Import table
advapi32.dll
RegDeleteKeyW, RegDeleteValueW, RegOpenKeyExW, AdjustTokenPrivileges, LookupPrivilegeValueW, OpenProcessToken, SetSecurityDescriptorDacl, InitializeSecurityDescriptor, SetServiceStatus, DeregisterEventSource, ReportEventW, RegisterEventSourceW, CloseServiceHandle, OpenServiceW, OpenSCManagerW, RegCreateKeyExW, RegQueryValueExW, RegSetValueExW, RegQueryInfoKeyW, CopySid, GetLengthSid, IsValidSid, SetSecurityDescriptorOwner, SetSecurityDescriptorGroup, GetTokenInformation, CreateServiceW, DeleteService, ControlService, RegEnumKeyExW, OpenThreadToken, RegisterServiceCtrlHandlerExW, StartServiceCtrlDispatcherW, QueryServiceStatus, ChangeServiceConfig2W, ChangeServiceConfigW, CloseEventLog, CryptDestroyHash, CryptGetHashParam, CryptHashData, CryptCreateHash, CryptReleaseContext, CryptAcquireContextW, RevertToSelf, CreateProcessAsUserW, ImpersonateLoggedOnUser, DuplicateTokenEx, FreeSid, EqualSid, AllocateAndInitializeSid, RegCreateKeyW, CryptDecrypt, CryptEncrypt, CryptDestroyKey, CryptDeriveKey, RegCloseKey
kernel32.dll
DllMain
ole32.dll
CoDisconnectObject, CoTaskMemRealloc, CoInitialize, CoUninitialize, CoRevokeClassObject, CoRegisterClassObject, CoTaskMemFree, StringFromGUID2, CoCreateInstance, CoInitializeSecurity, CoInitializeEx, CoCreateGuid, OleRun, CoTaskMemAlloc
psapi.dll
EmptyWorkingSet
sbap.dll
SBAPStart, SBAPSetExtensionList, SBAPStartETW, SBAPStopETW, SBAPIsStarted, SBAPSetPromptCallback, SBAPSetNotifyCallback, SBAPSetReportCallback, SBAPStop, SBAPSetLoggerCallback, SBAPClearCache, SBAPSetMonitorAction, SBAPSetMonitorActive, SBAPAddAllowedPid, SBAPIsETWRunning, SBAPSetUserKnownEntityCallback, SBAPUninstallDriver
sbarva.dll
_ArvaSetBodyScannerCB@4, _ArvaSetQuarantineCB@4
sbhips.dll
SBHIPS_Start, SBHIPS_ClearProgramList, SBHIPS_Pause, SBHIPS_Resume, SBHIPS_GetState, SBHIPS_Stop, SBHIPS_AddProgram
sbte.dll
SBCSGetQuarantineRecordW, SBCSGetQuarantineRecordSizeW, SBCSQueryQuarantineIDW, SBCSUnquarantineThreatW, SBCSQueryThreatDataW, SBCSGetDefReleaseDateW, SBCSGetDefVersionW, SBCSApplyDefinitionUpdateW, SBCSScanBuffer, SBCSClearIgnoredThreats, SBCSAddIgnoredThreat, SBCSClearThreatCategoryActions, SBCSAddThreatCategoryActionW, SBCSResetScanOptions, SBCSSetLowRiskThreatDetection, SBCSQuarantineBufferW, SBCSSetScanOption, SBCSClearPathsToScan, SBCSAddPathToScanW, SBCSRunCleanerW, SBCSGetCleanerResultsSizeW, SBCSQuarantineFile2W, SBCSQuarantineFileW, SBCSDeleteThreatW, SBCSOpenThreatEngineW, SBCSSetLoggerCallbackW, SBCSGetCleanerResultsW, SBCSPurgeQuarantine, SBCSGetFileSignatureW, SBCSScanFileTrace, SBCSClearUserKnownEntityList, SBCSAddUserKnownEntity, SBCSSetScanProgressDetailCallbackW, SBCSSetScanProgressStateCallback, SBCSSetCleanerProgressCallbackW, SBCSGetBootTimeRegistrationStatus, SBCSUnRegisterBootTimeScanner, SBCSRegisterBootTimeScanner, SBCSSetQuarantineActionCallbackW, SBCSEnableAV, SBCSEncryptFileW, SBCSCloseThreatEngine, SBCSRunScanner, SBCSGetScannerResultsW, SBCSGetScannerResultsSizeW, SBCSSetScanDescriptionW, SBCSEnableRootkitEngine
shell32.dll
ShellExecuteExW, SHCreateDirectoryExW, SHGetFolderPathW
shlwapi.dll
UrlGetPartW, PathRemoveFileSpecW, PathFileExistsW, PathAppendW
spursdownload.dll
ThreatUpdateViaProxy, ProxyGetNextVersionNumber, SetSpursLoggingCallback, GetNextVersionNumber, SpursDownload, SpursProxyDownload, ThreatUpdate
user32.dll
wsprintfW, TranslateMessage, DispatchMessageW, UnregisterClassA, GetMessageW, CharNextW, PostThreadMessageW, LoadStringW, CharUpperW, MessageBoxW, GetSystemMetrics, PeekMessageW, MsgWaitForMultipleObjects
userenv.dll
DestroyEnvironmentBlock, CreateEnvironmentBlock
version.dll
VerQueryValueW, GetFileVersionInfoW, GetFileVersionInfoSizeW
winhttp.dll
WinHttpQueryDataAvailable, WinHttpReadData, WinHttpSetCredentials, WinHttpQueryAuthSchemes, WinHttpQueryHeaders, WinHttpReceiveResponse, WinHttpOpenRequest, WinHttpOpen, WinHttpSendRequest, WinHttpConnect, WinHttpCloseHandle
winmm.dll
timeGetTime
ws2_32.dll
WSAGetOverlappedResult, WSAEnumNetworkEvents, WSAConnect, WSARecv, WSAResetEvent, WSAEventSelect, WSACloseEvent, WSASend, WSASocketW, WSACreateEvent, WSASetEvent
