Architecture |
IMAGE_FILE_MACHINE_I386
|
---|---|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
Compilation Date | 2024-Mar-22 22:26:17 |
Detected languages |
English - United States
|
Debug artifacts |
s:\IDM_projects\IDM_vs2008_2\Release\IDMan.pdb
|
Comments | http://www.internetdownloadmanager.com |
CompanyName | Tonec Inc. |
FileDescription | Internet Download Manager (IDM) |
FileVersion | 6, 42, 5, 3 |
InternalName | Internet Download Manager |
LegalCopyright | Tonec FZE, Copyright © 1999 - 2024 |
LegalTrademarks | Internet Download Manager |
OriginalFilename | IDMan.exe |
ProductName | Internet Download Manager (IDM) |
ProductVersion | 6, 42, 5, 3 |
Info | Matching compiler(s): |
Microsoft Visual C++ v6.0 DLL
Microsoft Visual C++ 6.0 - 8.0 |
Suspicious | Strings found in the binary may indicate undesirable behavior: |
Contains references to system / monitoring tools:
|
Info | Cryptographic algorithms detected in the binary: |
Uses constants related to CRC32
Uses constants related to MD5 Uses constants related to SHA1 |
Malicious | The PE contains functions mostly used by malware. |
[!] The program may be hiding some of its imports:
|
Safe | VirusTotal score: 0/72 (Scanned on 2024-04-02 01:06:08) | All the AVs think this file is safe. |
e_magic | MZ |
---|---|
e_cblp | 0x90 |
e_cp | 0x3 |
e_crlc | 0 |
e_cparhdr | 0x4 |
e_minalloc | 0 |
e_maxalloc | 0xffff |
e_ss | 0 |
e_sp | 0xb8 |
e_csum | 0 |
e_ip | 0 |
e_cs | 0 |
e_ovno | 0 |
e_oemid | 0 |
e_oeminfo | 0 |
e_lfanew | 0xf0 |
Signature | PE |
---|---|
Machine |
IMAGE_FILE_MACHINE_I386
|
NumberofSections | 5 |
TimeDateStamp | 2024-Mar-22 22:26:17 |
PointerToSymbolTable | 0 |
NumberOfSymbols | 0 |
SizeOfOptionalHeader | 0xe0 |
Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_EXECUTABLE_IMAGE
|
Magic | PE32 |
---|---|
LinkerVersion | 9.0 |
SizeOfCode | 0x275200 |
SizeOfInitializedData | 0x34f600 |
SizeOfUninitializedData | 0 |
AddressOfEntryPoint | 0x00228A5E (Section: .text) |
BaseOfCode | 0x1000 |
BaseOfData | 0x277000 |
ImageBase | 0x400000 |
SectionAlignment | 0x1000 |
FileAlignment | 0x200 |
OperatingSystemVersion | 5.0 |
ImageVersion | 0.0 |
SubsystemVersion | 5.0 |
Win32VersionValue | 0 |
SizeOfImage | 0x5c8000 |
SizeOfHeaders | 0x400 |
Checksum | 0x5c27f8 |
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
DllCharacteristics |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
|
SizeofStackReserve | 0x400000 |
SizeofStackCommit | 0x1000 |
SizeofHeapReserve | 0x100000 |
SizeofHeapCommit | 0x1000 |
LoaderFlags | 0 |
NumberOfRvaAndSizes | 16 |
KERNEL32.dll |
InterlockedIncrement
GlobalFlags GetCPInfo GetOEMCP FileTimeToLocalFileTime GetFileSizeEx GetFileTime SetErrorMode WritePrivateProfileStringA FindResourceExA RtlUnwind GetTimeFormatA GetDateFormatA SetEnvironmentVariableW GetCurrentDirectoryW SetCurrentDirectoryW GetSystemTimeAsFileTime GetTimeZoneInformation HeapReAlloc GetLocalTime UnhandledExceptionFilter SetUnhandledExceptionFilter RemoveDirectoryA SetEnvironmentVariableA SetCurrentDirectoryA GetFileInformationByHandle PeekNamedPipe GetFileType GlobalHandle GetStartupInfoA VirtualAlloc VirtualQuery ExitThread HeapSize IsDebuggerPresent IsValidCodePage HeapCreate VirtualFree LCMapStringA LCMapStringW GetStdHandle GetConsoleCP GetConsoleMode SetHandleCount InitializeCriticalSectionAndSpinCount SetStdHandle GetStringTypeA GetStringTypeW FreeEnvironmentStringsA GetEnvironmentStrings FreeEnvironmentStringsW GetEnvironmentStringsW QueryPerformanceCounter WriteConsoleA GetConsoleOutputCP WriteConsoleW CompareStringW