services.exe
Aplicación de servicios y controlador by Microsoft
This is a Windows system installed file with Windows File Protection (WFP) enabled.
Overview
There are 3 versions of services.exe in the wild, the latest version being 6.1.7264.0 (win7_rtm.090622-1900). It is started as a Windows Service called 'Registro de sucesos' with the name 'Eventlog' and described as “Habilita mensajes de registro de sucesos emitidos por programas basados en Windows y componentes para que se vean en Visor de sucesos. Este servicio no se puede detener. ”. . In addition, it is run under the context of the SYSTEM account with extensive privileges (the administrator accounts have the same privileges). This is executed as a shared service (which simply means that this service can share a process with other Win32 services). The average file size is about 155.17 KB. During the process's lifecycle, the typical CPU resource utilization is about 0.0014% including both foreground and background operations, the average private memory consumption is about 3.74 MB with the maximum memory reaching around 4.62 MB.
 Details
|
| File name: | services.exe |
| Publisher: | Microsoft Corporation |
| Product name: | Aplicación de servicios y controlador |
| Description: | Sistema operativo Microsoft® Windows® |
| Typical file path: | C:\Windows\System32\services.exe |
| Windows Service |
| Service name: | Eventlog |
| Display name: | Registro de sucesos |
| Description: | “Habilita mensajes de registro de sucesos emitidos por programas basados en Windows y componentes para que se vean en Visor de sucesos. Este servicio no se puede detener. ” |
| Type: | Win32ShareProcess |
Behaviors
(Note, the behaviors below are for all versions of services.exe, select a unique version for details.)
Service
Runs under 'SYSTEM\CurrentControlSet\Services' as a shared service by the Service Host (svchost.exe)
- 'Eventlog' (Registro de sucesos)
All file variations of services.exe
