You have clicked on  "GFI Software Anti Malware Service" that belongs to "GFI AntiMalware Common SDK Merge Module" made by "GFI Software"
Measures you can take regarding this program:
 | Click this button to terminate the program. The program will be stopped and the system tray icon will disappear. |  | Click this button to uninstall the program. The program will be removed from your computer following the proper uninstallation procedure. |  | Click this button to remove this program from startup, so it will NOT get started every time you turn on your computer. |
| Name | GFI Software | | Founded | 1992 | | Location City | San Gwann | | Location Country | Malta | | Industry | Computer security | | Home page | http://www.gfi.com |
|
GFI Software™ develops IT solutions for small to mid-sized businesses with generally up to 1,000 users. GFI® offers two main technology solutions: GFI MAX™, that enables managed service providers (MSPs) to deliver superior services to their customers, and GFI Cloud™, that empowers companies with their own internal IT teams to manage and maintain their networks via the cloud. Serving an expanding customer base of more than 200,000 companies, GFI’s product line also includes collaboration, monitoring and scanning networks for network security purposes, antivirus, anti-spam, patch management, faxing, mail archiving and web monitoring. GFI is a channel-focused company with thousands of partners throughout the world. The company has received numerous awards and industry accolades, and is a long time Microsoft Gold ISV Partner. |
Technical information: |
Click here for description | | Icon status | No tray icon | | Icon setting | Not in the system tray | | Executable file | C:\Program Files\GFI Software\VIPRE\SBAMSvc.exe | | Version | 5.0.5134 | | Parent process | C:\WINDOWS\system32\services.exe | | Can be uninstalled | Yes | | Encrypted | No | | Size on disk | 3.1 Mb | | Minimum recorded memory usage | 47.2 Mb | | Average recorded memory usage | 47.2 Mb | | Maximum recorded memory usage | 47.2 Mb | | Date when maximum memory usage occured | 3/25/2012 12:07:05 PM | | Minimum recorded CPU usage | 0% | | Average recorded CPU usage | 0% | | Maximum recorded CPU usage | 2% | | Date when maximum CPU usage occured | 3/25/2012 12:07:10 PM | | Started at | 3/25/2012 11:27:52 AM | | Total CPU time | 63 seconds | | Imported functions | [-] Imported from SBTE.dllSBCSSetStringOption
SBCSGetScannerResultsW
SBCSGetScannerResultsSizeW
SBCSRunScanner
SBCSIsFileGood
SBCSClearUserKnownEntityList
SBCSAddUserKnownEntity
SBCSSetScanProgressDetailCallbackW
SBCSResetScanOptions
SBCSSetScanProgressStateCallback
SBCSSetCleanerProgressCallbackW
SBCSGetBootTimeRegistrationStatus
SBCSUnRegisterBootTimeScanner
SBCSRegisterBootTimeScanner
SBCSScanBuffer
SBCSApplyDefinitionUpdateW
SBCSSetScanDescriptionW
SBCSGetDefReleaseDateW
SBCSScanFileTrace
SBCSQueryThreatDataW
SBCSUnquarantineThreatW
SBCSQueryQuarantineIDW
SBCSGetQuarantineRecordSizeW
SBCSGetQuarantineRecordW
SBCSQuarantineBufferW
SBCSSetScanOption
SBCSEnableFileCache
SBCSClearPathsToScan
SBCSQuarantineFile2W
SBCSQuarantineFileW
SBCSDeleteThreatW
SBCSPurgeQuarantine
SBCSSetLoggerCallbackW
SBCSOpenThreatEngineW
SBCSSetQuarantineActionCallbackW
SBCSEnableAV
SBCSEncryptFileW
SBCSCloseThreatEngine
SBCSAddPathToScanW
SBCSSetLowRiskThreatDetection
SBCSEnableRootkitEngine
SBCSClearIgnoredThreats
SBCSAddIgnoredThreat
SBCSGetFileSignatureW
SBCSClearThreatCategoryActions
SBCSAddThreatCategoryActionW
SBCSRunCleanerW
SBCSGetCleanerResultsSizeW
SBCSGetCleanerResultsW
SBCSGetDefVersionW
[-] Imported from sbap.dllSBAPStartVolumeWatcher
SBAPStopVolumeWatcher
SBAPStart
SBAPSetExtensionList
SBAPIsStarted
SBAPStartETW
SBAPStopETW
SBAPSetPromptCallback
SBAPSetNotifyCallback
SBAPSetReportCallback
SBAPStop
SBAPSetLoggerCallback
SBAPClearCache
SBAPSetMonitorAction
SBAPSetMonitorActive
SBAPAddAllowedPid
SBAPIsETWRunning
SBAPSetUserKnownEntityCallback
SBAPUninstallDriver
[-] Imported from SBArva.dllImported by ordinals:
1,4,5,7,9,11,12,13,14,16,17,18
[-] Imported from WINHTTP.dllWinHttpSetCredentials
WinHttpConnect
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpQueryAuthSchemes
WinHttpQueryHeaders
WinHttpOpen
WinHttpCloseHandle
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpOpenRequest
[-] Imported from WS2_32.dllFreeAddrInfoW
WSASocketW
WSAGetOverlappedResult
WSACreateEvent
WSASetEvent
WSAEventSelect
WSAConnect
WSAEnumNetworkEvents
WSASend
WSAResetEvent
WSARecv
WSACloseEvent
GetAddrInfoW
Imported by ordinals:
2,3,4,6,7,8,9,10,11,12,13,15,16
18,19,23,51,52,55,56,111,112,115
116,151
[-] Imported from KERNEL32.dllLCMapStringW
GetStringTypeExW
GetUserDefaultLCID
HeapReAlloc
InitializeCriticalSection
GetSystemInfo
SetWaitableTimer
CreateWaitableTimerW
CancelWaitableTimer
QueryPerformanceCounter
LoadLibraryA
InterlockedCompareExchange
InterlockedExchange
TlsGetValue
TlsSetValue
CreateMutexA
HeapDestroy
HeapSize
GetStringTypeW
EncodePointer
DecodePointer
RtlUnwind
ExitThread
VirtualProtect
VirtualAlloc
VirtualQuery
GetSystemTimeAsFileTime
GetTimeFormatW
GetDateFormatW
HeapSetInformation
GetStartupInfoW
FindFirstFileExW
ResumeThread
GetDriveTypeA
FindFirstFileExA
WriteConsoleW
GetFileType
GetStdHandle
GetCPInfo
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitProcess
HeapCreate
TlsFree
SetLastError
IsProcessorFeaturePresent
GetLocaleInfoW
GetACP
GetOEMCP
IsValidCodePage
SetEnvironmentVariableA
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFullPathNameW
GetFileInformationByHandle
PeekNamedPipe
GetCurrentDirectoryW
GetConsoleCP
GetConsoleMode
HeapFree
GetFullPathNameA
SetStdHandle
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetEndOfFile
CompareStringW
GetLongPathNameW
Process32NextW
Module32NextW
Module32FirstW
Process32FirstW
CreateToolhelp32Snapshot
GetFileTime
DeleteFileA
CreateFileA
GetSystemDirectoryA
DuplicateHandle
TlsAlloc
GetCurrentProcessId
GetModuleHandleA
GetModuleFileNameA
FreeLibrary
GetCurrentProcess
GetProcAddress
LoadLibraryW
CloseHandle
WaitForSingleObject
CreateProcessW
GetLastError
CreateEventW
SetEvent
OpenEventW
lstrlenW
RaiseException
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
GetModuleHandleW
lstrcmpiW
GetModuleFileNameW
GetCurrentThread
Sleep
CreateThread
GetCurrentThreadId
InterlockedDecrement
MultiByteToWideChar
LoadLibraryExW
GetCommandLineW
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
FileTimeToSystemTime
FileTimeToLocalFileTime
TerminateThread
GetThreadPriority
SetThreadPriority
GetSystemPowerStatus
FormatMessageW
CreateDirectoryW
FlushFileBuffers
WriteFile
CreateFileW
GetTickCount
DeleteFileW
FindClose
FindNextFileW
FindFirstFileW
CopyFileW
SetFileAttributesW
GetFileAttributesW