GlobalReAlloc GetCurrentThread ConvertDefaultLocale EnumResourceLanguagesA LoadLibraryExA GetProfileIntA GetTickCount GetFullPathNameA FindFirstFileA DuplicateHandle UnlockFile LockFile GetThreadLocale lstrcmpA SuspendThread ResumeThread SetThreadPriority GlobalGetAtomNameA GlobalAddAtomA GlobalFindAtomA GlobalDeleteAtom CompareStringA lstrcmpW RaiseException InterlockedExchange LocalReAlloc GetDiskFreeSpaceW GetVolumeInformationW SetThreadExecutionState CreateProcessA GetSystemInfo InterlockedDecrement GetComputerNameA FreeResource GetCurrentDirectoryA GetACP GetSystemDefaultLangID GetUserDefaultLangID EnterCriticalSection LeaveCriticalSection CreateThread SleepEx lstrcpynA ReadFile CreateDirectoryA CopyFileA MoveFileA LocalAlloc FormatMessageA CreateDirectoryW CopyFileW TlsAlloc TlsSetValue GetCurrentThreadId GetModuleFileNameA TlsFree TlsGetValue GetFileAttributesExW FileTimeToSystemTime CreateWaitableTimerA SetWaitableTimer CancelWaitableTimer DeviceIoControl SetFileAttributesW FlushFileBuffers InitializeCriticalSection DeleteCriticalSection GetVolumeInformationA GetCommandLineW GetWindowsDirectoryW SetFileAttributesA DeleteFileA SetEvent TerminateProcess lstrlenA LoadLibraryW VirtualProtect lstrcmpiA GetDriveTypeW GetLocaleInfoA GetVersion SetLastError LoadLibraryA GetCurrentProcessId lstrlenW GetSystemDirectoryA GetSystemDirectoryW lstrcatA SetFilePointer SetEndOfFile GetFileAttributesA GetWindowsDirectoryA GetModuleFileNameW GetModuleHandleA WriteFile GetExitCodeProcess MoveFileW DeleteFileW RemoveDirectoryW GetFileSize CreateFileMappingA MapViewOfFile UnmapViewOfFile CreateProcessW CompareFileTime FindFirstFileW FindNextFileW FindClose CreateEventA WaitForMultipleObjects ResetEvent GetCurrentProcess GetSystemTime SystemTimeToFileTime SetFileTime GlobalAlloc GlobalFree MoveFileExW GetProcessHeap HeapFree HeapAlloc OpenProcess GetVersionExA CreateFileA CreateFileW FreeLibrary Sleep CreateMutexA OpenMutexA WaitForSingleObject ReleaseMutex CloseHandle GetModuleHandleW GetProcAddress GlobalSize GlobalLock GlobalUnlock GetFileAttributesW GetLastError FormatMessageW LocalFree MulDiv ExitProcess MultiByteToWideChar WideCharToMultiByte FindResourceA LoadResource LockResource GetCommandLineA SizeofResource |
---|---|
USER32.dll |
DeferWindowPos
AdjustWindowRectEx GetClassInfoA GetClassInfoExA GetScrollPos SetMenu MapWindowPoints GetMessageTime GetTopWindow EndDeferWindowPos BeginDeferWindowPos GetLastActivePopup GetClassLongA IsChild WinHelpA TabbedTextOutA DrawTextA DrawTextExA GrayStringA GetMenuCheckMarkDimensions SetMenuItemBitmaps ValidateRect IsClipboardFormatAvailable CharUpperA InflateRect IsRectEmpty MapDialogRect SetWindowContextHelpId SetRectEmpty GetAsyncKeyState IsZoomed UnregisterClassA PostThreadMessageA CharNextA CopyAcceleratorTableA InvalidateRgn GetNextDlgGroupItem GetWindowPlacement GetActiveWindow CreateDialogIndirectParamA GetNextDlgTabItem EndDialog IsDialogMessageA SendDlgItemMessageA GetDlgItemTextA GetMenuState DrawFrameControl SetRect DrawStateA DeleteMenu DrawIconEx IntersectRect GetSysColorBrush FrameRect PeekMessageA SetActiveWindow WindowFromPoint ClientToScreen UnionRect SetClassLongA SetDlgItemTextA ModifyMenuA GetMenuItemInfoW FillRect CopyIcon GetKeyboardLayoutList SetPropA GetPropA RemovePropA GetMessageA TranslateMessage DispatchMessageA DefWindowProcA PostQuitMessage DestroyIcon GetDlgItemTextW GetClassNameA SetCursorPos SetLayeredWindowAttributes UpdateWindow CloseWindow CreateWindowExA RegisterClassA DefDlgProcA DestroyWindow GetWindowLongA BeginPaint EndPaint GetWindowDC GetMenu RegisterWindowMessageA GetKeyState RegisterClipboardFormatA GetDlgCtrlID LoadImageW LoadImageA SetWindowsHookExA DestroyMenu CreatePopupMenu TrackPopupMenu GetMessagePos LoadCursorA SetCursor ReleaseCapture GetSystemMetrics AppendMenuW ModifyMenuW DrawTextW UnhookWindowsHookEx SetWindowLongA CallWindowProcA SystemParametersInfoA CheckMenuItem SetClipboardViewer ChangeClipboardChain SetCapture GetCapture ScreenToClient IsIconic DrawMenuBar RemoveMenu EnableMenuItem DrawFocusRect DrawIcon EqualRect OffsetRect CharUpperBuffW GetWindow EnumWindows SetForegroundWindow IsWindowVisible wsprintfW MessageBoxA GetComboBoxInfo MessageBoxW LoadBitmapA SetPropW SystemParametersInfoW CheckMenuRadioItem GetSubMenu GetMenuItemID GetMenuItemCount AppendMenuA GetCursorPos GetClientRect CopyRect PtInRect FindWindowA GetWindowThreadProcessId MsgWaitForMultipleObjects GetParent SetParent KillTimer SetTimer InvalidateRect GetFocus SetFocus SendMessageW GetForegroundWindow ExitWindowsEx wsprintfA ReleaseDC MessageBeep MoveWindow GetWindowTextLengthA ShowWindow SetDlgItemTextW GetWindowTextLengthW PostMessageA IsWindowEnabled GetWindowTextA IsWindow CreateWindowExW SetWindowPos SetWindowTextA GetWindowRect SetWindowTextW GetWindowTextW LoadStringA DefWindowProcW GetDesktopWindow LoadIconA GetDC SendMessageA GetDlgItem GetSysColor EnableWindow CallNextHookEx |
GDI32.dll |
PtVisible
RectVisible TextOutA ExtTextOutA Escape SetViewportOrgEx OffsetViewportOrgEx SetViewportExtEx ScaleViewportExtEx SetWindowExtEx ScaleWindowExtEx ExtSelectClipRgn CreateBitmap GetBkColor GetCharWidthA StretchDIBits GetTextColor GetRgnBox EnumFontFamiliesExA GetWindowExtEx GetViewportExtEx GetObjectA SelectClipRgn MoveToEx LineTo IntersectClipRect ExcludeClipRect SetBkMode RestoreDC SaveDC GetClipBox CopyMetaFileA SetStretchBltMode GetMapMode SetMapMode LPtoDP DPtoLP ExtTextOutW CreateRectRgnIndirect CreateFontIndirectA GetTextMetricsA GetStockObject CreateCompatibleBitmap DeleteObject SelectObject StretchBlt BitBlt DeleteDC TranslateCharsetInfo GetDIBits CreateDIBSection GetObjectW CreateFontIndirectW GetDeviceCaps CreatePen SetTextColor SetBkColor CreateSolidBrush GetTextExtentPoint32W GetTextExtentPoint32A CreateFontA CreateCompatibleDC |
COMDLG32.dll |
ChooseFontW
GetFileTitleA GetSaveFileNameA GetOpenFileNameW GetSaveFileNameW |
ADVAPI32.dll |
RegRestoreKeyA
RegQueryValueExA RegQueryValueA RegOpenKeyA OpenSCManagerA OpenServiceA CloseServiceHandle RegEnumKeyW RegDeleteKeyW DuplicateTokenEx GetLengthSid SetTokenInformation CreateProcessAsUserW GetTokenInformation GetSidSubAuthorityCount GetSidSubAuthority GetUserNameW GetUserNameA RegCloseKey RegLoadKeyA RegSaveKeyA RegEnumValueA RegCreateKeyExW RegFlushKey RegDeleteValueW RegSetValueExW RegNotifyChangeKeyValue OpenProcessToken LookupPrivilegeValueA AdjustTokenPrivileges RegQueryValueExW RegEnumKeyExA RegDeleteKeyA RegQueryInfoKeyA RegEnumKeyA RegCreateKeyExA RegSetValueExA RegDeleteValueA RegOpenKeyExA |
COMCTL32.dll |
#17
ImageList_GetIcon |
SHLWAPI.dll |
StrCmpLogicalW
PathStripToRootA PathIsUNCA PathFindFileNameA PathFindExtensionA |
WS2_32.dll (delay-loaded) |
ntohs
WSASetLastError getsockname accept bind listen getsockopt closesocket socket ioctlsocket connect select __WSAFDIsSet send inet_addr WSAGetLastError recv ntohl htons gethostbyname htonl WSAStartup WSACleanup |
Attributes | 0x1 |
---|---|
Name | WS2_32.dll |
ModuleHandle | 0x35f910 |
DelayImportAddressTable | 0x35a0ac |
DelayImportNameTable | 0x34eacc |
BoundDelayImportTable | 0x34f0c4 |
UnloadDelayImportTable | 0 |
