Filtering Entries based on Categories
The left hand side pane of the Autorun Analyzer interface displays a list of various types of the autorun items and the program groups. The number of items loaded in the respective category is displayed within parentheses beside each category name.
By default, all the autorun items loaded, are displayed in the main display pane. If you want to analyze the autorun items based on their categories or to analyze the items loaded by various program groups, you can filter the items, by selecting the respective category from the list.
|
Descriptions of Categories |
|
|---|---|
|
Category |
Description |
|
Everything |
Displays all the autorun items in the main display pane. |
|
Logon |
Displays only the autorun items identified from standard autostart locations such as the Startup folder for all users, the Registry Run keys, and standard application launch locations. |
|
Explorer |
Displays only the Explorer shell extensions from various installed applications, browser helper objects (BHO), explorer toolbars, active setup executions and shell execute hooks. |
|
Internet Explorer |
Displays only the BHOs, Internet Explorer toolbars and extensions. |
|
Scheduled Tasks |
Displays the modules loaded by tasks and applications scheduled from Windows Task Scheduler. |
|
Services |
Displays the modules loaded as Windows Services. |
|
Drivers |
Displays only the kernel-mode drivers that are in currently enabled on the system. |
|
Codecs |
Displays the autorun items loaded by various coders-decoders used for handling media files like audio and video files. |
|
Boot Execute |
Displays the autorun items loaded by applications, services and commands executed during the time period between the system boot-up and the user log-on. |
|
Image Hijacks |
Displays the modules loaded by image file execution options of various applications installed in your system. Most of the malware modify the image file execution options of a legitimate application and make themselves to run when the real application is started. Autorun Analyzer enables you to identify such illegitimate autorun items loaded by malware that affect the image file execution options of legitimate applications and to disable / remove them. |
|
AppInit |
Displays the application initialization Dynamic Link Library (DLL) modules loaded as autorun items. |
|
KnownDLLS |
Displays the DLL modules loaded by Windows for the start-up applications that reference those DLLs. |
|
Winlogon |
Displays the DLL modules registered for Winlogon notification of logon events. |
|
Winsock Providers |
Displays the DLL modules registered for Winsock protocols, including Winsock service providers. An anti-malware software do not scan Winsock Service Providers as it is treated as a safe zone. Taking advantage of this, some malware enter into your system as a Winsock Service Provider. But Autorun Analyzer can identify the DLL modules loaded by Winsock Service Providers and notify you if they are untrusted. It also enables you to remove those untrusted modules from your system. |
|
|
Displays the DLLs load into the print spoolers configured as services to start with Windows. Some malware find their entry through Print spooling service to start themselves automatically during system start-up. |
|
LSA Providers |
Displays the DLL modules registered by Local Security Authority (LSA) authentication, notification and security packages. |
|
Network |
Displays the DLL modules loaded by network connection services. |