| 文件名 | PDFXCview.exe |
| 文件类型 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| 扫描器版本 | 1.0.194.174 |
| 数据库版本 | 2024-10-23 14:00:21 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
f5f9e1a03d1b30f12fbdca1d8721a179
|
|
| SHA1 |
935148aa848b6661dec72a662e03f1f061c48e8d
|
|
| SHA256 |
cf324ce09c2875a45e2a64fbeef88163d2cff35c58927e61875d6aff9c7947f6
|
|
| SHA512 |
f1e3c510846b8de406f01942ca87f9ceea338432327e67603b48f31d6f287e3015aef992749377cf1ff00b49a86347dfc4f1a462cccbcc02cd59da7d0f5fee50
|
|
| ImpHash |
91f4558540576364d89ed343ee08e982
|
| 图标 |
哈希: 0a3b940b28e12a0c47608e059fe0447f
模糊: 519710feab0dd384dae52781827c046d dHash: 92a382828c94ccec |
| 映像基址 | 0x00400000 |
| 入口点 | 0x00afc91b |
| 编译时间 | 2018-12-13 07:27:42 |
| 校验和 | 0x00d0f1f0 (实际: 0x00d0f1f0) |
| 操作系统版本 | 5.1 |
| PEiD 签名 |
PE32 executable (GUI) Intel 80386, for MS Windows
|
| PDB 路径 | E:\WorkPrg\PDF35\Trunk\_build\StaticRelease.Win32\PDFXCview.pdb |
| 数字签名 | OK |
| 导入 | 23 库 |
| 导出 | 0 函数 |
| 资源 | 401 资源 |
| 节 | 7 节 |
| CompanyName | Tracker Software Products (Canada) Ltd. |
| FileVersion | 2.5.0322.0010 |
| LegalCopyright | Copyright (C) 2001-2018 by Tracker Software Products (Canada) Ltd. |
| LegalTrademarks | Tracker Software Products (Canada) Ltd. |
| ProductVersion | 2.5 |
| SpecialBuild | |
| PrivateBuild | |
| ProductName | PDF-XChange Viewer |
| Comments | PDF-XChange Viewer |
| FileDescription | PDF-XChange Viewer |
| InternalName | PDF-XChange Viewer |
| OriginalFilename | PDFXCview.exe |
| Translation | 0x0409 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
9,392,424 bytes | 9,392,640 bytes | 6.47 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
4D05C723B0BE9EF3327C68478DC9AECA |
.rdata |
0x008f7000 |
2,153,556 bytes | 2,153,984 bytes | 5.84 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
F9A24E4E2C4AD48045031D3BB805B55D |
.data |
0x00b05000 |
1,829,484 bytes | 293,376 bytes | 2.72 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
6AE172F5E15C3908B2285307AB6F3EFF |
.resStr |
0x00cc4000 |
10,576 bytes | 10,752 bytes | 5.32 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
F1C3EF333F96D36B2821CD9FF2E3D153 |
.resCmd |
0x00cc7000 |
48,644 bytes | 49,152 bytes | 2.27 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
9DC5BEE486798EBC3A0007AC7038234E |
.rsrc |
0x00cd3000 |
1,342,288 bytes | 1,342,464 bytes | 7.51 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
73C4DD4F3879B7CEAB5C94EC767BCFF7 |
.reloc |
0x00e1b000 |
401,420 bytes | 401,920 bytes | 6.64 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
818C719CC51CD5F62256AEDC8E3A5996 |
1 检测到高熵(≥7.5)的节 - 可能存在打包/加密
1 检测到较高熵(≥6.5)的节 - 可能存在压缩
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| PNG | 119 | 968,696 字节 | |
| REGISTRY | 2 | 752 字节 | |
| TYPELIB | 1 | 3,204 字节 | |
| WAVE | 1 | 5,524 字节 | |
| RT_CURSOR | 35 | 43,708 字节 | |
| RT_BITMAP | 2 | 1,872 字节 | |
| RT_ICON | 20 | 166,300 字节 | |
| RT_MENU | 14 | 8,568 字节 | |
| RT_DIALOG | 148 | 115,410 字节 | |
| RT_STRING | 12 | 3,760 字节 | |
| RT_ACCELERATOR | 4 | 656 字节 | |
| RT_GROUP_CURSOR | 35 | 700 字节 | |
| RT_GROUP_ICON | 5 | 310 字节 | |
| RT_VERSION | 1 | 1,148 字节 | |
| RT_MANIFEST | 1 | 794 字节 | |
| None | 1 | 28 字节 |
| 产品 | PDF-XChange Viewer |
| 描述 | PDF-XChange Viewer |
| 文件版本 | 2.5.0322.0010 |
| 原始名称 | PDFXCview.exe |
| 签名日期 | 07:57 AM 12/13/2018 (2408 天前) |
| 验证状态 | Signed |
| 签名者 | Tracker Software Products (Canada) Ltd.; DigiCert SHA2 Assured ID Code Signing CA; DigiCert |
| 副签名者 | DigiCert Timestamp Responder; DigiCert Assured ID CA-1; DigiCert |
| 内部名称 | PDF-XChange Viewer |
| 版权 | Copyright (C) 2001-2018 by Tracker Software Products (Canada) Ltd. |
04 09 18 1B 5F D5 BB 66 75 53 43 B5 6F 95 50 080A 9C 96 E9 49 DC A9 03 E9 21 89 E0 B2 99 9D E503 01 9A 02 3A FF 58 B1 6B D6 D5 EA E6 17 F0 6606 FD F9 03 96 03 AD EA 00 0A EB 3F 27 BB BA 1B✓ 此文件已进行数字签名,证书链已验证。
OK
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
