Import table
advapi32.dll
GetTokenInformation, ReportEventW, DeregisterEventSource, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, OpenProcessToken, LookupPrivilegeValueW, AdjustTokenPrivileges, RegOpenKeyExW, RegDeleteValueW, RegCloseKey, SetServiceStatus, CloseServiceHandle, OpenServiceW, OpenSCManagerW, RegDeleteKeyW, RegCreateKeyExW, RegQueryValueExW, RegSetValueExW, RegQueryInfoKeyW, CopySid, GetLengthSid, IsValidSid, SetSecurityDescriptorOwner, SetSecurityDescriptorGroup, RegisterEventSourceW, CreateServiceW, DeleteService, ControlService, RegEnumKeyExW, OpenThreadToken, RegisterServiceCtrlHandlerExW, StartServiceCtrlDispatcherW, ChangeServiceConfig2W, ChangeServiceConfigW, CryptDecrypt, CryptEncrypt, CryptReleaseContext, CryptDestroyHash, CryptDestroyKey, CryptDeriveKey, CryptHashData, CryptCreateHash, CryptAcquireContextW, RevertToSelf, FreeSid, EqualSid, AllocateAndInitializeSid, ImpersonateLoggedOnUser, DuplicateTokenEx, RegCreateKeyW, CreateProcessAsUserW, QueryServiceStatus
kernel32.dll
LCMapStringW, LCMapStringA, GetStartupInfoW, IsDebuggerPresent, SetUnhandledExceptionFilter, UnhandledExceptionFilter, TerminateProcess, ExitThread, VirtualQuery, GetSystemInfo, VirtualAlloc, VirtualProtect, MoveFileW, RtlUnwind, HeapSize, HeapDestroy, GetThreadLocale, GetLocaleInfoA, GetACP, SetEndOfFile, CreateFileA, GetDriveTypeA, CompareStringW, CompareStringA, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, SetStdHandle, GetConsoleMode, GetConsoleCP, GetCPInfo, GetStringTypeA, GetStringTypeW, VirtualFree, HeapCreate, ExitProcess, GetStdHandle, GetModuleFileNameA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, SetLastError, GetOEMCP, IsValidCodePage, GetTimeFormatA, GetDateFormatA, SetEnvironmentVariableA, SetEnvironmentVariableW, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineA, SetHandleCount, GetFileType, GetStartupInfoA, GetFullPathNameW, GetLastError, CloseHandle, GetCurrentProcess, CreateEventW, lstrlenW, WaitForSingleObject, RaiseException, InitializeCriticalSection, DeleteCriticalSection, SizeofResource, LockResource, LoadResource, FindResourceW, FindResourceExW, lstrcmpiW, GetModuleFileNameW, GetCurrentThread, Sleep, CreateThread, GetModuleHandleW, GetCurrentThreadId, InterlockedIncrement, InterlockedDecrement, SetEvent, FreeLibrary, MultiByteToWideChar, LoadLibraryExW, GetCommandLineW, EnterCriticalSection, LeaveCriticalSection, TerminateThread, FileTimeToSystemTime, FileTimeToLocalFileTime, FlushFileBuffers, WriteFile, CreateFileW, ReadFile, GetFileSize, DeleteFileW, FindClose, FindNextFileW, FindFirstFileW, CopyFileW, CreateDirectoryW, SetThreadPriority, GetTickCount, ResetEvent, WaitForMultipleObjects, GetThreadPriority, lstrlenA, GetProcAddress, LoadLibraryW, FormatMessageW, LocalFree, GetUserDefaultLangID, SetFileAttributesW, WideCharToMultiByte, SystemTimeToFileTime, GetSystemTime, LocalFileTimeToFileTime, GetLocalTime, GetTimeZoneInformation, GetVersionExW, ExpandEnvironmentStringsW, OpenProcess, GetDriveTypeW, SetFilePointer, GetCurrentProcessId, QueryPerformanceCounter, CancelWaitableTimer, CreateWaitableTimerW, SetWaitableTimer, GetProcessHeap, HeapFree, LoadLibraryA, HeapAlloc, GetSystemDirectoryA, HeapReAlloc, GetModuleHandleA, GetVersionExA, ReleaseMutex, GetCurrentDirectoryA, InterlockedExchange, GetSystemTimeAsFileTime, SetThreadExecutionState, GetSystemPowerStatus, CreateMutexW, VerifyVersionInfoW, VerSetConditionMask
