即使你订阅了WindowsUpdate,系统也不能算是非常安全了,wu只查找系统的安全漏洞,office,sqlserver,iis等等的漏洞或安全设置就得自己动手了。试试MBSA吧。从看到这篇文章后,立即下载他并运行,根据微软的建议再调整一下机器。

MBSA通过下载wu列表,scan你的机器,比较后列出报表,并建议(只是建议)你如何调整他。报表信息类似:
Office Security Updates 3 security updates are missing. What was scanned Result details How to correct this

下载Microsoft Baseline Security Analyzer V1.2 http://www.microsoft.com/technet/security/tools/mbsahome.mspx

MBSA Version 1.2 includes a graphical and command line interface that can perform local or remote scans of Windows systems. MBSA runs on Windows 2000, Windows XP, and Windows Server 2003 systems and will scan for common system misconfigurations in the following products: Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, Internet Information Server (IIS), SQL Server, Internet Explorer, and Office. MBSA 1.2 will also scan for missing security updates for the following products: Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, IIS, SQL Server, IE, Exchange Server, Windows Media Player, Microsoft Data Access Components (MDAC), MSXML, Microsoft Virtual Machine, Commerce Server, Content Management Server, BizTalk Server, Host Integration Server, and Office.