LocalFree
WaitForMultipleObjects
GetUserDefaultLangID
ReleaseMutex
ResetEvent
CreateMutexW
VerifyVersionInfoW
VerSetConditionMask
CreateEventA
WideCharToMultiByte
lstrlenA
ReadFile
GetFileSize
SystemTimeToFileTime
GetSystemTime
LocalFileTimeToFileTime
GetLocalTime
GetTimeZoneInformation
SetFilePointer
MoveFileW
GetVersion
GetVersionExW
ExpandEnvironmentStringsW
OpenProcess
GetEnvironmentVariableW
GetDriveTypeW
LocalAlloc
GetProcessHeap
HeapAlloc
SetThreadExecutionState
GetVersionExA
[-] Imported from USER32.dllDispatchMessageW
GetMessageW
PostThreadMessageW
LoadStringW
CharNextW
CharUpperW
MessageBoxW
GetSystemMetrics
PeekMessageW
MsgWaitForMultipleObjects
wsprintfW
TranslateMessage
[-] Imported from ADVAPI32.dllReportEventW
RegCloseKey
RegDeleteValueW
RegOpenKeyExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetServiceStatus
DeregisterEventSource
RegisterEventSourceW
CloseServiceHandle
OpenServiceW
OpenSCManagerW
RegCreateKeyExW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegQueryInfoKeyW
CopySid
GetLengthSid
IsValidSid
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
GetTokenInformation
CreateServiceW
DeleteService
ControlService
RegEnumKeyExW
OpenThreadToken
RegisterServiceCtrlHandlerExW
StartServiceCtrlDispatcherW
QueryServiceStatus
ChangeServiceConfig2W
ChangeServiceConfigW
CloseEventLog
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptReleaseContext
CryptAcquireContextW
RevertToSelf
CreateProcessAsUserW
ImpersonateLoggedOnUser
DuplicateTokenEx
AddAccessAllowedAce
InitializeAcl
MakeSelfRelativeSD
FreeSid
AllocateAndInitializeSid
RegCreateKeyW
EqualSid
CryptDecrypt
CryptEncrypt
CryptDestroyKey
CryptDeriveKey
RegEnumValueW
[-] Imported from ole32.dllCoRegisterClassObject
CoTaskMemRealloc
CoInitialize
CoUninitialize
CoRevokeClassObject
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoAddRefServerProcess
CoReleaseServerProcess
CoInitializeSecurity
CoDisconnectObject
CoInitializeEx
CoCreateGuid
CoSetProxyBlanket
OleRun
CoTaskMemAlloc
[-] Imported from OLEAUT32.dllImported by ordinals:
2,4,6,7,8,9,12,94,114,149,161,163
184,185,186,200,277,331
| | Some relevant texts from the exe file | [-] Click here to hide detailshttp://ocsp.verisign.com0?
https://www.verisign.com/rpa0
http://crl.verisign.com/pca3.crl0)
http://ocsp.verisign.com01
http://logo.verisign.com/vslogo.gif0
https://www.verisign.com/cps0*
0http://crl.verisign.com/ThawteTimestampingCA.crl0
http://ocsp.verisign.com0
http://crl.verisign.com/tss-ca.crl0
file:///etc/xml/catalog
http://www.w3.org/2001/XMLSchema-instance
http://www.w3.org/2001/XMLSchema
http://relaxng.org/ns/structure/1.0
http://www.w3.org/2000/xmlns/
file://localhost/
http://www.w3.org/TR/REC-html40/loose.dtd
http://www.w3.org/XML/1998/namespace
http://schemas.xmlsoap.org/soap/encoding/
http://schemas.xmlsoap.org/soap/envelope/
http://localhost/TNFileTransfer/TransferFile
http://localhost/TNFileTransfer/
!This program cannot be run in DOS mode.
tU<(tQ<)tM<*tI<+tE<,tA<;t=<=t9<:t5<@t1</t-<?t)<[t
tY<(tU<)tQ<*tM<+tI<,tE<;tA<=t=<:t9<@t5</t1<?t-
Failed in starting process commandLine<
WaitForSingleObject returned WAIT_OBJECT_0
ProcessUtils::CreateNewProcess
s> waitTime<
Global\SBAMServiceExistsEvent
RegOpenKeyEx failed deleting sbamui run key value.
RegDeleteValue failed with return code [
DeleteRunKeyValue
SBAMUI run key value not found.
