How To Check System Files For Digital Signatures


Posted by malwarekilla in Anti-Malware Tools on 11 17th, 2009 | 9 responses

As many of you already know, files that do NOT contain digital signatures are usually suspected pieces of malware.   To check your Windows system files for files that are not signed you can run sigverif.exe sigverif 300x177 How To Check System Files For Digital Signatures

  1. Click the windows globe in the bottom left.
  2. In the search programs and files type "sigverif".
  3. Click Start.  Sigverif will quickly scan your system files for unsigned files.
  4. A window will open showing you which system files are not digitally signed.  Also, I log was created.  You can access the log by opening sigverif.exe, clicking advanced and then clicking view log.
  5. There are some files that are LEGITIMATE and have NO digital signature.  You can verify if a file that does not contain a digital signature is malware by uploading it to virustotal.com (which scans the file against dozens of av engines)

...just another tip for your anti-malware tookit. ;)



Share and Enjoy:
  • Print
  • Digg
  • del.icio.us
  • Facebook
  • Mixx
  • email
  • LinkedIn
  • Propeller
  • Twitter

Most Commented Posts

Related posts:

  1. How To Turn Off UAC in Windows 7 UAC in my opinion has marginal benefits in protecting...
  2. Norton Internet Security 2010 and Rogue Antivirus = Fail Since I've finally had some down time I decided...
  3. Returnil 2010 Review Check out my review on Returnil Free 2010. Returnil...
  4. So what is Virut and why is it sooooo evil? Virut is a patching virus.  This means that Virut...
  5. How To Manually Find, Terminate and Remove Rogue Antivirus Rogue Anti-Virus is the #1 piece of malware that...

Related posts brought to you by Yet Another Related Posts Plugin.


bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark bookmark
tabs-top


9 Responses to “How To Check System Files For Digital Signatures”

  1. Kinar says:
    November 17, 2009 at 3:26 pm

    that’s great! we can check any file now))

  2. Thermalcake says:
    November 17, 2009 at 7:40 pm

    Matt, did you forget about those reviews?

  3. malwarekilla says:
    November 17, 2009 at 8:39 pm

    @Thermalcake – nah, it’s just that the rogue antivirus infections in St. Louis have EXPLODED!!!$$$ I’ve been working day and night…constantly…

    I’ll be taking off all next week for thanksgiving so hopefully I upload them then.

  4. John says:
    November 17, 2009 at 10:54 pm

    and wow It works on Windows XP SP2 and SP3 I only have 3 Unsigned file Thank for telling me this

  5. LoveSophos says:
    November 18, 2009 at 9:36 pm

    How long are you going to be gone for next week?

  6. Dj T 4 says:
    November 18, 2009 at 9:57 pm

    @John

    Yeah! This also works on Windows XP! :D

  7. basscarp - Mike says:
    November 19, 2009 at 9:41 pm

    Matt is the Man!!!

  8. bryan says:
    November 21, 2009 at 12:09 am

    Matt, out of your toolkit, what is the first tool that you are typically using now? Are you still making a 1st attack with hitman pro with the multi-engine approach? Bryan

  9. Thermalcake says:
    November 23, 2009 at 2:40 pm

    Hey, Matt. Could you please review the newest version of AVG Free?

Leave a Reply