What kinds of PE file infection can AV software detect?

I wonder what kind of infections AV software is capable of detecting:

• only if the file is signed?


• also if the entry point isn't changed?


• does it also have hashes for non system files?


• what if the signature is simply removed?