The token does not have the specified privilege.
AdjustTokenPrivileges (
s) failed.
LookupPrivilegeValue (
Failed OpenProcessToken.
InitSecurityAttribs
SetSecurityDescriptorDacl failed
InitializeSecurityDescriptor failed
Initialized IPC security attributes
InitSecurity
Failed to initialize IPC security attributes
Global\SBAMPIMServiceStoppingEvent
Received a PBT_APMSTANDBY event.
Received a PBT_APMQUERYSTANDBY event.
Received a PBT_APMQUERYSUSPEND event.
Received a PBT_APMRESUMESTANDBY event.
Received a PBT_APMRESUMESUSPEND event.
Received a PBT_APMRESUMECRITICAL event.
Received a PBT_APMRESUMEAUTOMATIC event.
CSBAMSvcModule::OnPowerEvent
HKEY_CLASSES_ROOT
HKEY_CURRENT_USER
HKEY_LOCAL_MACHINE
HKEY_USERS
HKEY_PERFORMANCE_DATA
HKEY_CURRENT_CONFIG
CSBAMSvcModule::OnPause
Pausing the service.
CSBAMSvcModule::OnContinue
Continue the service.
Bad service request
Could not start service
Could not open Service Manager
Could not delete service
Could not stop service
Could not open service
CSBAMSvcModule::UpdateHint
Updated checkpoint [
d] and ServiceStatus is [
Exiting UpdateStatusThreadProc.
UpdateStatusThreadProc
Entering UpdateStatusThreadProc.
\Implemented Categories
\Required Categories
FUnRegisterTypeLibForUser
OLEAUT32.DLL
RegisterTypeLibForUser
Started update_status_thread_handle thread.
CSBAMSvcModule::StartUpdateStatusThread
CSBAMSvcModule::OnStop
Stopping the service.
Hit default case, calling OnUnKnownRequest.
SERVICE_CONTROL_POWEREVENT.
SERVICE_CONTROL_SHUTDOWN.
SERVICE_CONTROL_INTERROGATE.
SERVICE_CONTROL_CONTINUE.
SERVICE_CONTROL_PAUSE.
SERVICE_CONTROL_STOP.
CSBAMSvcModule::HandlerEx
HandlerEx dwOpcode=[
Module_Raw
LocalService
Finished stopping the controllers.
Stopping the controllers.
Returned from Run().
Calling Run().
Running as a COM Server. Not launching tray app.
Running in Safe Mode. Not launching tray app.
Finished starting the controllers.
Starting the controllers.
Renamed the old scan history folder (
ScanHistory
SetPrivilege() SE_RESTORE_NAME failed.
SeRestorePrivilege
SetPrivilege() SE_BACKUP_NAME failed.
SeBackupPrivilege
CoInitializeSecurity() of the service succeeded.
CSBAMSvcModule::Run
CoInitializeSecurity() failed. HR=0x
Mscoree.dll
CSBAMSvcModule::ServiceMain
Service stopped.
CSBAMSvcModule::ParseCommandLine
Waiting for service to stop.
ISBScanControlEvents
Unknown exception!
