Explain the services that can be disabled in Windows XP

The service is actually a special application type in Win 2000/XP/2003, but it runs in the background, so we can't see it in the task manager. After installing Win XP, usually the system will start many services by default, some of which are ordinary user roots.

The service is actually a special application type in Win 2000/XP/2003, but it is running in the background, so we It is not visible in the Task Manager.

After installing Win XP, usually the system will start many services by default, some of which are not used by ordinary users. It not only occupies system resources, but also may be used by hackers.

View is enabled services

to Win XP, for example, first you have to as a user with Administrator privileges or log in using a system administrator account, and then in the & ldquo; running & rdquo; enter & ldquo; cmd.exe & rdquo; open a command line window, enter & ldquo; net start & rdquo; after the carriage return, it will display the service

the system is running in order to see each in more detail For information about the service, we can double-click "Services" in "Start → Control Panel & Rarr; Management Tools", or enter "Services.msc" in the "Run" dialog box to open the Service Settings window. br>

closed to re-enable the service

There are three service startup type:

1. Auto: If some useless service is set to automatically It will start with the randomizer, which will extend the system startup time. Services that are usually closely related to the system must be set to automatic.

2. Manual: It will only be started when it is needed.

3. Disabled: Indicates that this service will not start, even when it is needed, it will not be activated unless modified to the above two types.

If we want to shut down the service running, just select it and choose in the context menu & ldquo; Stop & rdquo; can be. But it may also run automatically or manually the next time you start the machine.

If the service is really useless, you can choose to disable the service. Select “Properties” from the context menu and select "Allow" in the "General →Startup Type" list. This service will be completely disabled.

If you need to restart it later, just select "Automatic" or "Manual" in this case; you can also start it by command line "net start  service name " “net start Clipbook”.

Services that must be banned

1.NetMeeting Remote Desktop Sharing: Allows authorized users to access each other on the network via NetMeeting. This service is not very useful for most individual users, and the opening of the service will also bring security problems, because the service will send the user name in clear text to the client connecting it, and the hacker's sniffing program is very These account information can be easily detected.

2.Universal Plug and Play Device Host: This service is for general plug-and-play devices. There is a security hole in this service, and computers running this service are vulnerable. An attacker who sends a fake UDP packet to a network with multiple Win XP systems may cause these Win XP hosts to attack the specified host (DDoS). In addition, if a UDP packet is sent to the system port 1900, and the address of the "Location" field is pointed to the charging port of another system, it may cause the system to enter an infinite loop, consuming all the resources of the system (required when installing hardware) Manually turned on).

3.Messenger: Commonly known as messenger service, computer users can use it for data exchange in the LAN (transfer Net Send and Alerter service messages between client and server, this service has nothing to do with Windows Messenger. If service Stop, Alerter messages will not be transmitted). This is a dangerous and annoying service. The Messenger service is basically used for enterprise network management, but spammers and spammers often use the service to post pop-up ads under the heading “Courier Service”. And this service has loopholes, and MSBlast and Slammer viruses use it for rapid propagation.

4.Terminal Services: Allows multiple users to connect and control one machine and display desktops and applications on remote computers. If you don't use Win XP's remote control feature, you can disable it.

5.Remote Registry: Enables remote users to modify the registry settings on this computer. The registry can be said to be the core content of the system. Generally, users do not recommend changing it themselves, let alone others to modify it remotely, so this service is extremely dangerous.

6.Fast User Switching Compatibility: under the multi-user application needs to provide management assistance. Windows XP allows fast switching between multiple users on a single computer, but this feature has a vulnerability. When you click "Start →Logout & Rarr; Fast Switch", enter a user repeatedly in the traditional login mode. When the name is logged in, the system considers it to be brute force and locks all non-administrator accounts. If you don't use it often, you can disable it. Or cancel “ Use Fast User Switching in “Control Panel →User Account →Change User Login or Logout Mode”.

7. Telnet: Allows remote users to log in to this computer and run programs, and supports a variety of TCP/IP Telnet clients, including UNIX and Windows-based computers. Another dangerous service, if started, remote users can log in, access local programs, and even use it to modify network settings such as your ADSL Modem. Unless you are a network professional or your computer is not being used as a server, be sure to disable it.

8.Performance Logs And Alerts: collection of local or remote computers based on preconfigured schedule parameters of performance data, and then writes the data to a log or triggers an alert. In order to prevent data from being searched by remote computers, it is strictly prohibited.

9.Remote Desktop Help Session Manager: If this service is stopped, Remote Assistance will be unavailable.

10.TCP /IP NetBIOS Helper: NetBIOS in Win 9X often use it to attack someone, do not need to file and print sharing for the users, this can also be disabled.

Services that can be banned

The above ten services are services that pose a greater threat to security. Ordinary users must disable it. There are also services that normal users can disable on demand:

1.Alerter: Notifies selected users and computers about system management level alerts. If you are not connected to the LAN and do not need to manage alerts, you can disable them.

2.Indexing Service: Indexes contents and properties of files on local and remote computers, providing quick access to documents. This service is of little use to individual users.

3.Application Layer Gateway Service: Sharing and Internet Connection Firewall supports third-party protocol plug-ins for Internet connection. If you don't have Internet Connection Sharing or Windows XP's built-in firewall enabled, you can disable this service.

4.Uninterruptible Power Supply: Manages the uninterruptible power supply connected to the computer. Users who do not have a UPS installed can disable it.

5.Print Spooler: Loads files into memory for printing later. If the printer is not installed, it can be disabled.

6.Smart Card: Manages the computer's read access to the smart card. Basically not used, you can disable it.

7.Ssdp Discovery Service: starting upnp devices on the home network auto-discovery. There are not many devices with upnp, and this service is useless for us.

8.Automatic Updates: Automatically update patches from the Windows Update network. Using the Windows Update function to upgrade, the speed is too slow, it is recommended that you download the patch to the local hard disk through the multi-threaded download tool, and then upgrade.

9.Clipbook: Enable “Clipboard Viewer Save information and share it with remote computers. If you do not want to share information with a remote computer, you can disable it.

10.Imapi Cd-burning Com Service: Imapi management CD recording, although this feature is built in Win XP, but most of us will choose professional burning software, and if you do not have a recorder installed, you can also prohibit it. The service.

11.Workstation: creating and maintaining services to remote client network connections. These connections will not be available if the service is stopped.

12.Error Reporting Service: services and applications running in non-standard environments while allowing error reporting. If you are not a professional, this error report is useless to you.

The following services are not useful for ordinary users. You can decide for yourself, such as: Routing and Remote Access, Net Logon, Network DDE, and Network DDE DSDM.