TimeStamp | 1970-Jan-01 00:00:00 |
&About IDM... |
Displays a Tip of the Day. |
Ti&p of the Day... |
Did you know... |
Tips file does not exist in the prescribed directory |
Trouble reading the tips file |
Status |
Add a file to IDM list for downloading later |
Start file downloading |
Launch Internet Download Manager on system startup |
Monitor system Clipboard for links to download with IDM |
IDM Search settings |
Purchase registered copy of IDM |
Make an attempt to find HTTP proxy in Internet Explorer configuration |
Use FTP protocol in passive mode (needed behind firewalls) |
Check for available updates on www.internetdownloadmanager.com |
Register IDM with your registration key |
Click to visit IDM home site |
Contact IDM support team |
Click to know how to get license for IDM |
Move item down |
Move item up |
Remove item from download queue |
Start queue |
Stop queue |
Use this option in an emergency. This can cause the applications to lose data. |
Hide categories |
Check All Files |
Uncheck All Files |
Start Exploring |
Stop Exploring |
Start Downloading the checked files |
Stop downloading the checked files |
Add checked files to the main IDM list and to the download queue |
Browse |
Close SearchBar |
Write a letter to your friend about IDM |
Add new download address manually |
Start/Resume downloading selected file(s) |
Stop downloading selected file(s) |
Stop all downloads |
Remove selected file(s) from the list |
Remove all completed files from the list |
Browsers/System integration, File types, Proxy, Passwords and others |
Scheduler and download queues |
Opening Port |
Port Opened |
Connecting Device |
Device Connected |
All Devices Connected |
Starting Authentication |
Authentication Notify |
Authentication Retry |
Callback Requested |
Change Password Requested |
Projection Phase Started |
Link Speed Calculation |
Authentication Acknowledged |
Reauthenticatation Started |
Authenticated |
Waiting For Modem Reset |
Waiting For Callback |
Interactive |
Retry Authentication |
Callback Set By Caller |
Password Expired |
Connected |
Disconnected |
Run site grabber |
Schedule the project |
Show grabber statistics |
Update all |
Start main download queue, or choose a queue to start from drop-down list |
Stop main download queue, or choose a queue to stop from drop-down list |
Enable/Disable using Windows Dark App Mode settings in IDM |
Open |
Save As |
All Files (*.*) |
Untitled |
an unnamed file |
&Hide |
No error message is available. |
Attempted an unsupported operation. |
A required resource was unavailable. |
Out of memory. |
An unknown error has occurred. |
Encountered an improper argument. |
Incorrect filename. |
Failed to open document. |
Failed to save document. |
Save changes to %1? |
Failed to create empty document. |
The file is too large to open. |
Could not start print job. |
Failed to launch help. |
Internal application error. |
Command failed. |
Insufficient memory to perform operation. |
System registry entries have been removed and the INI file (if any) was deleted. |
Not all of the system registry entries (or INI file) were removed. |
This program requires the file %s, which was not found on this system. |
This program is linked to the missing export %s in the file %s. This machine may have an incompatible version of %s. |
Enter an integer. |
Enter a number. |
Enter an integer between %1 and %2. |
Enter a number between %1 and %2. |
Enter no more than %1 characters. |
Select a button. |
Enter an integer between 0 and 255. |
Enter a positive integer. |
Enter a date and/or time. |
