Sigcheck Publisher's description
from Mark Russinovich
Dump file version information and verify that images on your system are digitally signed.
Verify that images are digitally signed and dump version information with this simple command-line utility.
Usage: sigcheck.exe [-a][-h][-i][-e][-n][[-s]|[-v]|[-m]][-q][-r][-u][-c catalog file] <file or directory>
-a Show extended version information
-c Look for signature in the specified catalog file
-e Scan executable images only (regardless of their extension).
-h Show file hashes
-i Show image signers
-m Dump manifest
-n Only show file version number
-q Quiet (no banner)
-r Check for certificate revocation
-s Recurse subdirectories
-u Show unsigned files only
-v Csv output
One way to use the tool is to check for unsigned files in your WindowsSystem32 directories with this command:
sigcheck -u -e c:windowssystem32
You should investigate the purpose of any files that are not signed.
What's New in This Release:Reports a revoked certificate as вЂњrevokedвЂќ rather than вЂњinvalid certificateвЂќ.
System Requirements:No special requirements.
Program Release Status:
Program Install Support: Install and Uninstall