to keep the default.
Cryptographic Services【Automatic】
Provides four management services: Directory Database Service, used to confirm the signature of Windows files and allow the installation of new programs; Protected Root Service, used to add and remove trusted root certification authority certificates from this computer; Automatic Root Certificate Update service, which is used to retrieve the root certificate from Windows Update and enable scenarios such as SSL; Key service, which assists in registering this computer for a certificate. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start. Maintain and manage all certificates, keys, and security databases for the system. In addition, services required to access some websites, such as Microsoft's website, Windows Update, or DRM website, often provide and confirm the signature information of Windows files.
It is strongly recommended that you not touch it, and never think about disabling this service.
DCOM Server Process Launcher【Automatic】
The DCOMLAUNCH service starts COM and DCOM servers that respond to object activation requests. If this service is stopped or disabled, programs that use COM or DCOM will not work properly. It is strongly recommended that you run the DCOMLAUNCH service. The default running mode of this service is automatic, and it is best not to mess with it. The previous DCOM service, that is, the remote service, is a more basic service than COM+. Just look at the registry to know how many DCOM components there are in the Windows system. Although it is no problem to disable it, temporarily used services that are set to manual will not be able to It will start automatically and the taskbar icon will disappear, so it is best not to modify this option.
Desktop Window Manager Session Manager【Automatic】
Provides desktop window manager startup and maintenance services necessary for Aero style. All AeroGlass and Flip3D effects rely on this service.
If you like this style, set it to automatic, otherwise disable it.
DHCP Client【Auto】
Register and update the IP address for this computer. If this service is stopped, the computer will not be able to receive dynamic IP address and DNS updates. If this service is disabled, all services that explicitly depend on it will fail to start.
The default running mode of this service is automatic. If the IP is manually specified, it can be disabled.
Diagnostic Policy Service【Disable】
The Diagnostic Policy Service enables problem detection, troubleshooting, and resolution of Windows components. If the service is stopped, diagnostics will no longer run.
The default running mode of this service is automatic. Vista or IE7 will sometimes pop up a dialog box asking you if you need to let it help find the cause of the failure. In only 1% of cases, it will help fix the Internet disconnection problem. It is recommended to disable it.
Diagnostic Service Host【Disabled】
The Diagnostic Service Host is used by the Diagnostic Policy Service to host diagnostics that need to be run in the local system context. If you stop the service, any diagnostics that depend on the service will no longer run.
This is the service that helps the Diagnostic Policy Service above to do specific things. It will be started along with the above services and can be disabled together.
Diagnostic System Host【Disabled】
The diagnostic system host is used by the Diagnostic Policy Service to host diagnostics that need to be run in the context of the local system. If you stop the service, any diagnostics that depend on the service will no longer run.
Basically, they are similar to Diagnostic Policy Service/Diagnostic Service Host and can be disabled together.
Disk Defragmenter【Manual】
Provides disk defragmentation functionality.
The default running mode of this service is manual, and it is recommended to keep the default.
Distributed Link Tracking Client【Disabled】
Maintains links between NTFS files within a computer or computers on a network.
The default running mode of this service is automatic, but this function is generally not used, so you can safely disable it.
Distributed Transaction Coordinator【Manual】
Coordinate transactions across multiple databases, message queues, file systems, and other resource managers. If you stop this service, these transactions will fail. If you disable this service, other services that explicitly depend on this service will fail to start.
Many applications and server software such as SQL and Exchange Biztalk rely on this service. You can not start it, but do not disable it. It is recommended to do it manually.
DNS Client【Automatic】
The DNS Client Service (dnscache) caches Domain Name System (DNS) names and registers the full computer name of the computer.
If the service is stopped, DNS name resolution will continue. However, lookup results for DNS names will not be cached, and computer names will not be registered. If the service is disabled, any services that explicitly depend on it will fail to start. The default running mode of this service is automatic. If it is in a domain environment, it should be set to automatic. However, this service can reveal which websites you have browsed, so for general users, it is disabled for security reasons.
Encrypting File System (EFS)【Manual】
Provides core file encryption technology for storing encrypted files on NTFS file system volumes. If this service is stopped or disabled, applications will not be able to access encrypted files.
The default running mode of this service is manual, and it is recommended to keep the default.
Extensible Authentication Protocol【Manual】
The Extensible Authentication Protocol (EAP) service provides network authentication for: 802.1x wired and wireless, VPN, and Network Access Protection (NAP). EAP also provides an application programming interface (API) used by network access clients during the authentication process, including wireless clients and VPN clients. If you disable this service, the computer will not be able to access networks that require EAP authentication. If you disable this service, the computer will not be able to access networks that require EAP authentication.
If you don't use 802.1x authentication, wireless networking or VPN, you don't need to enable it. Do not disable it. It is recommended to keep it manual.
Function Discovery Provider Host【Disabled】
The FDPHOST service hosts the Function Discovery (FD) network discovery provider. These FD providers provide network discovery services for the Simple Service Discovery Protocol (SSDP) and Web Services Discovery (WS-D) protocols. Stopping or disabling the FDPHOST service when using FD will disable network discovery for these protocols. When this service is unavailable, network services that use FD and rely on these discovery protocols will be unable to find network services or resources.
PnP-X is related to SSDP. If there are no related devices, just disable it.
Function Discovery Resource Publication【Disabled】
Publish the computer and the resources connected to the computer so that they can be discovered on the network. If the service is stopped, network resources will no longer be published and will not be discoverable by other computers on the network.
PnP-X is related to SSDP. If there is no related equipment, just turn it off.
Group Policy Client【Automatic】
This service is responsible for applying settings configured by administrators for computers and users through the Group Policy component. If you stop or disable the service, settings will not be applied, and applications and components will not be managed through Group Policy. If this service is stopped or disabled, any components or applications that rely on Group Policy will not function properly.
Important system services remain automatically unchanged.
Health Key and Certificate Management【Manual】
Provides X.509 certificate and key management services for Network Access Protection Agent (NAPAgent). The enforcement technology using X.509 certificates may not work properly without this service. It is speculated that it is a service of NAP, which mentions the need to implement a HealthRegistrationAuthority mechanism, which is manual by default.
HomeGroup Provider【Disabled】
Perform network tasks related to configuration and maintenance of primary groups. If you stop or disable this service, your computer will not be able to detect other primary groups, and your primary group may not function properly. It is recommended that you keep this service running.
If you do not use FamilyGroup to share pictures, videos and documents, this service can be disabled.
Human Inte***ce Device Access【Manual】
Enables universal input access to Intelligent Interface Devices (HIDs), which activate and save predefined hot buttons on keyboards, remote controls, and other multimedia devices. If this service is killed, hot buttons controlled by this service will no longer function. If this service is disabled, any services that depend on it will fail to start.
If you don't want those special additional keys on your machine or laptop keyboard to work, use game controllers, etc., you can disable this service.