Sigcheck is an “old-school” (command-line) utility designed to sniff out file and digital signature information for programs and drivers. If you’re having problems with particular programs or hardware, use Sigcheck to find out if you have outdated versions or unsigned drivers. To check for unsigned executable files, use the –u and –e options as shown in this example: sigcheck –u –e c:\windows\system32
You can run sigcheck.exe without options to see a complete list of options. In this example, we found that the 64-bit version of FRAPS DirectX screen capture is unsigned.