【 Weak current College 】 comprehensive interpretation of WindowsXP systems services

In optimizing Windowsxp systems, you need to close some less commonly used services, but in many service projects, they are what? can shut? this often plagued many novice. Here the collected this article on xp the detailed explanation of the system service, want to need to optimize the system's friends help.

1、Alerter

Alerter (warning) service of process name is Service.exe (that is, start this service runs in the background after the process name, you can see through the Task Manager, the same below). Alerter service feature is the WinXP will occur on the system and management-related events to alert (Alert) information transmitted to the computer on the network or user specified, for example when a printing error or a hard disk is full, this type of warning information from WinXP's warning service (AlerterService) collection, sent out. Although the Alerter service and no dependence on Messenger (Messenger) service, but the Alerter service must rely on the latter to send out information, start the Alerter service also must determine the Messenger service also in working condition, and the receiving computer must start the Messenger service. Since the Alerter service is running, the service user can send "pop-up (Pop-up)" information to other users, such information may be used to carry out an attack, such as persuading the user to modify the password, etc., thereby creating a security risk. At the same time, the service allows user account disclosure, may be used to password-guessing attack. So for a single user, or even home for the vast majority of small local area network, this feature can be disabled completely, not only saves system resources and speed up the startup speed, also improves the security of the machine.

2、ApplicationLayerGatewayService

Hereinafter referred to as "ALG" (application level gateway) for the process name is alg.exe, WinXPHome/Pro default installation startup type to manual. ALG also called proxy server (ProxyServer), is a network firewall from the function level classification. When the internal computer and external hosts connections, by proxy as internal computer and external hosts connections to relay. The benefits of using the ALG is hidden inside the host address and prevent external connection is not working properly, if the proxy server is not installed on the application design of agent, any part of this network service packets will not be able to pass the firewall. Popular points, down to the ALG itself, it is included with the Internet connection sharing/firewall specific control procedure, if you need to start both, this service is necessary. Of course, only one computer for the Internet family can consider disabling this service, however the effect of the built-in firewall WinXP is good, if not insist on using third-party firewall, or open it.

3、ApplicationManagement

AppMent (application management service) for the process name is Svchost.exe, WinXPHome/Pro default installation startup type to manual, do not have any dependent services. Starting from Win2000, Microsoft introduces an approach based on the MSI file format (application installation information package file) of a new, effective software management solution — that is, the application management component services (ApplicationManagement), it not only management software installation, removal, and you can use this service to modify, repair, existing applications that monitor file recovery and fault by demobilization exclude Basic, etc. Usually this service we maintain its default state.

May many friends all have the impression that ACDSee4.0 just released, because the installation producer considerations, did not consider the majority system also does not support MSI Setup format, the result had to go download and install an MSI WindowsInstaller secondary file to solve the problem. Usually the MSI file formats installed software is very good, for example, when you installthe OfficeXP after running the installation program, it will usually have the "Reinstall", "repair software" and "uninstall software" multiple option instead of the previously installed program that simply uninstall or reinstall. 4、AutomaticUpdates

Wuauserv (automatic update service) of the process name is Svchost.exe, WinXPHome/Pro default installation startup type to automatic, without any dependency service relationship. This is all very familiar with the system auto-update feature, do not more. Used Cat Internet has been friends remember to close the system properties are not enough, but will disable this service AutomaticUpdates. Then you need to update, enter directly in the IE WindowsUpdate web site address http://v4.windowsupdate.microsoft.com/zhcn/default.asp manual update.

5、BackgroundIntelligentTransferService

BITS (Background Intelligent Transfer Service) of the process name is Svchost.exe, WinXPHome/Pro default installation startup type to manual, dependent on the Workstation service RemoteProcedureCall,. Microsoft claims that BITS is able to utilize the remaining bandwidth to transfer a file, when the network is cut off or calculationMachine is restarted, the Background Intelligent Transfer Service will automatically be maintained on file transfer, when the network reconnects, the Background Intelligent Transfer Service will stop where we start to transfer files. In fact, this service is used to implement the HTTP1.1 to transmit information between the server, basically its application also supports automatic updates of resuming of file transfers. If you have disabled the AutomaticUpdates, keep it has no significance.

6、ClipBook

ClipSrv (Clipboard Viewer Services) of the process name is clipsrv.exe, WinXPHome/Pro default installation startup type to manual, dependent NetworkDDE service. ClipBook through NetworkDDE and NetworkDDEDSDM provides network dynamic data exchange service, available on the remote machine clip version, popular to say ClipBook is support clip version Viewer (ClipBookViewer) program that allows the clip page is on a remote computer to browse the ClipBook.

For example there is a large document engineering, from A, B, C and common development. A charge of Excel data part, responsible for Visio drawings part B, and C is responsible for the integration of the two parts of the document. C is often necessary for A, B copy of the data, stupid practice is to open A, B C at the network neighborhood on the shared documents folder, and then copy the relevant content. On Windows systems have a certain understanding of the user should be heard OLE this thing, above that of Excel and Visio drawing all the data that is independent of the OLE object, if A, B, C of 3 units of the ClipBook service on the machine is turned on, you can share these with ClipBook, C as long as the OLE objects in your document creation of OLE object links to A and B of Excel and Visio, A, B on their own work any change can be in C of compound documents automatically. This shows that the ClipBook is shared based on object, rather than the simple file sharing. It is also very easy to understand, this is a double-edged sword, a great convenience, but also brought about by the illegal remote access ClipBook clip page security risk. For the absence of such a similar work, and do not intend to use or rarely used remote desktop users, you can disable this service completely, as needed in the open.

7、COM+EventSystem

EventSystem (the COM + event system service) of the process name is Svchost.exe, WinXPHome/Pro default installation startup type to manual, dependent RemoteProcedureCall service. Software development for non-professional friends, COM + is a very easy to understand terms. Simply COM + is a software widget/component standards. Such as writing a software like building a House, and the doors and Windows, and other parts are in accordance with the criteria designed to seek timeand labor. The COM component that is Windows and doors, and other standard components, COM + is further extended to com, its specific meaning in this respect is not described in detail. Windows system is a typical message (event) processing type systems, many features are triggered by message, this creates a COM + EventSystem. We want to learn how simple it is to judge our own system for programs rely on this service. Check your system setup disk under "Programfiles\ComPlusApplications" directory, if nothing can turn this service off.

8、COM+SystemApplication

COMSysApp (COM + system application service) of the process name is Dllhost.exe, WinXPHome/Pro default installation startup type to manual, dependent RemoteProcedureCall service. Simply put, the COM + SystemApplication is COM + EventSystem specific performer, if you disable COM + EventSystem also natural disable it.