Enter a currency. |
Enter a GUID. |
Enter a time. |
Enter a date. |
Unexpected file format. |
%1 |
Cannot find this file. |
Verify that the correct path and file name are given. |
Destination disk drive is full. |
Unable to read from %1, it is opened by someone else. |
Unable to write to %1, it is read-only or opened by someone else. |
Encountered an unexpected error while reading %1. |
Encountered an unexpected error while writing %1. |
%1: %2 |
Continue running script? |
Dispatch exception: %1 |
Unable to read write-only property. |
Unable to write read-only property. |
Unable to load mail system support. |
Mail system DLL is invalid. |
Send Mail failed to send message. |
No error occurred. |
An unknown error occurred while accessing %1. |
%1 was not found. |
%1 contains an incorrect path. |
Could not open %1 because there are too many open files. |
Access to %1 was denied. |
An incorrect file handle was associated with %1. |
Could not remove %1 because it is the current directory. |
Could not create %1 because the directory is full. |
Seek failed on %1 |
Encountered a hardware I/O error while accessing %1. |
Encountered a sharing violation while accessing %1. |
Encountered a locking violation while accessing %1. |
Disk full while accessing %1. |
Attempted to access %1 past its end. |
No error occurred. |
An unknown error occurred while accessing %1. |
Attempted to write to the reading %1. |
Attempted to access %1 past its end. |
Attempted to read from the writing %1. |
%1 has a bad format. |
%1 contained an unexpected object. |
%1 contains an incorrect schema. |
pixels |
Uncheck |
Check |
Mixed |
Signature | 0xfeef04bd |
---|---|
StructVersion | 0x10000 |
FileVersion | 6.42.5.3 |
ProductVersion | 6.42.5.3 |
FileFlags | (EMPTY) |
FileOs |
VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
|
FileType |
VFT_APP
|
Language | English - United States |
Comments | http://www.internetdownloadmanager.com |
CompanyName | Tonec Inc. |
FileDescription | Internet Download Manager (IDM) |
FileVersion (#2) | 6, 42, 5, 3 |
InternalName | Internet Download Manager |
LegalCopyright | Tonec FZE, Copyright © 1999 - 2024 |
LegalTrademarks | Internet Download Manager |
OriginalFilename | IDMan.exe |
ProductName | Internet Download Manager (IDM) |
ProductVersion (#2) | 6, 42, 5, 3 |
Resource LangID | English - United States |
---|
Characteristics |
0
|
---|---|
TimeDateStamp | 2024-Mar-22 22:26:17 |
Version | 0.0 |
SizeofData | 71 |
AddressOfRawData | 0x30d998 |
PointerToRawData | 0x30bf98 |
Referenced File | s:\IDM_projects\IDM_vs2008_2\Release\IDMan.pdb |
Size | 0x48 |
---|---|
TimeDateStamp | 1970-Jan-01 00:00:00 |
Version | 0.0 |
GlobalFlagsClear | (EMPTY) |
GlobalFlagsSet | (EMPTY) |
CriticalSectionDefaultTimeout | 0 |
DeCommitFreeBlockThreshold | 0 |
DeCommitTotalFreeThreshold | 0 |
LockPrefixTable | 0 |
MaximumAllocationSize | 0 |
VirtualMemoryThreshold | 0 |
ProcessAffinityMask | 0 |
ProcessHeapFlags | (EMPTY) |
CSDVersion | 0 |
Reserved1 | 0 |
EditList | 0 |
SecurityCookie | 0x758898 |
SEHandlerTable | 0x716b50 |
SEHandlerCount | 2242 |
XOR Key | 0x344f20e2 |
---|---|
Unmarked objects | 0 |
150 (20413) | 13 |
C objects (VS2012 build 50727 / VS2005 build 50727) | 17 |
Imports (VS2012 build 50727 / VS2005 build 50727) | 15 |
ASM objects (VS2008 SP1 build 30729) | 44 |
C objects (VS2008 SP1 build 30729) | 215 |
C++ objects (VS2008 build 21022) | 8 |
Total imports | 754 |
C++ objects (VS2008 SP1 build 30729) | 476 |
Linker (VS2008 build 21022) | 1 |
Resource objects (VS2008 SP1 build 30729) | 1 |