ole32.dll
OleRun, CoInitializeEx, CoDisconnectObject, CoInitializeSecurity, CoCreateInstance, StringFromGUID2, CoTaskMemFree, CoRegisterClassObject, CoRevokeClassObject, CoTaskMemRealloc, CoTaskMemAlloc, CoUninitialize, CoInitialize
psapi.dll
EmptyWorkingSet
sbap.dll
SBAPSetUserKnownEntityCallback, SBAPClearCache, SBAPSetExtensionList, SBAPStartETW, SBAPStopETW, SBAPIsStarted, SBAPSetMonitorAction, SBAPSetMonitorActive, SBAPSetPromptCallback, SBAPSetNotifyCallback, SBAPSetReportCallback, SBAPSetLoggerCallback, SBAPStop, SBAPIsETWRunning, SBAPUninstallDriver, SBAPStart, SBAPAddAllowedPid
sbsdkxml.dll
_GetNVCollectionFactory@0, _GetAPEventSettingsFactory@0, _GetSystemEventSettingsFactory@0, _GetThreatEngineSettingsFactory@0, _GetNVScanResultsFactory@0, _GetQuarantineFileFactory@0, _GetQuarantineRecordFactory@0, _GetSoftwareUpdateSettingsFactory@0, _GetDefinitionUpdateSettingsFactory@0, _GetWSCSettingsFactory@0, _GetActiveProtectionSettingsFactory@0, _GetRegistrationSettingsFactory@0, _GetEmailAVSettingsFactory@0, _GetServiceSettingsFactory@0, _GetEmailAVEventSettingsFactory@0
sbte.dll
SBCSSetQuarantineActionCallbackW, SBCSEnableAV, SBCSEncryptFileW, SBCSCloseThreatEngine, SBCSSetLoggerCallbackW, SBCSOpenThreatEngineW, SBCSDeleteThreatW, SBCSQuarantineFileW, SBCSQuarantineFile2W, SBCSQuarantineBufferW, SBCSGetQuarantineRecordW, SBCSGetQuarantineRecordSizeW, SBCSQueryQuarantineIDW, SBCSRunScanner, SBCSGetScannerResultsSizeW, SBCSGetScannerResultsW, SBCSUnquarantineThreatW, SBCSQueryThreatDataW, SBCSApplyDefinitionUpdateW, SBCSGetDefReleaseDateW, SBCSGetDefVersionW, SBCSScanBuffer, SBCSRegisterBootTimeScanner, SBCSUnRegisterBootTimeScanner, SBCSGetBootTimeRegistrationStatus, SBCSSetCleanerProgressCallbackW, SBCSSetScanProgressStateCallback, SBCSSetScanProgressDetailCallbackW, SBCSScanFileTrace, SBCSGetFileSignatureW, SBCSPurgeQuarantine, SBCSAddPathToScanW, SBCSClearPathsToScan, SBCSSetScanOption, SBCSSetScanDescriptionW, SBCSSetLowRiskThreatDetection, SBCSResetScanOptions, SBCSAddUserKnownEntity, SBCSClearUserKnownEntityList, SBCSGetCleanerResultsW, SBCSGetCleanerResultsSizeW, SBCSRunCleanerW, SBCSAddThreatCategoryActionW, SBCSClearThreatCategoryActions, SBCSAddIgnoredThreat, SBCSClearIgnoredThreats
shell32.dll
SHCreateDirectoryExW, SHGetFolderPathW
shlwapi.dll
PathFileExistsW, PathRemoveFileSpecW
spursdownload.dll
ThreatUpdate, ThreatUpdateViaProxy, SetSpursLoggingCallback, ProxyGetNextVersionNumber, SpursProxyDownload, SpursDownload, GetNextVersionNumber
user32.dll
TranslateMessage, DispatchMessageW, GetMessageW, CharNextW, PostThreadMessageW, LoadStringW, CharUpperW, MessageBoxW, PeekMessageW, MsgWaitForMultipleObjects, UnregisterClassA, GetSystemMetrics, wsprintfW
version.dll
GetFileVersionInfoW, GetFileVersionInfoSizeW, VerQueryValueW
winhttp.dll
WinHttpReadData, WinHttpSetCredentials, WinHttpQueryAuthSchemes, WinHttpQueryHeaders, WinHttpReceiveResponse, WinHttpSendRequest, WinHttpOpenRequest, WinHttpCloseHandle, WinHttpConnect, WinHttpOpen, WinHttpQueryDataAvailable
winmm.dll
timeGetTime
ws2_32.dll
WSACloseEvent, WSASend, WSAGetOverlappedResult, WSAEnumNetworkEvents, WSAConnect, WSARecv, WSAResetEvent, WSAEventSelect, WSASocketW, WSACreateEvent, WSASetEvent