CSBScanControl::Pause
CSBScanControl::Resume
CSBScanControl::GetScanState
ConfigXml is NULL
CSBScanControl::GetConfig
CSBScanControl::GetLastScanResultsPath
CSBScanControl::RegisterBootTimeScanner
CSBScanControl::UnRegisterBootTimeScanner
CSBScanControl::GetBootTimeRegistrationStatus
CSBScanControl::GetScanCounts
CSBScanControl::GetCurrentScanType
CSBScanControl::ResetStickyState
Service CoClass
CSBScanControl::PurgeHistory
CSBScanControl::OnStateChangeEvent
CSBScanControl::OnScanDetailEvent_Ex
CSBScanControl::OnScanDetailEvent
CSBScanControl::OnCleanerProgressEvent
CSBScanControl::OnScanControlConfigChangeEvent
CSBScanControl::Clean
CSBScanControl::SetConfig
CSBScanControl::ScanFile
CSBScanControl::GetFileSignature
CSBScanControl::DeleteHistoryFile
CSBScanControl::GetNextScheduledScanDateTime
CProxy_ISBService
vents<class CSBService>::Fire_ServiceStateCB
QCSBService::Suspend
CSBService::Resume
CSBService::GetConfig
CSBService::GetProductVersion
CSBService::GetServiceState
CSBService::SetStateRestart
CSBService::QueryErrorState
CSBService::ClearErrorState
CSBService::QuerySKU
CSBService::StopClients
CSBService::ReloadSkuConfigData
CSBService::SendMsgToClients
CSBService::OnServiceStateEvent
CSBService::OnPrivateConfigChangeEvent
CSBService::OnServiceConfigChangeEvent
CSBService::OnSystemErrorStateChange
CSBService::OnSystemEventNotifyCB
CSBService::OnSendMsgToClientsCB
CSBService::SetCompanyProduct
CSBService::GetCompanyProduct
CSBService::GetApplicationFolder
CSBService::SetConfig
CSBService::GetInstallationFolder
CSBService::GetPrivateConfig
CSBService::SetPrivateConfig
CSBService::ClientLogSystemEvent
CSBService::FPFileTransfer
CSBService::FPQuarTransfer
CSBService::GetRunningProcsList
Already stopping. Ignoring this stop request.
CSBService::Stop
CSBServiceImpl::SetCoClassPtr
Setting the this pointer for the Service CoClass [
OpenService for (
CSBServiceImpl::StopServiceViaSCM
Checking for change in service sleep state.
CSBServiceImpl::Wake
Checking for change in service wake state.
HKLM\Software
HKLM\Software\SBAMSvc
Retrieved Enterprise Product Code value [
t get Enterprise Product Code value under
key. This is not an Enterprise agent.
Service thread stopped.
t terminate the Service thread.
Setting quit event for service.
Set the Service thread priority to
d. This should be THREAD_PRIORITY_NORMAL.
CSBServiceImpl::StopThread
CSBServiceImpl::IsSystemOnBattery
CSBServiceImpl::SystemHasBattery
The power status is
CSBServiceImpl::GetErrorState
Service ErrorState is currently [
Clear error state called but the Service isn
CSBServiceImpl::ClearErrorState
CSBServiceImpl::StopClients
CSBServiceImpl::SendMsgToClients
A client is sending a message of type
u] to all other clients.
Threat engine closed.
CSBServiceImpl::CloseThreatEngine
Failed closing threat engine.
ThreatEngine
CSBServiceImpl::RemoveInjectedDlls
wxvault.dll
CSBServiceImpl::IsInstalledButNotRebooted
InstalledButNotRebooted
SBAMSvcVolatile
Failed to OpenService on (
SBAMSvc stopped.
t stop in time.
SBAMSvc not done stopping yet...
CSBServiceImpl::WaitForServiceToStop
Failed to open SCM.
Invalid company or product names.
value under
CSBServiceImpl::PersistCompanyProduct
s> and product <
s> names persisted
The QUIT event is set, letting this function exit.
Scheduled update or scan is starting now (
s), the last time we woke from sleep was (
s), tNow - tWakeTime = [
CSBServiceImpl::WaitForServiceToWake
GHave not already sent this Threat file <
s> to ThreatNet.
Threat file <
CSBServiceImpl::HasAlreadyBeenSentToThreatNet
Unable to save company <
CSBServiceImpl::SetCompanyProduct
Saved company <
t get product version from CFileVersionInfo.
CSBServiceImpl::GetProductVersion
version is <
t create default
AntiMalware
Created default
GFI Software
CSBServiceImpl::RetrieveCompanyProduct
key. Creating default values.
t support that setting.
ChangeServiceConfig2 for (
ChangeConfigService for (
CSBServiceImpl::SetSvcAutoStart
winhttp.dll
CSBServiceImpl::GetCompanyProduct
s> names retrieved.
Converted Threat Name (
s) to valid file name.
CSBServiceImpl::ToValidName
s) to make sure it is valid file name.
t get AppData path from OS.
company name string empty.
CSBServiceImpl::CalculateAppPath
\AntiMalware
Wrote data of length <
d> into file path <
d> but expected to write <
d>. Write file operation failed, file incomplete.
Failed writing data into file <
s>. Write file operation failed.
Failed writing BOM into file path <
t open file path <
CSBServiceImpl::WriteThreatDataToFile
t get local time from system.
GetBadActorInfo
s> csOriginalThreatFilepath=<
Tray Execute
CSBServiceImpl::LaunchTrayApps
The Tray(s) were successfully executed
SBAMTray.exe
CSBServiceImpl::SetInstallDirEnv
t get the installation folder. Unable to set <
s> environment variable.
CSBServiceImpl::GetApplicationFolder
Failed building application data path.
Remembering file path <
t send it to ThreatNet again.
CSBServiceImpl::MarkAsSentToThreatNet
s> for threat <
t Suspicious. Nothing to transfer.
Unable to transfer suspicious file (
s) from APEventID (
s). One or both of the parameters is empty.
Error encrypting Suspicious file <
s>. ThreatNet will not be updated.
Error removing file <
Suspicious threat file <
s> transfered to ThreatNet.
CSBServiceImpl::ProcessSuspiciousItem
s> to ThreatNet. ThreatNet will not be updated.
CSBServiceImpl::PurgeThreatNetFolder
Could not remove old Threatnet file <
s>. File is orphaned on the disk.
quarantine\
quarantine\QR{*.xml
Created FPF zip file (
s) for transfer to Sunbelt.
Error renaming the temp FPF zip file (
Error adding FP file (
s) to zip file (
s). FP file will not be sent to Sunbelt.
CSBServiceImpl::FPFileTransfer
APEventXML doesn
GetQuarantineFilePathFromID didn
t return a path for Quarantine ID (
s). Threat file will not be sent to ThreatNet.
Quarantined threat file <
File transfer operation failed sending file <
Error copying file <
CSBServiceImpl::ProcessQItem
t a Quarantine item for APEventID (
s) might be a suspicious item that wasn
t quarantined.
quarantineName
Error adding FP Quarantine trace file (
Error adding FP Quarantine Meta Data file (
TEMPTRANSFERFILE
s). Threat file will not be sent to Sunbelt.
CSBServiceImpl::FPQuarTransfer
Failed to serialize
Error serializing
Bad argument; pXmlBuf is NULL.
Failed to deserialize
Error deserializing
SbXml::InitObjectFromXmlBufferAndLog
private config
CSBServiceImpl::GetPrivateConfigObject
Config file data may be corrupted.
While saving the Private Config File (
s), InitObjectFromXmlBufferAndLog failed.
s), SaveToFileAndLog failed.
CSBServiceImpl::SetPrivateConfig
While trying to write Service Config File (
s), received error.
Unable change attributes on the config file:
the Service Config object
CSBServiceImpl::SetConfig
ServiceConfig.xml
s counter to
CSBServiceImpl::IncrementTodayWithAmount
Converting ProcessList into XML String
Entering RunningProcsList for 32 bit OS.
Failed to retreive the RunningProcsList at (
Retreived the RunningProcsList at (
\ProcessList
d Process64.exe to enumerate the 64 bit processes.
\x64\Process64.exe
CSBServiceImpl::GetRunningProcsList
Entering RunningProcsList for 64 bit OS.
Error while reading the Private Config File (
s). Config file may not exist or is corrupted.
CSBServiceImpl::GetPrivateConfig
While reading the Service Config File (
CSBServiceImpl::GetConfigObject
CountScans.XML
CountCleanedScans.XML
CountCleanedAP.XML
CountCleanedEmailAV.XML
CountBlockedByFirewall.XML
CSBServiceImpl::SetThreatEngineAVFlag
Set ThreatEngine EnableAV flag to FALSE.
Could not set the ThreatEngine EnableAV flag.
Set ThreatEngine EnableAV flag to TRUE.
CSBServiceImpl::AllowAutomaticInternetAccess
Internet access is
Opened Threat Engine.
t set threat engine
s Quarantine callback. Operation failed.
t open threat engine.
s log callback. Operation failed.
Setting quarantine path to <
Quarantine
Definitions
CSBServiceImpl::OpenThreatEngine
CSBServiceImpl::ShouldSavePower
Beta Vendor
SBAMUIConfig.xml
Logger initialized.
SBAMThreatEngineLog
Logging may not be working as expected.
CSBServiceImpl::InitializeLogfile
nything to ThreatNet.
