Should I block it?

No, this file is 100% safe to run.

Additional versions

6.3.9600.16384 (winblue_rtm.130821-1623)	1.61%
6.3.9600.16384 (winblue_rtm.130821-1623)	0.08%
6.3.9600.16384 (winblue_rtm.130821-1623)	0.46%
6.3.9600.16384 (winblue_rtm.130821-1623)	2.37%
6.3.9431.0 (winmain_bluemp.130615-1214)	0.23%
6.3.9431.0 (winmain_bluemp.130615-1214)	0.08%
6.2.9200.16384 (win8_rtm.120725-1247)	2.45%
6.2.9200.16384 (win8_rtm.120725-1247)	7.96%
6.2.9200.16384 (win8_rtm.120725-1247)	5.89%
6.2.9200.16384 (win8_rtm.120725-1247)	0.61%
6.2.8400.0 (winmain_win8rc.120518-1423)	0.08%
6.2.8102.0 (winmain_win8m3.110823-1455)	0.08%
6.1.7600.16385 (win7_rtm.090713-1255)	26.55%
6.1.7600.16385 (win7_rtm.090713-1255)	16.68%
6.1.7600.16385 (win7_rtm.090713-1255)	1.61%
6.1.7600.16385 (win7_rtm.090713-1255)	1.22%
6.0.6001.18000 (longhorn_rtm.080118-1840)	1.61%
6.0.6001.18000 (longhorn_rtm.080118-1840)	6.27%
6.0.6001.18000 (longhorn_rtm.080118-1840)	0.61%
6.0.6000.16386 (vista_rtm.061101-2205)	0.46%
5.2.3790.3959 (srv03_sp2_rtm.070216-1710)	0.15%
5.1.2600.5512 (xpsp.080413-2108)	14.69%
5.1.2600.5512 (xpsp.080413-2108)	0.69%
5.1.2600.5512 (xpsp.080413-2108)	0.77%
5.1.2600.5512 (xpsp.080413-2108)	0.15%
View more
5.1.2600.5512 (xpsp.080413-2108)	0.77%
5.1.2600.5512 (xpsp.080413-2108)	0.08%
5.1.2600.5512 (xpsp.080413-2108)	0.08%
5.1.2600.5512 (xpsp.080413-2108)	0.54%
5.1.2600.5512 (xpsp.080413-2108)	0.15%
5.1.2600.5512 (xpsp.080413-2108)	0.08%
5.1.2600.5512 (xpsp.080413-2108)	0.23%
5.1.2600.5512 (xpsp.080413-2108)	0.31%
5.1.2600.5512 (xpsp.080413-2108)	0.46%
5.1.2600.5512 (xpsp.080413-2108)	0.15%
5.1.2600.5512 (xpsp.080413-2108)	0.08%
5.1.2600.5512 (xpsp.080413-2108)	0.08%
5.1.2600.5512 (xpsp.080413-2108)	0.08%
5.1.2600.3311 (xpsp.080212-0003)	0.08%
5.1.2600.3300 (xpsp.080125-2027)	0.08%
5.1.2600.2604 (xpsp.041130-1728)	0.38%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	2.45%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.15%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.08%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.08%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.08%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.08%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.08%
5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)	0.08%

Relationships

PE file structure

Show functions

Import table

advapi32.dll

DeregisterEventSource, RegOpenKeyExW, RegCloseKey, RegisterServiceCtrlHandlerExW, SetServiceStatus, RegCreateKeyExW, ImpersonateLoggedOnUser, AllocateAndInitializeSid, CheckTokenMembership, FreeSid, ReportEventW, RegisterEventSourceW, RegSetValueExW, RegQueryValueExW, CloseServiceHandle, QueryServiceConfigW, QueryServiceStatus, OpenServiceW, OpenSCManagerW, StartServiceW, ChangeServiceConfigW, ControlService, CreateProcessAsUserW, RevertToSelf, RegOpenCurrentUser, RegNotifyChangeKeyValue, ConvertSidToStringSidW, OpenThreadToken, GetTokenInformation, GetSidSubAuthorityCount, GetSidSubAuthority, OpenProcessToken, EventRegister, EventUnregister, RegDeleteValueW, ConvertStringSidToSidW, NotifyServiceStatusChangeW, EventWrite

api-ms-win-core-delayload-l1-1-1.dll

ResolveDelayLoadedAPI, DelayLoadFailureHook

api-ms-win-core-errorhandling-l1-1-0.dll

UnhandledExceptionFilter, GetLastError, SetUnhandledExceptionFilter

api-ms-win-core-errorhandling-l1-1-1.dll

UnhandledExceptionFilter, SetUnhandledExceptionFilter, GetLastError

api-ms-win-core-handle-l1-1-0.dll

DuplicateHandle, CloseHandle

api-ms-win-core-heap-l1-1-0.dll

HeapFree, HeapAlloc, GetProcessHeap

api-ms-win-core-heap-l1-2-0.dll

HeapAlloc, HeapFree, GetProcessHeap

api-ms-win-core-interlocked-l1-1-0.dll

InterlockedCompareExchange, InterlockedExchange

api-ms-win-core-interlocked-l1-2-0.dll

InterlockedExchange, InterlockedCompareExchange

api-ms-win-core-processenvironment-l1-1-0.dll

ExpandEnvironmentStringsW

api-ms-win-core-processenvironment-l1-2-0.dll

ExpandEnvironmentStringsW

api-ms-win-core-processthreads-l1-1-1.dll

OpenThreadToken, GetCurrentThreadId, GetCurrentProcessId, CreateProcessW, TerminateProcess, CreateThread, OpenProcess, GetCurrentProcess

api-ms-win-core-processthreads-l1-1-2.dll

TerminateProcess, GetCurrentThreadId, CreateThread, GetCurrentProcessId, CreateProcessW, GetCurrentProcess, OpenThreadToken, GetExitCodeProcess

api-ms-win-core-profile-l1-1-0.dll

QueryPerformanceCounter

api-ms-win-core-registry-l1-1-0.dll

RegQueryValueExW, RegDeleteValueW, RegCloseKey, RegSetValueExW, RegGetValueW, RegOpenKeyExW, RegNotifyChangeKeyValue, RegCreateKeyExW, RegDeleteKeyExW, RegEnumValueW

api-ms-win-core-synch-l1-1-1.dll

WaitForMultipleObjectsEx, CancelWaitableTimer, WaitForSingleObject, SetWaitableTimer, SetEvent, Sleep, CreateEventW

api-ms-win-core-synch-l1-2-0.dll

WaitForSingleObject, WaitForMultipleObjectsEx, SetWaitableTimer, SetEvent, Sleep, CancelWaitableTimer, CreateEventW, DeleteCriticalSection, InitializeCriticalSection, EnterCriticalSection, LeaveCriticalSection

api-ms-win-core-sysinfo-l1-1-1.dll

GetSystemTimeAsFileTime, GetTickCount

api-ms-win-core-sysinfo-l1-2-0.dll

GetTickCount, GetSystemTimeAsFileTime

api-ms-win-core-sysinfo-l1-2-1.dll

GetSystemTimeAsFileTime, GetTickCount

api-ms-win-eventing-provider-l1-1-0.dll

EventWrite

api-ms-win-obsolete-kernelbase-l1-1-0.dll

LocalFree

api-ms-win-security-base-l1-1-0.dll

AllocateAndInitializeSid, GetSidSubAuthorityCount, CheckTokenMembership, GetTokenInformation, FreeSid, GetSidSubAuthority

api-ms-win-security-base-l1-2-0.dll

AllocateAndInitializeSid, GetSidSubAuthorityCount, FreeSid, CheckTokenMembership, GetSidSubAuthority, GetTokenInformation

api-ms-win-service-core-l1-1-1.dll

SetServiceStatus, RegisterServiceCtrlHandlerExW

api-ms-win-service-management-l1-1-0.dll

CloseServiceHandle, OpenSCManagerW, OpenServiceW

api-ms-win-service-management-l2-1-0.dll

NotifyServiceStatusChangeW

crypt32.dll

CryptHashPublicKeyInfo, CertFreeCertificateContext, CryptMsgClose, CryptMsgGetAndVerifySigner, CryptQueryObject, CertCloseStore

dbghelp.dll

ImageNtHeader

firewallapi.dll

FWChangeNotificationDestroy, FwAnalyzeFirewallPolicy, FwActivate, FWChangeNotificationCreate

hnetcfg.dll

IcfChangeNotificationDestroy, IcfDisconnect, IcfGetOperationalMode, IcfConnect, IcfFreeAdapters, IcfGetAdapters, IcfChangeNotificationCreate

kernel32.dll

WaitForSingleObject, HeapFree, HeapAlloc, ProcessIdToSessionId, OpenProcess, GetCurrentProcess, DuplicateHandle, GetProcessHeap, DeleteCriticalSection, WaitForMultipleObjects, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, GetLastError, CreateEventW, UnregisterWait, CloseHandle, SetEvent, CreateThread, SetUnhandledExceptionFilter, UnhandledExceptionFilter, TerminateProcess, GetCurrentProcessId, GetCurrentThreadId, GetTickCount, QueryPerformanceCounter, GetFileSizeEx, CreateFileW, GetFileTime, LoadLibraryExW, FreeLibrary, GetSystemTimeAsFileTime, GetPrivateProfileStringW, Sleep, SystemTimeToFileTime, GetSystemTime, CancelWaitableTimer, SetWaitableTimer, CompareFileTime, WaitForMultipleObjectsEx, CreateWaitableTimerW, InterlockedIncrement, InterlockedDecrement, GetSystemDirectoryW, FindCloseChangeNotification, FindNextChangeNotification, FindFirstChangeNotificationW, InterlockedExchange, LocalFree, InterlockedCompareExchange, CreateFileMappingW, MapViewOfFile, UnmapViewOfFile, QueryFullProcessImageNameW, LoadLibraryW, SetLastError, GetCurrentThread, ResolveDelayLoadedAPI, DelayLoadFailureHook, LocalAlloc

