spoolsv.exe
Spooler SubSystem App by Microsoft
| Version: | 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519) |
| MD5: | da81ec57acd4cdc3d4c51cf3d409af9f |
| SHA1: | 7047ed8bd91f3e57972483feaa56e3499cd8c668 |
| SHA256: | 521257429493f31516ede549869efa4b7a262f6a69ea1e82a9c875456c10e702 |
This is a Windows system installed file with Windows File Protection (WFP) enabled.
Overview
spoolsv.exe runs as a service under the name Spouleur d'impression (Spooler) with extensive SYSTEM privileges (full administrator access). This version is installed on Windows XP and is compiled as a 32 bit program.
Details
| File name: | spoolsv.exe |
| Publisher: | Microsoft Corporation |
| Product name: | Spooler SubSystem App |
| Description: | Microsoft® Windows® Operating System |
| Typical file path: | C:\Windows\System32\spoolsv.exe |
| Original name: | spoolsv.exe.mui |
| File version: | 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519) |
| Product version: | 5.1.2600.2696 |
| Size: | 56.5 KB (57,856 bytes) |
| Digital DNA |
| Entropy: | 6.401537 |
| File packed: | No |
| Code language: | Microsoft Visual C++ |
| .NET CLR: | No |
More details
Behaviors
Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
Network connections
[UDP] listens on port 1025
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
| CPU |
| Total CPU: | 0.01350511% | |
| Kernel CPU: | 0.00746410% | |
| User CPU: | 0.00604101% | |
| Kernel CPU time: | 1,328 ms/min | |
| User CPU time: | 3 ms/min | |
| Context switches: | 1/sec | |
| Memory |
| Private memory: | 4.08 MB | |
| Private (maximum): | 6.95 MB | |
| Private (minimum): | 5.69 MB | |
| Non-paged memory: | 4.08 MB | |
| Virtual memory: | 47.46 MB | |
| Virtual memory (peak): | 49.54 MB | |
| Working set: | 6.29 MB | |
| Working set (peak): | 7.76 MB | |
| Page faults: | 6,389/min | |
| I/O |
| I/O read transfer: | 3.63 KB/sec | |
| I/O read operations: | 2/sec | |
| I/O write transfer: | 636 Bytes/sec | |
| I/O write operations: | 1/sec | |
| I/O other transfer: | 3.59 KB/sec | |
| I/O other operations: | 33/sec | |
| Resource allocations |
| Threads: | 13 | |
| Handles: | 154 | |
| GUI GDI count: | 4 | |
| GUI USER count: | 5 | |
Process properties
| Integrety level: | Undefined |
| Platform: | 32-bit |
| Command lines: |
- C:\Windows\System32\spoolsv.exe
- C:\winnt\system32\spoolsv.exe
|
| Owner: | SYSTEM |
| Windows Service |
| Service name: | Spooler |
| Display name: | Spouleur d'impression |
| Description: | “Charge les fichiers en mémoire pour une impression ultérieure” |
| Type: | Win32OwnProcess, InteractiveProcess |
| Parent process: | services.exe (Services and Controller app by Microsoft) |
Threads
Averages
| spoolsv.exe (main module) |
| Total CPU: | 0.00188360% | |
| Kernel CPU: | 0.00138274% | |
| User CPU: | 0.00050086% | |
| Memory: | 64 KB | |
| tcpmon.dll |
| Total CPU: | 0.00023460% | |
| Kernel CPU: | 0.00015640% | |
| User CPU: | 0.00007820% | |
| Memory: | 56 KB | |
| msvcrt.dll (Windows NT CRT DLL by Microsoft) |
| Total CPU: | 0.00011730% | |
| Kernel CPU: | 0.00003910% | |
| User CPU: | 0.00007820% | |
| Memory: | 352 KB | |
| RPCRT4.dll |
| Total CPU: | 0.00002794% | |
| Kernel CPU: | 0.00000000% | |
| User CPU: | 0.00002794% | |
| Memory: | 584 KB | |
| localspl.dll |
| Total CPU: | 0.00000902% | |
| Kernel CPU: | 0.00000000% | |
| User CPU: | 0.00000902% | |
| Memory: | 348 KB | |
Common loaded modules
These are modules that are typiclaly loaded within the context of this process.
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
59.50% |
|
| Windows 7 Ultimate |
25.00% |
|
| Windows 7 Professional |
12.00% |
|
| Windows 7 Home Basic |
3.00% |
|
| Windows Vista Home Premium |
0.50% |
|
Distribution by country
United States installs about 50.51% of Spooler SubSystem App.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Dell |
24.59% |
|
| Hewlett-Packard |
21.31% |
|
| ASUS |
14.75% |
|
| Acer |
13.93% |
|
| Toshiba |
13.11% |
|
| Sony |
4.92% |
|
| GIGABYTE |
2.46% |
|
| Alienware |
1.64% |
|
| Samsung |
1.64% |
|
| Lenovo |
1.64% |
|
