Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

6.3.9600.16384 (winblue_rtm.130821-1623) 3.88%
6.3.9600.16384 (winblue_rtm.130821-1623) 0.06%
6.3.9431.0 (winmain_bluemp.130615-1214) 0.19%
6.3.9431.0 (winmain_bluemp.130615-1214) 0.02%
6.2.9200.16384 (win8_rtm.120725-1247) 2.05%
6.2.9200.16384 (win8_rtm.120725-1247) 11.99%
6.2.8400.0 (winmain_win8rc.120518-1423) 0.06%
6.2.8400.0 (winmain_win8rc.120518-1423) 0.06%
6.2.8250.0 (winmain_win8beta.120217-1520) 0.02%
6.2.8102.0 (winmain_win8m3.110823-1455) 0.06%
6.1.7600.16385 (win7_rtm.090713-1255) 1.11%
6.1.7600.16385 (win7_rtm.090713-1255) 2.26%
6.1.7600.16385 (win7_rtm.090713-1255) 3.11%
6.1.7600.16385 (win7_rtm.090713-1255) 31.04%
6.1.7600.16385 (win7_rtm.090713-1255) 4.56%
6.1.7600.16385 (win7_rtm.090713-1255) 11.42%
6.1.7600.16385 (win7_rtm.090713-1255) 1.43%
6.1.7600.16385 (win7_rtm.090713-1255) 1.64%
6.1.7600.16385 (win7_rtm.090713-1255) 0.87%
6.1.7600.16385 (win7_rtm.090713-1255) 0.81%
6.1.7600.16385 (win7_rtm.090713-1255) 0.02%
6.1.7600.16385 (win7_rtm.090713-1255) 0.02%
6.1.7600.16385 (win7_rtm.090713-1255) 0.02%
6.1.7600.16385 (win7_rtm.090713-1255) 0.02%
6.1.7600.16385 (win7_rtm.090713-1255) 0.02%
View more

Relationships

Parent process
Child processes

spoolsv.exe

Spooler SubSystem App by Microsoft

Remove spoolsv.exe
Version:   6.1.7600.16385 (win7_rtm.090713-1255)
MD5:   85daa09a98c9286d4ea2ba8d0e644377
SHA1:   3ecae0d7de04f08e911fd6041386907c9b9291d8
SHA256:   f9c324e2ef81193fe831c7eecc44a100ca06f82fa731bf555d9ea4d91da13329
This is a Windows system installed file with Windows File Protection (WFP) enabled.

Overview

spoolsv.exe runs as a service under the name Spouleur d'impression (Spooler) with extensive SYSTEM privileges (full administrator access). This version is designed to run on Windows 7 and is compiled as a 64 bit program.

DetailsDetails

File name:spoolsv.exe
Publisher:Microsoft Corporation
Product name:Spooler SubSystem App
Description:Microsoft® Windows® Operating System
Typical file path:C:\Windows\System32\spoolsv.exe
Original name:spoolsv.exe.mui
File version:6.1.7600.16385 (win7_rtm.090713-1255)
Product version:6.1.7600.16385
Size:546 KB (559,104 bytes)
Digital DNA
Entropy:6.401537
File packed:No
Code language:Microsoft Visual C++
.NET CLR:No
More details

BehaviorsBehaviors

Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
Network connections
  • [UDP] listens on port 63569
  • [UDP] listens on port 49154
  • [UDP] listens on port 64324
  • [UDP] listens on port 52829
  • [UDP] listens on port 56109
  • [UDP] listens on port 52303
  • [UDP] listens on port 62660
  • [UDP] listens on port 62182
  • [UDP] listens on port 63497
  • [UDP] listens on port 51804
  • [UDP] listens on port 62540
  • [UDP] listens on port 57269
  • [UDP] listens on port 54558
  • [UDP] listens on port 52845
  • [UDP] listens on port 57769
  • [UDP] listens on port 55175
  • [UDP] listens on port 61096
  • [UDP] listens on port 58349
  • [UDP] listens on port 50127
  • [UDP] listens on port 52654
  • [UDP] listens on port 62041

    • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.00076763%
    0.028634%
    Kernel CPU:0.00046572%
    0.013761%
    User CPU:0.00030191%
    0.014873%
    Kernel CPU time:802,768 ms/min
    100,923,805ms/min
    CPU cycles:825,360/sec
    17,470,203/sec
    Context switches:16/sec
    284/sec
    Memory
    Private memory:8.89 MB
    21.59 MB
    Private (maximum):14.77 MB
    Private (minimum):8.41 MB
    Non-paged memory:8.89 MB
    21.59 MB
    Virtual memory:95.05 MB
    140.96 MB
    Virtual memory (peak):100.99 MB
    169.69 MB
    Working set:10.63 MB
    18.61 MB
    Working set (peak):19.61 MB
    37.95 MB
    Page faults:67,746/min
    2,039/min
    I/O
    I/O read transfer:3.55 KB/sec
    1.02 MB/min
    I/O read operations:8/sec
    343/min
    I/O write transfer:2.66 KB/sec
    274.99 KB/min
    I/O write operations:2/sec
    227/min
    I/O other transfer:1.01 KB/sec
    448.09 KB/min
    I/O other operations:44/sec
    1,671/min
    Resource allocations
    Threads:16
    12
    Handles:354
    600

    BehaviorsProcess properties

    Integrety level:System
    Platform:64-bit
    Command line:C:\Windows\System32\spoolsv.exe
    Owner:SYSTEM
    Windows Service
    Service name:Spooler
    Display name:Spouleur d'impression
    Description:“Charge les fichiers en mémoire pour une impression ultérieure”
    Type:Win32OwnProcess, InteractiveProcess
    Parent process:services.exe (Services and Controller app by Microsoft)

    ResourcesThreads

    Averages
     
    hpinkstsAD11LM.dll
    Total CPU:0.29599707%
    0.272967%
    Kernel CPU:0.18534872%
    0.107585%
    User CPU:0.11064834%
    0.165382%
    CPU cycles:6,788,532/sec
    5,741,424/sec
    Memory:344 KB
    1.16 MB
    ole32.dll
    Total CPU:0.05983113%
    Kernel CPU:0.01595554%
    User CPU:0.04387560%
    CPU cycles:1,185,786/sec
    Context switches:22/sec
    Memory:2.01 MB
    ntdll.dll
    Total CPU:0.04700500%
    Kernel CPU:0.02016217%
    User CPU:0.02684283%
    CPU cycles:857,005/sec
    Context switches:2/sec
    Memory:1.66 MB
    usbmon.dll
    Total CPU:0.00693242%
    Kernel CPU:0.00343280%
    User CPU:0.00349962%
    CPU cycles:141,442/sec
    Memory:60 KB
    localspl.dll
    Total CPU:0.00231900%
    Kernel CPU:0.00181316%
    User CPU:0.00050584%
    CPU cycles:129,614/sec
    Memory:952 KB
    novamnk6.dll
    Total CPU:0.00163091%
    Kernel CPU:0.00103157%
    User CPU:0.00059935%
    CPU cycles:209,018/sec
    Memory:48 KB
    SN0ELMON.DLL
    Total CPU:0.00121713%
    Kernel CPU:0.00050865%
    User CPU:0.00070848%
    CPU cycles:307,790/sec
    Memory:104 KB
    FunDisc.dll
    Total CPU:0.00109666%
    Kernel CPU:0.00032461%
    User CPU:0.00077205%
    CPU cycles:35,970/sec
    Memory:204 KB
    CNABCEMD.DLL
    Total CPU:0.00103487%
    Kernel CPU:0.00067267%
    User CPU:0.00036221%
    CPU cycles:429,532/sec
    Memory:636 KB
    fdPnp.dll
    Total CPU:0.00088243%
    Kernel CPU:0.00035269%
    User CPU:0.00052974%
    CPU cycles:20,180/sec
    Memory:64 KB
    spoolsv.exe (main module)
    Total CPU:0.00068976%
    Kernel CPU:0.00043393%
    User CPU:0.00025583%
    CPU cycles:15,579/sec
    Memory:560 KB
    novamnv7.dll
    Total CPU:0.00038766%
    Kernel CPU:0.00019383%
    User CPU:0.00019383%
    CPU cycles:504,527/sec
    Context switches:10/sec
    Memory:52 KB

    Common loaded modules

    These are modules that are typiclaly loaded within the context of this process.

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Home Premium 59.50%
    Windows 7 Ultimate 25.00%
    Windows 7 Professional 12.00%
    Windows 7 Home Basic 3.00%
    Windows Vista Home Premium 0.50%

    Distribution by countryDistribution by country

    United States installs about 50.51% of Spooler SubSystem App.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Dell 24.59%
    Hewlett-Packard 21.31%
    ASUS 14.75%
    Acer 13.93%
    Toshiba 13.11%
    Sony 4.92%
    GIGABYTE 2.46%
    Alienware 1.64%
    Samsung 1.64%
    Lenovo 1.64%
    Back to top
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE