Which Microsoft OS Have Signed System Files?

12-30-2012

Which - if any - of Microsoft's operating systems have signed operating
system files, so that it becomes next to impossible for a rootkit or trojan
to interfere with the core OS files? I would like to know about the
consumer as well as server operating systems.

--
W

12-31-2012

"W" wrote:

> Which - if any - of Microsoft's operating systems have signed operating
> system files, so that it becomes next to impossible for a rootkit or trojan
> to interfere with the core OS files? I would like to know about the
> consumer as well as server operating systems.

Doesn't matter for a rootkit. Signing is irrelevant since the rootkit
loads before the OS loads (or hides itself from normal visibility in the
file system after the OS loads by stacking its handler in the file API).
No general-purpose OS can prevent itself from getting infected. They
don't need to replace any OS files but that has certainly happened.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
"Not digitally signed" EVen though signed by MS	Harsha	Windows Vista Drivers	3	04-10-2010 03:28 AM
Windows XP: embedding signed driver is not report as signed in devicemanager	hq4000@hotmail.com	Windows Vista Drivers	2	04-24-2008 11:47 AM
64bit KMDF Driver is signed and installs fine, yet the driver details dialog box still shows "Not digitally signed"??	JasonA	Windows Vista Drivers	3	07-19-2007 01:13 AM
"You have been signed out of .NET Messenger Service because you signed in at another location"	BYG	Windows MSN Messenger	1	08-27-2003 02:32 PM
Re: Signed out because signed in on another computer.	Jonathan Kay [MVP]	Windows MSN Messenger	3	08-15-2003 11:02 PM