How should I interpret PDF analysis results?

Results come in three states:

Intact — no signs of post-creation modification were found. The PDF file structure matches what you would expect from a freshly generated document.
Modified — the analysis found signs that the file was changed after it was originally created.
Cannot Verify — the PDF was created with consumer software such as Microsoft Word, Google Docs, LibreOffice, or a print-to-PDF driver. Anyone can create a document from scratch with these tools, so the integrity check result is not meaningful in this context.

Important: “Intact” does not mean “authentic.” It means the PDF was not modified after it was created. A document created from scratch with false data will also show as Intact — because it was never modified, it was simply created with false content. To understand this limitation fully, see: Can someone create a fake document from scratch?

On the result page you also see detailed metadata (creation date, modification date, creator, producer) and structural findings. These help you understand why the service gave a particular result. If the result seems unexpected, consider the PDF’s creation workflow and whether any modifications were authorized.

For important decisions, use this result as part of a broader verification strategy rather than the sole factor.

Can a PDF be modified without detection?

Is the PDF authenticity checker free to use?

How should I interpret PDF analysis results?

Related Questions

Is the PDF authenticity checker free to use?

What PDF formats and versions are supported?

How can I share PDF analysis results with others?

How should I interpret PDF analysis results?

Related Questions

Is the PDF authenticity checker free to use?

What PDF formats and versions are supported?

How can I share PDF analysis results with others?