CSBServiceImpl::SendToThreatNet
CSBServiceImpl::GetConfig
CSBServiceImpl::OpenThreatEngineThread
Error opening the Threat Engine.
Failed to load the resource DLL <
s>. SKU specific items will not be loaded.
SoftwareUpdate config object
threat definition object
Setting AV to OFF in the config file.
Setting AV to ON in the config file.
Setting Long Product Name (
Setting Enterprise Long Product Name (
the Scan Config object
Error setting Company (
s). Cannot set sku specific config values.
CSBServiceImpl::LoadSkuConfigData
SBAMRes.dll
Saving the system event data.
CSBServiceImpl::LogSystemEvent
CSBServiceImpl::ReloadSkuConfigData
CSBServiceImpl::ClientLogSystemEvent
A client is logging a system event of type
d for subsystem
Suspend, stopped all controllers.
CSBServiceImpl::Suspend
Suspend, stopping all controllers.
APEvent xml file <
CSBServiceImpl::TransferApEventItem
s>. There are no FP files to send to ThreatNet.
Could not delete FP file <
File transfer operation failed sending FP file <
s> to Sunbelt.
Found FP file to send to ThreatNet <
Could not unlink Threatnet file <
InitObjectFromXmlFileSimply() failed
s>. Looking for Suspicious file.
Found APEvent xml file to send to ThreatNet <
d APEvent xml files to send to ThreatNet.
Found scan results file to send to ThreatNet <
CSBServiceImpl::SendFilesToThreatNet
Service Thread quit event set.
Service Thread ThreatNet Data update event set.
Service Thread StopServiceViaSCM() failed.
CSBServiceImpl::ServiceThread
Waiting for Service events.
Service thread succesfully started
The Service thread is already running.
CSBServiceImpl::StartThread
Starting Service thread.
Successfully started threat net thread.
CSBServiceImpl::StartController
Resume, started all controllers.
Resume, ThreatEngine open failed.
CSBServiceImpl::Resume
Resume, starting all controllers.
AppDataFolder
EnterpriseProductCode
ISBQuarantineEvents
RQuarantine CoClass
CSBQuarantine::UnquarantineThreat
CSBQuarantine::DeleteQuarantinedThreat
CSBQuarantine::PurgeQuarantine
CSBQuarantine::GetQuarantineRecord
CSBQuarantine::OnStateChangeEvent
CSBQuarantine::QuarantineFile
CSBQuarantine::QuarantineFile2
CSBQuarantine::QuarantineBuffer
CSBQuarantine::QueryQuarantineID
SBQuarantine
CSBQuarantineImpl::SetCoClassPtr
Set events interface.
Quarantine Controller thread stopped.
t terminate the Quarantine Controller thread.
CSBQuarantineImpl::StopThread
Setting quit event for Quarantine Controller.
Failed to purge the quarantine.
Successfully purged the quarantine.
CSBQuarantineImpl::ThreadProcPurgeQuarantine
Preparing to purge the quarantine. Days to keep =
Delete of quarantined item with QId = [
s] failed.
Deleted quarantine item with QId = [
CSBQuarantineImpl::ThreadProcDeleteThreat
Preparing to delete QId = [
CSBQuarantineImpl::QuarantineFile
The results for quarantining a file is <
CSBQuarantineImpl::QuarantineFile2
The results for quarantining a file are <
CSBQuarantineImpl::QuarantineBuffer
The results for quaranting a buffer are <
t get quarantined record size.
t get quarantine record. QId=<
Successfully got the quarantine record. QId=<
CSBQuarantineImpl::GetQuarantineRecord
t get quarantine item following szQID=<
CSBQuarantineImpl::QueryQuarantineID
Successfully queried next quarantined item szQID=<
No quarantine state change callback.
No clients connected.
Unkown quarantine action type [
CSBQuarantineImpl::QuarantineActionCB
Expose quarantine state change.
s], MoveToAlwaysAllowed =
Saving the ignored threat to the scan config.
Need to add a new ignored threat.
Found a threat to add to the always allow [
s], MoveToAlwaysAllowed = [
the quarantine record object
Could NOT get the quarantine date for ID [
CSBQuarantineImpl::UpdateKnownAppsCollection
VeriSign Time Stamping Services CA
|
|
|
