Pragnaan Windows XP Security Check Utility

I regularly need to run security checks across a number of XP computers and I didn't want to spend time fiddling in all the cubbyholes of XP to determine how secure or insecure a given machine was. I wrote the following program to report:

1. XP Version / Service Pack Level
2. MD5 validate pre-logon EXEs sethc and utilman
3. Determine if AutoLogon is active
4. Report DEP / Dump File and Dr. Watson status
5. Report if "Scrap file" hidden file extensions have been disabled
6. Report if Explorer can view all hidden & system files
7. Report the partition formats for each partition? NTFS or FATxx
8. Report if the Windows paging file is cleared at shutdown
9. Report if weak LM password hashes are configured to be stored in the SAM
10. Report if Simple File Sharing enabled or disabled
11. List all computer system shares and highlight any non-admin shares
12. Report if the auto system shares switch has been disabled
13. Report if Remote Desktop is enabled or disabled
14. Report if Remote Assistance is enabled or disabled
15. Report if NetBIOS via TCP/IP has been disabled on all adapters
16. Report all active Network adapters, MAC and IP addresses
17. Compare TCP/IP parameters to recommended "hardened" values
18. Check System Services highlighting in red any services that are high security risks
19. Show all HKLM Run, HKCU Run, HKLM Logon Run, Startup Folder and System.ini Run Programs
20. Show all Task Scheduler jobs including hidden jobs
21. List all users, last login date/time, and highlight any with Admin privileges
22. Report if the Screen Saver is enabled, if it is password protected and the engagement time
23. Report the version of Internet Explorer installed
24. Report all IE BHOs
25. Report the version of Java installed
26. Report the version of Adobe Flash installed
27. Report if JavaScript and Flash are deactivated in Adobe Reader/Acrobat (versions 8-10)
28. Almost every item has a context sensitive menu to enable you to work with the specific item's configuration.

Right-clicking on most of the red action items will provide a context menu which can take you to the applicable Microsoft KB, CERT advisory or open RegEdit to the correct registry key.

Old screenshot with some information redacted

This program is free. You can download the program here.

Last update January 29, 2012, Version 1.8, ZIP file MD5 hash c5c99ee3b22b7b89bbaaba02909d2d37

See Also:

• Windows XP Security Checklist @ LabMice.net
• Windows XP x86 (32-bit) Service Pack 3 Service Configurations
• Optimizing Windows XP Services