How to check for Suspicious root CA certificates in Windows. From time to time you may want to audit your system for Suspiscious root CA certificates.
Download Sigcheck from Microsoft Sysinternals, at time of writing this it was at version v2.55
https://technet.microsoft.com/en-us/sysinternals/bb897441.aspx
Extract and from the command line
sigcheck -tv
It will compare your certificate store with the default Microsoft certificate store. If there are any additional certificates they will be listed out.
