xp sp2 and verclsid.exe is normal ?

Discussion in 'other software & services' started by mantra, Aug 2, 2011.

Thread Status:
Not open for further replies.
  1. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,157
    Hi

    i used process hacker to create a log about processes that starts with the boot
    and system explorer to create again a log

    well i did notice that sometime the system run verclsid.exe for a very short time

    for example
    process hacker
    system explorer
    i set process hacker & system explorer to start at the boot

    now i have never noticed verclsid.exe,in the past
    i know only that i installed only 1 new program , nod32 v4

    do you think it's normal ?
    does it happen to you too?
    what i can not understand it's that this process startup and terminate random(not every boot)

    thanks
    cheers
     
  2. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
  3. noone_particular

    noone_particular Registered Member

    Joined:
    Aug 8, 2008
    Posts:
    3,798
    From http://support.microsoft.com/kb/918165
    Security update 908531 (MS06-015) installs a new program, Verclsid.exe. The Verclsid.exe program validates shell extensions before they are instantiated by the Windows shell or by Windows Explorer.

    It is normal for verclsid.exe to run for short intervals. On XP-SP2, verclsid.exe is in the system32 folder and is 28KB. File version is 5.1.2600.2869. The MD5 for this version is 32a71f37940de5997fbb8f7bf76bd246
     
  4. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,157
  5. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,157
    thanks
    i did read it before opening a thread
    but i don't understand why it loads up random:blink:
     
  6. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    why on Earth are you still running SP2?
     
  7. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,157
    i'm running w7
    but on an old laptop i did a fresh install of xp sp2 legit
     
  8. noone_particular

    noone_particular Registered Member

    Joined:
    Aug 8, 2008
    Posts:
    3,798
    You will find that verclsid.exe runs when another processes is launched and when other activities are performed. It verifies the CLSID of objects as they're used. Depending on what you're doing at the time, verclsid.exe can start and finish many times in a short timespan.

    Because SP3 breaks some apps that I use, doesn't allow its drivers to load.
     
  9. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
    Interesting, can you name them?
     
  10. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    5,157
    but i guess before installing nod32 , i have never seen it
    do you have in the prefetch folder?
    and do you run nod v4?

    thanks
     
  11. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Just FYI. http://systemexplorer.net/db/verclsid.exe.html
     
    Last edited: Aug 2, 2011
  12. noone_particular

    noone_particular Registered Member

    Joined:
    Aug 8, 2008
    Posts:
    3,798
    Right clicking on a folder and selecting "explore" will draw a prompt for verclsid.exe, at least it does on mine. Scrolling the Windows folder in detail view also brings up a couple of prompts. I don't use an AV and have never tried NOD32. If NOD32 adds a context menu entry for manual scanning, that entry might also bring up a verclsid.exe prompt.
    My XP system has been severely stripped down (XPlite and more). I don't have a prefetch folder.
    There was a couple of them, but the only one I can think of at this moment is SSM free, which I prefer to the pro version.
     
Loading...
Similar Threads
  1. Overkill
    Replies:
    69
    Views:
    3,396
Thread Status:
Not open for further replies.