Each service is listed as it is in Microsoft's Windows XP Professional. These should be similar in Microsoft's XP Home as well. Under each is the definition given in the Services Manager.

Turning off unnecessary services in Windows XP can greatly reduce your exploit risk, while improving system performance. It's a good time to inject that often there are all sorts of "download optimizers" and other cute programs that vendors like to push on users. Most of the time, installing such things slows your computer down at best. It could subject you to potential security risks. The first rule is "If you don't know you need it, you probably don't."

Unnecessary services don't just subject you to security risk. They also slow down the operation of your computer. Go ahead and turn that junk off and recapture your system from these resource hogs.

NOTE: Do Not use “msconfig” to disable services,

Type “sevices.msc” in the run box instead.

You get to services by going to Control Panel, Administrative Tools, then Services.

1. Click Start and then click Control Panel.

2. Click Performance and Maintenance. (If you do not see the Performance and Maintenance icon, you may be using Classic View. You can skip to step 3 below, but you must double-click Administrative Tools.)

3. Click Administrative Tools.

4. Double-click Services as shown in Figure.

Figure 1. Double-click Services

5. In the Startup type list double-click on which service you want to disable.

6. Click Stop, choose Disabled, and then click OK.

Windows XP comes with Terminal Services, IIS, and RAS that can open holes into your operating system. It's often convenient to enable Terminal Services to allow remote control functions for the help desk or administering servers, but you have to make sure it's configured correctly. There are also several malicious programs that can run quietly as services without anyone knowing. Be aware of all the services that all run on your servers and audit them periodically.

Below is a list of the common services found on Windows XP, though don't be surprised if the vast majority are not present on your system. This is an almost complete list from Microsoft. Please read this and keep the running services to only those that you need. A useful tip is that instead of disabling something you are unsure of, set it to manual. When you restart your machine if that service has started then it is probably required by one of your components or software products. If it is still OFF then consider disabling it for greater protection.

Here are a list of the services that you "may" see when in the Windows XP services control panel, along with our recommendation for use in a home environment - please note, that we do specify a HOME environment. These settings may not be appropriate for work-based workstations, though in all likelihood the majority of the recommendations apply there too.

This first part is a list of Suggested known recommended safe settings.

And below this list are the full listed recommendations by BlackViper.

NOTE: Turning off some of those services give you a false sense of security, at the most save 22MB of RAM

and can cripple XP if the wrong ones are disabled

Be Careful
You do so at your own risk.

Suggested Safe known services to turn off:

“A Special Thanks to TheTerrorist_75. Who helped in finding information for these settings:”

You may wish to consider disabling the following services:

Disable IIS - Luckily, IIS in not installed by default in Windows XP. If you enabled it during your installation, and aren't using it you should disable it. If you are using IIS on your workstation, you need to take extra precautions to lock it down and stay on top of security vulnerabilities specific to web services.

Netmeeting Remote Desktop Sharing

Remote Desktop Help Session Manager - If you haven't disabled this via Group Policy already

Remote Registry

Routing & Remote Access - if your not dialing into your machine.

SSDP Discovery Service - this disables the Universal PNP Service, which leaves TCP Port 5000 wide open.

Universal Plug and Play Device Host - This is designed to allow your computer to automatically connect to network-enabled appliances. Although there are no practical uses for this technology yet, several severe security flaws have already been discovered. Use the UnPlug and Play utility from Gibson Research to disable "Universal Plug and Play". Gibson's web site has additional information about why this is necessary

The following is a list of Services that you can Disable on most systems for increased performance:

Alerter
Distributed Link Tracking Client
Help and Support - (If you use Windows Help and Support leave this enabled)
Indexing Service
IPSEC Services
Messenger - (Shoot the Messenger and installing SP2 will disable this)
Portable Media Serial Number
Remote Registry Service
Secondary Logon
SSDP Discovery Service - (Unplug n' Pray will disable this)
Telnet
Upload Manager
Wireless Zero Configuration - (If you are on a wireless network leave this enabled)

The following is a list of Services that should always be set to Automatic:

Automatic Updates - (Required by Windows Updates)
Background Intelligent Transfer Service - (Required by Windows Updates)
COM+ Event System - (Required by BootVis and other Applications)
Cryptographic Services - (Required to confirm the signature of Windows system files, Protected Root Services and Key Services)
DCOM Server Process Launcher - (Required by Disk Defragmenter)
DHCP Client - (Required for Cable/DSL connections and Routers)
DNS Client - (Improves Internet Performance)
Event Log - (Required by Windows and cannot be Stopped)
Logical Disk Manager - (Required to manage and update your Harddrives)
Network Connections - (Required by Network Connections)
Plug and Play - (Required by your System Hardware, Never Disable This!)
Print Spooler - (Required by Printers)
Protected Storage - (Required to protected sensitive data and to prevent access by unauthorized services, processes, or users.)
Remote Procedure Call (RPC) - (Required by Windows, Never Disable This!)
Security Accounts Manager - (Required to store security information for local user accounts)
Security Center - (Notifies you of you Firewall and AntiVirus Status)
Shell Hardware Detection - (Required by the AutoPlay feature)
System Event Notification - (Required by various Applications)
System Restore Service - (Required by the System Restore feature)
Task Scheduler - (Required by the Windows Prefetcher, BootVis and Norton AV, Never Disable This!)
Themes - (Required by the new look of Windows XP)
Windows Audio - (Required for Sound)
Windows Management Instrumentation - (Required by Windows, Never Disable This!)

BlackVipers Recommended settings:

Windows XP Pro (and Home); Services to turn off:

You should see a long list of services, some running and some dormant. Use this checklist to help determine which services you can live without.

An * (asterisk) indicates changes from Service Pack 1a to Service Pack 2

Configuration Information

· Automatic~ With a service in this state, it will start at boot time. Some services, when no longer required, will also automatically stop when not needed. However, this is very rare. If you find you do not need a service, place it into Manual or Disable.

· Manual~ Manual mode allows Windows to start a service when needed. However, very few services will start up when required in Manual mode. If you find you need a service, place it in Automatic.

· Disabled~ This setting will stop a service from starting, even if needed. Errors in the Event Viewer will show up complaining of that fact. Some services, while Disabled, will constantly complain. However, this situation is taken care of if placed in Manual. The service descriptions, identifies those that should be in Manual verses Disabled.

Alerter - notifies selected users and computers of administrative alerts. If this service is turned off, applications that use the NetAlertRaise or NetAlertRaiseEx APIs will be unable to notify a user or computer (by a Message Box from the Messenger service) that the administrative alert took place.
”SAFE”~ Disabled “POWER USERS”~ Disabled “BARE BONES”~ Disabled

Application Layer Gateway Service - Provides support for 3rd party plug-ins for Internet Connection Sharing/Internet Connection Firewall. Required if using Internet Connection Sharing/Internet Connection Firewall to connect to the internet.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Application Management - Used for Assign, Publish and Remove software services. If you can not modify your software installation of certain applications, put this service in to Automatic or Manual.
”SAFE”~ Manual     “POWER USERS”~ Manual     “BARE BONES”~ Manual

Automatic Updates - Used to check up to see if there are any critical or otherwise updates available for download. It is very important that if you decide to disable this service, you check the Windows Update site often to ensure the latest patches are installed. Manual (and Automatic) update via Windows Update web site Requires Cryptographic Services to be running.
”SAFE”~ Automatic     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Background Intelligent Transfer Service - Used to transfer asynchronous data via http1.1 servers. According to Microsoft's site, Windows Update uses this "feature." It "continues" a download if you log off or shutdown the system (that is, when you log back in.) Manual update via Windows Update web site Requires Cryptographic Services to be running.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

ClipBook - enables the Clipbook Viewer to create and share "pages" of data to be viewed by remote computers.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

COM+ Event System - provides automatic distribution of events to subscribing (Component Object Model) COM components.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

COM+ System Application - as above
”SAFE”~ Manual    “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Computer Browser - maintains an up-to-date list of computers on your network, and supplies the list to programs that request it. The Computer Browser service is used by Windows-based computers that need to view network domains and resources. Not required unless you attach to a network of Windows computers.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Cryptographic Services - Confirms signatures of Windows files. You may always get a dialog box complaining about uncertified drivers if this is disabled. Required for Windows Update to function in manual and automatic mode. Windows Media Player may also require this service to function.
”SAFE”~ Automatic     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

DCOM Server Process Launcher *
”SAFE”~ Automatic* “POWER USERS”~ Automatic* “BARE BONES”~ Automatic*

DHCP Client - Dynamic Host Configuration Protocol Client manages network configuration by registering and updating IP addresses and Domain Name Server (DNS) names. If you are only dialling up to ISP via modem, cable, etc. If you have a network card in your PC and attach out via a router or sharing device then this may be required. Set to manual if unsure then check on reboot if it has started. If not then disable.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Disabled

Distributed Link Tracking Client - maintains links between the NTFS file system files within a computer or across computers in a network domain.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Distributed Transaction Coordinator - coordinates transactions that are distributed across multiple computer systems and/or resource managers, such as databases, message queues, file systems, or other transaction-protected resource managers.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

DNS Client - resolves and caches (Domain Name Server) DNS names. The DNS client service must be running on every computer that will perform DNS name resolution.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Error Reporting Service - Calls home to Microsoft when errors occur. Spyware?
”SAFE”~ Disabled “POWER USERS”~ Disabled “BARE BONES”~ Disabled

Event Log -logs event messages issued by programs and Windows. Event Log reports contain information that can be useful in diagnosing problems.
”SAFE”~ Automatic “POWER USERS”~ Automatic “BARE BONES”~ Automatic

Fast User Switching Compatibility –
”SAFE”~ Manual “POWER USERS”~ Disabled “BARE BONES”~ Disabled

Fax Service - enables you to send and receive faxes. Disabling this service will render the computer unable to send or receive faxes. Not used by most people.
This service is renamed to FAX * after the installation of SP2
”NOT INSTALLED”

FTP Publishing Service -Not available on Windows XP Home. Not installed by default on Windows XP Pro provides (file transfer protocol) FTP connectivity and administration through the Internet Information Service (IIS) snap-in. Big security risk!
”NOT INSTALLED”

HTTP SSL.*
”SAFE”~ Manual * “POWER USERS”~ Disabled * “BARE BONES”~ Disabled *

Help and Support –
”SAFE”~ Manual * “POWER USERS”~ Disabled “BARE BONES”~ Disabled

Human Interface Device Access - If all your devices function then disable it. Seems new with no devices for it as yet.
”SAFE”~ Disabled “POWER USERS”~ Disabled “BARE BONES”~ Disabled

IIS Admin - Not available on Windows XP Home. Not installed by default on Windows XP Pro allows administration of Internet Information Services (IIS). If this service is not running, you will not be able to run Web, FTP, NNTP, or SMTP sites, or configure IIS. See also World Wide Web Publishing Service. Not usually required unless you are running a local web server. If you are then make sure that if no external access is required that you firewall protects port 80 to only local traffic! Do not even consider running a public web server unless you are 100% sure of the implications - use an ISP server.
”NOT INSTALLED”.

IMAPI CD-Burning COM Service - Used for the "drag and drop" CD burn capability. You will need this service to burn CD's.If you still can not burn a CD with it on Manual, switch to Automatic and feel safe that it will only be used when "needed."
”SAFE”~ Manual *     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Indexing Service - indexes contents and properties of files on local and remote computers and provides rapid access to files through a flexible querying language.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Internet Connection Firewall and Internet Connection Sharing - provides network address translation (NAT), addressing and name resolution services for all computers on your home or small-office network through a dial-up or broadband connection. Not required unless you are sharing a dial-up connection with other PC's on your network - not recommended! Far better to use a router or gateway firewall software for this purpose. Consider using a higher specification firewall like Kerio Win route if sharing your connection.
Renamed to “Windows Firewall/Internet Connection Sharing *

IPSEC Services - manages IP security (IPsec) policy, starts the Internet Key Exchange (IKE) and coordinates IPsec policy settings with the IP security driver. Only leave on if you are using IPSec. Opens Port 500.
”SAFE”~ Automatic *     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Logical Disk Manager - watches Plug and Play events for new drives to be detected and passes volume and/or disk information to the Logical Disk Manager Administrative Service to be configured. If disabled, the Disk Management snap-in display will not change when disks are added or removed. Turn it on only if you add additional disks and then disable again.
”SAFE”~ Manual      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Logical Disk Manager Administrative Service - as above
”SAFE”~ Manual      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Message Queuing - A messaging infrastructure and development tool for creating distributed messaging applications for Windows. Not available on Windows XP Home. Not installed by default on Windows XP Pro. Most home users will never need this service.
”NOT INSTALLED”

Message Queuing Triggers - Not available on Windows XP Home. Not installed by default on Windows XP Pro. Required only if you use Message Queuing service.
”NOT INSTALLED”

Messenger - sends and receives messages to or from users and computers, or those transmitted by administrators or by the Alerter service. Nothing to do with MSN Messenger
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

MS Software Shadow Copy Provider - Used in conjunction with the Volume Shadow Copy Service. Microsoft Backup uses these services so you will need it if you use that. You will receive Event Log entry complaining about not having this service running if Disabled.
”SAFE”~ Manual      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Net Logon –
”SAFE”~ Disabled “POWER USERS”~ Disabled “BARE BONES”~ Disabled

NetMeeting Remote Desktop Sharing - allows authorized users to remotely access your Windows desktop from another PC over a corporate intranet by using Microsoft NetMeeting®. Very dangerous - allows remote access to your PC. Only use if absolutely essential and if running effective firewall.
”SAFE”~ Disabled “POWER USERS”~ Disabled “BARE BONES”~ Disabled

Network Connections -manages objects in the Network and Dial-Up Connections folder, in which you can view both network and remote connections.
”SAFE”~ Manual     “POWER USERS”~ Manual     “BARE BONES”~ Manual

Network DDE - Useless service unless you use remote ClipBook.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Network DDE DSDM - as above
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Network Location Awareness (NLA) - Required for use with the Internet Connection Sharing Service ”SAFE”~ Disabled *    “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Network Provisioning Service*

”SAFE”~ Disabled ** “POWER USERS”~ Disabled * “BARE BONES”~ Disabled *

NT LM Security Support Provider - enables users to log on to the network using the NTLM authentication protocol. If this service is stopped, users will be unable to log on to the domain and access services. NTLM is used mostly by Windows versions prior to Windows 2000.
”SAFE”~ Manual “POWER USERS”~ Manual “BARE BONES”~ Manual

Peer Name Resolution Protocol *

“NOT INSTALLED”

Peer Networking*

“NOT INSTALLED”

Performance Logs and Alerts - configures performance logs and alerts.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Plug and Play - enables a computer to recognize and adapt to hardware changes with little or no user input.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Automatic

Portable Media Serial Number - Retrieves serial numbers from portable music players connected to your computer.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Print Spooler - queues and manages print jobs locally and remotely. If you don't have a printer attached then disable.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Automatic

Protected Storage - provides protected storage for sensitive data, such as private keys, to prevent access by unauthorized services processes or users.
”SAFE”~ Automatic      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

QoS RSVP - provides network signaling and local, traffic-control, set-up functionality for (Quality of Service) QoS-aware programs and control applets.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Remote Access Auto Connection Manager - creates a connection to a remote network whenever a program references a remote DNS or NetBIOS name or address. Disabling the service has no effect on the rest of the operating system. You will have to set up connections to remote computers manually. Whilst this process is convenient, unauthorized applications (such as Trojans) could bring up your network connection without your explicit request. Far better to manually dial.
”SAFE”~ Manual      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Remote Access Connection Manager - creates a network connection.
”SAFE”~ Manual      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled.

Remote Desktop Help Session Manager - Manages and controls Remote Assistance. Could create a MAJOR security hole so disable it unless absolutely necessity.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Remote Procedure Call (RPC) - provides the endpoint mapper and other miscellaneous RPC services. Absolutely essential.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Automatic

Remote Procedure Call (RPC) Locator - Manages the RPC name service database. Useless service
”SAFE”~ Manual     “POWER USERS”~ Manual     “BARE BONES”~ Disable

Remote Registry Service - Not available on Windows XP Home. allows remote registry manipulation. This service lets users connect to a remote registry and read and/or write keys to it-providing they have the required permissions. Hacker could use this to attack other PC's.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Removable Storage - manages removable media drives and libraries. This service maintains a catalogue of identifying information for removable media used by a system, including tapes, CDs, and so on.
”SAFE”~ Manual      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled.

RIP Listener - Not installed by default.
”NOT INSTALLED”

Routing and Remote Access - offers routing services in local area and wide area network environments. Shouldn't be required on a home PC.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Secondary Logon - allows you to run specific tools and programs with different permissions than your current logon provides.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Security Accounts Manager -start-up of this service signals other services that the Security Accounts Manager subsystem is ready to accept requests.
”SAFE”~ Automatic      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Security Center *

”SAFE”~ Disabled * “POWER USERS”~ Disabled * “BARE BONES”~ Disabled *

Server - provides RPC support and file print and named pipe sharing over the network. The Server service allows the sharing of your local resources (such as disks and printers) so that other users on the network can access them. You should carefully consider the full implications of enabling this!
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Shell Hardware Detection - Used for the auto play of devices like memory cards, some CD drives, etc. Set to Automatic if you are experiencing problems with laptop docking stations.
”SAFE”~ Automatic      “POWER USERS”~ Disabled     “BARE BONES”~ Disabled.

Simple Mail Transport Protocol (SMTP) - Not available on Windows XP Home. Not installed by default on Windows XP Pro. Transports e-mail across the network. If you are using the built-in mail server for receiving mail then leave on automatic. If not, as would be usual in a home environment, then disable.
”NOT INSTALLED”

Simple TCP/IP Services - Not installed by default, implements support for a number of IP protocols.
”NOT INSTALLED”

Smart Card - manages and controls access to a smart card inserted into a smart card reader attached to the computer. If not using a smart card reader then disable.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Smart Card Helper - provides support for earlier smart card readers attached to the computer. As above.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

SNMP Service - allows incoming (Simple Network Management Protocol) SNMP requests to be serviced by the local computer.
”NOT INSTALLED”

SNMP Trap Service - receives trap messages generated by local or remote SNMP agents and forwards the messages to SNMP management programs running on the computer.
”NOT INSTALLED”

SSDP Discovery Service - Used to locate UPnP devices on your home network. Used in conjunction with Universal Plug and Play Device Host, it detects and configures UPnP devices on your home network. For security reasons Disable this service. Please read the section in the guide on UPnP. Please note that even the FBI recommends disabling and preferably uninstalling this!!
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

System Event Notification - tracks system events such as Windows logon network and power events. Notifies COM+ Event System subscribers of these events. SENS is an AutoStarted service that depends on COM+ EventSystem service.
”SAFE”~ Automatic     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

System Restore Service - Creates system snap shots or restore points for returning to at a later time. Big resource overhead! Forget about it!
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Task Scheduler - enables a program to run at a designated time. Can be very dangerous. If you must run scheduled tasks then consider disabling all users other than administrator from running tasks. Can create major security problems and allow a hacker to compromise your system by scheduling trojans to run.
”SAFE”~ Automatic     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

TCP/IP NetBIOS Helper Service - enables support for NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution. Only required if you need to share files with others.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

TCP/IP Printer Server - Not installed by default, but if needed, you may install it later off of the WinXP CD. Used for setting up a local UNIX print server. If you do not need this function, leave it uninstalled.
”NOT INSTALLED”

Telephony - provides Telephony API (TAPI) support for programs that control telephony devices and IP-based voice connections on the local computer and through the LAN on servers that are also running the service. If you never use a dial-up modem on a PC but connect via a router then disable.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Telnet - Not available on Windows XP Home and for good reason!! allows a remote user to log on to the system and run console programs by using the command line. Very dangerous. .
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Terminal Services - provides a multisession environment that allows client devices to access a virtual Windows 2000 Professional desktop session and Windows-based programs running on the server. Big security risk!
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Themes - Used to display all those new XP themes and colors on your desktop. Lots of space needed.
”SAFE”~ Automatic     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Uninterruptible Power Supply - manages communications with a UPS connected to the computer by a serial port.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Universal Plug and Play Device Host - Used in conjunction with SSDP Discovery Service, it detects and configures UPnP devices on your home network. For security reasons Disable this service immediately. Please read the section in the guide on UPnP. Please note that even the FBI recommends disabling and preferably uninstalling this!!
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Upload Manager - As with BITS, this service manages file transfers between clients and servers on the network. This service is NOT required for basic File and Print sharing. Removed after SP2
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Volume Shadow Copy - Used in conjunction with the MS Software Shadow Copy Provider Service. Microsoft Backup uses these services.
”SAFE”~ Manual    “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

WebClient - Disable this for security reasons.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Windows Audio - This service is Required if you wish to hear any audio at all. If your computer does not have a sound card, Disable this service.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Automatic

Windows Image Acquisition (WIA) - Used for some scanners and cameras. If, after Disabling this service, your scanner or camera fails to function properly, enable this service.
”SAFE”~ Manual     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Windows Firewall/Internet Connection Sharing

”SAFE”~ Manual “POWER USERS”~ Disabled “BARE BONES”~ Disabled

Windows Installer - installs, repairs, or removes software according to instructions contained in .MSI files provided with the applications
”SAFE”~ Manual     “POWER USERS”~ Manual    “BARE BONES”~ Manual

Windows Management Instrumentation - provides system management information. WMI is an infrastructure for building management applications and instrumentation shipped as an integral part of the current generation of Microsoft operating systems.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Automatic

Windows Management Instrumentation Driver Extension - Not available on Windows XP Home. Tracks of all of the drivers that have registered WMI information to publish.
”SAFE”~ Manual     “POWER USERS”~ Manual     “BARE BONES”~ Manual

Windows Time - sets the computer clock. W32Time maintains date and time synchronization on all computers running on a Microsoft Windows network. NTP can be dangerous. Not worth the risk.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Wireless Zero Configuration - Automatic configuration for wireless network devices. If you do not have any wireless network devices in use, Disable this service.
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

WMI Performance Adapter -??
”SAFE”~ Disabled     “POWER USERS”~ Disabled     “BARE BONES”~ Disabled

Workstation - provides network connections and communications. If this service is turned off, no network connections can be made to remote computers using Microsoft Networks. Use if you require drive-mapping connections to other Windows PC's.
”SAFE”~ Automatic     “POWER USERS”~ Automatic     “BARE BONES”~ Automatic

World Wide Web Publishing Service - Not available on Windows XP Home. Provides HTTP services for applications on the Windows platform. Required if you are running a web server, but consider fire walling such a local web server so it is not visible to the world. Use an ISP web server for greatest security. Most common entry point for hackers!
”NOT INSTALLED”

As you can see from the above, not very much is actually needed to keep your Windows XP installation functioning in a home environment. All the enabled services just pose an enormous security risk, bring little or no benefit, consume resources and can be safely turned off.

If you turn off all the services suggested above and try to use Automatic Updates via WindowsUpdate@Microsoft.com, you will likely see a message something like this:

Windows Update cannot continue because a required service application is disabled. Windows Update requires the following services:

“Automatic Updates” enables detection, downloading, and installation of critical updates for your computer.

“Background Intelligent Transfer Service” (BITS) enables faster, restartable downloading of updates.

“Event Log” logs Windows Update events for troubleshooting. To ensure that these services are enabled:"

It's easy to just go back to Services, and turn these services on as you need them. An operating system shouldn't need daily updates to run. And, the more services you run, the more likely you are to need updates