msvcrt.dll

DllMain

netapi32.dll

NetApiBufferFree, NetGetJoinInformation

netshell.dll

NcFreeNetconProperties

netutils.dll

NetApiBufferFree

ntdll.dll

ShipAssertMsgA, WinSqmSetDWORD, EtwEventUnregister, EtwEventRegister, WinSqmIsOptedIn, EtwUnregisterTraceGuids, EtwRegisterTraceGuidsW, EtwGetTraceEnableFlags, EtwGetTraceEnableLevel, EtwGetTraceLoggerHandle, EtwEventWrite, EtwTraceMessage, RtlPublishWnfStateData

ole32.dll

CoCreateInstance, CoTaskMemAlloc, CoUninitialize, CoInitializeEx, CoTaskMemFree, CLSIDFromString, CoDisconnectContext, StringFromCLSID

rpcrt4.dll

RpcStringFreeW, NdrServerCall2, RpcImpersonateClient, RpcRevertToSelf, RpcRaiseException, RpcServerUnregisterIfEx, RpcEpUnregister, RpcServerUseProtseqW, RpcServerRegisterIfEx, RpcServerInqDefaultPrincNameW, RpcServerRegisterAuthInfoW, RpcServerInqBindings, RpcEpRegisterW, RpcBindingVectorFree, RpcServerListen, RpcServerInqCallAttributesW

shlwapi.dll

PathFileExistsW, PathStripPathW, PathRemoveExtensionW, PathAddBackslashW

user32.dll

LoadStringW

userenv.dll

RegisterGPNotification, GetProfileType, CreateEnvironmentBlock, UnregisterGPNotification, DestroyEnvironmentBlock

version.dll

GetFileVersionInfoSizeW, VerQueryValueW, GetFileVersionInfoW

wtsapi32.dll

WTSQueryUserToken, WTSEnumerateProcessesW, WTSEnumerateSessionsW, WTSFreeMemory

Export table

ServiceMain

SvchostPushServiceGlobals

wscsvc.dll

Windows Security Center Service by Microsoft

Remove wscsvc.dll

Version:	5.1.2600.5512 (xpsp.080413-2108)
MD5:	bc71bc51dd57e792851d31795f3edbf1
SHA1:	e5787f9e1ad1653a0fa644a05c2740c8702972da
SHA256:	f83930f27662f49dbcdeb8aca1bb36ca0dedd31d744093bb48aa707767226b96

This is a Windows system installed file with Windows File Protection (WFP) enabled.

What is wscsvc.dll?

The WSCSVC (Windows Security Center) service monitors and reports security health settings on the computer. The health settings include firewall, antivirus, antispyware, Windows Update, User Account Control, and Internet settings. The service provides COM APIs for independent software vendors to register and record the state of their products to the Security Center service. The Action Center (AC) UI uses the service to provide notification alerts.

Overview

wscsvc.dll is loaded as dynamic link library that runs in the context of a process. This version is installed on Windows XP.

Details

File name:	wscsvc.dll
Publisher:	Microsoft Corporation
Product name:	Windows Security Center Service
Description:	Microsoft® Windows® Operating System
Typical file path:	C:\Windows\System32\wscsvc.dll
File version:	5.1.2600.5512 (xpsp.080413-2108)
Product version:	5.1.2600.5512
Size:	79 KB (80,896 bytes)
Build date:	4/14/2008 6:06 PM
Digital DNA
PE subsystem:	Windows Console
File packed:	No
Code language:	Microsoft Visual C++
.NET CLR:	No

More details

Behaviors

Hosted services

Runs as a shared service under the Windows svcHost

Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'
Shared name is 'wscsvc'

Distribution by Windows OS

OS version	distribution
Microsoft Windows XP	29.50%
Windows 8.1	16.00%
Windows 8	12.50%
Windows 8.1 Pro	6.50%
Windows 8 Pro	6.50%
Windows Vista Home Premium	6.50%
Windows 8 Single Language	4.00%
Windows 8.1 Single Language	3.00%
Windows 8.1 Pro with Media Center	2.50%
Windows 7 Home Premium	2.00%
Windows Vista Home Basic	2.00%
Windows 8 Enterprise	1.50%
Windows 8 Pro with Media Center	1.50%
Windows 7 Ultimate	1.00%
Windows 8.1 Pro Preview	1.00%
Windows 8 Enterprise N	0.50%
Windows 8.1 Enterprise Evaluation	0.50%
Windows 8.1 Enterprise	0.50%
Windows Developer Preview	0.50%
Windows 8 Enterprise Evaluation	0.50%
Windows 8 Pro N	0.50%
23 other Windows OS version

Distribution by country

United States installs about 42.71% of Windows Security Center Service.

Distribution by PC manufacturer

PC Manufacturer	distribution
Dell	24.82%
Lenovo	13.87%
Hewlett-Packard	10.95%
Toshiba	10.22%
ASUS	8.76%
Acer	8.03%
Sony	5.84%
Intel	4.38%
Compaq	3.65%
GIGABYTE	3.28%
American Megatrends	2.92%
Sahara	1.09%
Alienware	0.73%
Medion	0.73%
Samsung	0.73%

Remove Adware and Spyware Programs, FREE Download!