SigcheckGUI: graphical user interface for Sigcheck (free)

Discussion in 'other anti-malware software' started by MrBrian, Sep 19, 2014.

  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From http://www.ghacks.net/2014/09/11/check-windows-folders-for-file-signatures-with-sigcheckgui/:
     
  2. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,060
    Location:
    Netherlands
    Yep, but sigcheck also has a check at VirusTotal feature when signature check
    is invalid. Together with SystemExplorer (check runnung exe and dl's at VT), sigcheck can be used to scan your harddrive. Should be greast when autoruns would check startup items also at VT (when their signature is invalid or missing).

    Great find, the command line version also allows scanning of other directories (e.g. like program files folder), this one uses Get Windows Directory to automatically find teh windows directory. Hopefully the author adds an option to check Program Files also
     
    Last edited: Sep 19, 2014
  3. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    SigcheckGUI v1.0.8's VirusTotal scans are a lot faster than the public API allows. Probably as a consequence, sometimes "throttled" is reported instead of desired results.
     
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    5,043
    Do you know how this could be achieved? If I enable VT check it checks all executable files (hashes). What you're describing would be really useful, but I couldn't find parameters to get it work like that.
     
  5. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,060
    Location:
    Netherlands
    Sorry, it indeed reports all files with one or more detections

    "C:\[where installed]\sigcheck.exe" -e -s -u -vr -vt "directory"
     
Loading...