SYSTEM32/lsass.exe

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by NitWit00, Jul 9, 2012.

  1. NitWit00

    NitWit00 Private E-2

    Posted this in software first and was directed here,so my pc has a virus it would take 10 min to fire up,sometimes restart a couple times then do the process and get to the main desktop would work good off line,on line always tried to download flash player 11, kept java script off when online,so someone offerd to help remove the virus showed her what it was doing then another problem popped up its a SYSTEM32/lsass.exe file that wanted to shutdown and restart system well my help decided to go to the SYSTEM32 file and delete it before it shutdown on its own and did so then it shutdown and restarted reads the first bios runs a little bit goes to a black screen no desktop or anything else have to push button to shutdown then restart in safe mode still no desktop so either that was the wrong call or the virus got worse do i need professional help now or is it something that is fixable THANK'S for any help at all
     
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Welcome to the Malware Removal Forum.

    Please read ALL of this message including the notes before doing anything.

    Pleases follow the instructions in the below link:

    READ & RUN ME FIRST. Malware Removal Guide


    and attach the requested logs when you finish these instructions.
    • **** If something does not run, write down the info to explain to us later but keep on going. ****
    • Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.

    • After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
    Helpful Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
    3. If you cannot seem to login to an infected user account, try using a different user account (if you have one) in either normal or safe boot mode and running only SUPERAntiSpyware and Malwarebytes while logged into this other user account. Then reboot and see if you can log into the problem user account. If you can then run SUPERAntiSpyware, Malwarebytes, ComboFix and MGtools on the infected account as requested in the instructions.
    4. To avoid additional delay in getting a response, it is strongly advised that after completing the READ & RUN ME you also read this sticky:
    Any additional post is a bump which will add more delay. Once you attach the logs, your thread will be in the work queue and as stated our system works the oldest threads FIRST.
     
  3. NitWit00

    NitWit00 Private E-2

    Ok read the response and TY BTW BUT i cant get it to do anything
    It reads the bios goes to the screen with windows n status bar
    and stops black screen in safe mode too NO desktop icons in either
    way i start up the thing is i concernd that the file that was deleted
    is the problem why it only goes so far and black screens mtge fil
    again is SYSTEM32/lsass.exe personally i think im screwed but
    im a pc guy so i wouldnt know
     
  4. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    If you really cannot run anything to provide us information that we need to perform a proper diagnosis, your option would be to use another PC to try create one or more of the below CDs to boot from that allow you to run scans and perform many other tasks without Windows even being loaded. Sometimes this can help to get you started when all else fails. They can even help in cases where a previous scan may have removed something that resulted in your PC being unbootable.
     
  5. NitWit00

    NitWit00 Private E-2

    Thank You for your help i will try that and see what happens
     
  6. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    OK well let us know.
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds