NEWS
PARASITES
SOFTWARE
ASK US
DIRECTORY

 
 
 
 
 
 
  
Extension: exe

lsass.exe

by
 
 
lsass.exe

lsass.exe is the Local Security Authority Service by Microsoft, Inc, which is responsible for security policies enforcement and handles other Windows Security Mechanisms. Lsass.exe also verifies the identification of the user when he is logging on computer and generates the process responsible for his authentication when using Winlogon service. The lsass.exe process mainly operates in the system through its ability to create access tokens.

Note that lsass.exe is legitimate file which is vital to the system and needed for the PC's normal functionality. It is located in "C:\WINDOWS\SYSTEM32\" and can't be ended using the Task Manager.

lsass.exe is a system process, it is a safe file and does not pose any threat. 

WARNING!!! 

Some parasites, for example sasser worm, use lsass.exe filename to deceive the user by hiding their processes under the name of this file. Lsass.exe filename is used by OnTarget, Pexmor, Rontokbro, Satiloler, Crutle, Wowcraft and other variants of these malware parasites. So, you may have a virus that runs the same named process and silently works in background and performs harmful actions. In order to check your PC, run a full system scan with reputable anti-malware programs. We recommend using Defender Pro Ultimate Security Suite and SpyHunter.

ASK US:
Submit question about lsass.exe

verdict - status of the file:

diagnosis required
2-spyware.com research center gathers and checks all information related to lsass.exe. We ask ourselves the questions like: Do this file pose a threat? Does the filename is exploited by Malware? and other. The final status of the file is purely our opinion.
DIAGNOSIS REQUIRED status means that this filename is exploited by the viruses. There can be the
dangerous file with the same name as the safe file. Use the Advice below:

Advice:

If your Computer seems Sluggish, or you see some unwanted Advertisements, redirects to the strange websites, then we recommend you to scan the system with reputable anti-spyware program. Do some FREE scan tests and you will see if there are some unwanted applications, whitch might be responsible for the tab stability of the system.
We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.
By Downloading any provided Anti-spyware software you agree to our privacy policy and agreement of use.
Free Diagnosis
SpyHunter is a recommended tool to scan your system for possible threats and crappy software. The trial version of the product will find harmfull applications in your system
Malwarebytes Anti Malware
download | review
Defender Pro Ultimate Security Suite
download | review
STOPzilla
download | review
XoftSpySE Anti Spyware
download | review
Phone Support to understand lsass.exe Information added: 2004-03-19 10:00:00
Information updated: 2012-07-11 11:54:31

Removal guides in other languages

Additional resources related to lsass.exe:

Attention: If you know or you have a website or page about lsass.exe file, feel free to add a link to this list: add url
0
0
Guest.
1. by Guest. 07/09/2005. 12:09:48
if i use internet , it will shutdown the computer in 60 second
lsass.exe, how can i fix it
2005 10 31
0
0
Guest.
if i use internet , it will shutdown the computer in 60 second
lsass.exe, how can i fix it
2005 09 07
0
0
Guest.
we have a problem about lsass, can you help me? how i remove this virus?
2005 07 21
0
0
Guest.
We have a problem in our company determining what day and time the virus entered the PC, when and how it affects the lsass.exe and what virus affects such file. Is it possible? we have until june 22, 2005, 0900 AM to know this or we will be fined. Pls help us
2005 06 21
0
0
Guest.
"system is shutting down. any unsaved changes will be lost. initiated by NT AUTHORITYSYSTEM
2005 06 14
0
0
Guest.
this file is terminate unexpedly and computer restart again and again .
please tell me what to do to resolve this problem.
thanks alot.
2005 06 12
1
0
Guest.
do I need to allow lsass to connect to the internet?
2005 06 11
0
0
Guest.
When I try downloading any file it gives me an error that my current security settings do not allow this file to be downloaded..I tried downloading the lsass.exe scanner & remover and am getting the same error..Active x control is enabled also..any one have a fix
2005 06 10
0
0
Guest.
Once the box comes up telling you your system is going to shutdown, go to run, then type in cmd.exe once a black box comes up. Type in "shutdown -a" (without quotes). And this will stop your computer from shutdown. THEN DELETE THE FILE USING lsass.exe its really not that hard. But this is a quick fix to stop the shutdown. ; )
2005 06 10
0
0
Guest.
How can i get in to Windows, an dhow can i get this virus deleted ?
2005 06 01
0
0
Guest.
We have the same problem. Have you found any solutions?
2005 05 23
0
0
Guest.
When I turn on my computer it does not allow me to get into windows. It says "Invalid parameter was passed to a service or function" "lsass.exe system error."

How can I fix this problem?
2005 05 23
0
0
Guest.
warning! i got a trojan on my system from downloading the free worms virus scan from www.Stop-Sign.com

remove the link!
2005 05 16
0
0
Guest.
Hello i need some help here, how to get rid of all the spyware that is on my computer, my homepage has been changed, cant change it back, all the process are running really slow, it gets really anoying to use my computer lately.
Please Help
Thank you
2005 05 04
0
0
Guest.
System will not completely boot, message window appears "lsass.exe - System Error An invalid parameter was passed to a service or function" I have up-to-date Symantec AV and Webrot Spyware. I click OK and it tries to boot abain, never succeeding. Virus? Worm? Anyone else see this or any suggestions to repair?

Robert
2005 05 04
0
0
what can I do if I accidentaly deleted lsass.exe (while i was on the other OS installed ) . i deleted lsass.exe from XP ... now my computer boots on XP , but after the boot , it displays a black screen . what should i do ?
2005 03 28
0
0
Jonathan.
to Jen: hey ur PC is shutting down coz it is a virus or something like tat...i also have tis problem and it may is sasser worm,to stop the shutdown cycle go to Start and run and type cmd and ok...then at the prompt type shutdown.exe -a and enter...
-0001 11 30
0
0
Fenelon.
digite shutdown -a na linha de comando para interromper o desligamento.

Use o arquivo Windows-KB890830-V1.2-PTB.exe para remover o virus. Este arquivo serve para o XP, 2000 e 200 server.
2005 03 14
0
0
yusuf.
sir,
I am having problem with my member server its not starting the services of wins and rpc but anyhow i trace the problem and i found the problem in regedit with rpcss service when i change the value of key from 2 to 4 its start wins and rpc but its shows server srivices starting,,but acutally its does not start now any can please help me on the same
2005 03 14
0
0
Khushi.
I have 3 lsass.exe in

C:WindowsSystem32
C:WindowsServicePackFilesI386
LSASS.exe in C:I386

Is that safe? Or only one in C:WindowsSystem32 is needed .......? Thanks
2005 03 11
0
0
gabriela.
hola soy gabriela y tengo ese grave problema con mi maquina el de este virus me dieron unas heramientas para eliminarlo y no me funcionan ayudenme porfavor es urgente
2005 03 09
0
0
jen.
"system is shutting down. any unsaved changes will be lost. initiated by NT AUTHORITYSYSTEM<br />
Time before shutdown: 59 seconds<br />
the system process 'C:WINDOWSsystem32lasass.exe' ternimated unexpectedly with status code -1073741819 the system will now shut down and restart
2005 03 09
0
0
Siphiwe Ndlovu.
This file is taking 99%of my process
2005 03 08
0
0
Artist.
You may need to get your recovery CD out and re-install windows. When you reboot you will most likely get an error in lsass.exe not found. The machine will no longer boot if this happens. First go to MicroSoft and get the full instructions on repair/ re-installing WindowsXP. You will then need to boot from the recovery CD and attempt a repair. Press F8 to agree to the licencing agreement. Choose the second repair screen NOT the first one. It will get you nowhere! Just press enter at the first screen, then press R at the second screen. The process will begin. Expect a long haul on this one. Maybe overnight if you plan to download all of the now missing windows updates and crital updates.
2005 02 23
0
0
Jeroen.
i thought that the lsass.exe was a virus and so deleated it form my computer by going into C:WINDOWSSYSTEM32 will deleating this file seriosly harm my computer or not?<br />
<br />
And if it does is there anywere were i can download a new lsass.exe??
2005 02 16
0
0
alexander.riquelma@mainmail.net.
Alexander, reparte este docuemnto puede ser de interes
2005 02 11

Post Comment:

Attention: Use this form only if you have additional information about lsass.exe parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Submit a Question
Like us on Facebook
Latest spyware news:
Subscribe to spyware news
Please enter your e-mail address:
If you do not want to receive our spyware
newsletter please unsubscribe here
48030 Subscribers
Ask us
Encyclopedia of parasites:
Library of files:
Archive of files
Tags:
Your main spyware remover is:
Windows Defender
Spy Sweeper
AVG Anti-Spyware
SUPERAntiSpyware
Spybot - S&D
SpyHunter
Other program
I have two or more programs
I don't need no anti-spyware



Compare spyware removers
Compare free products
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds rss feeds | Follow us Follow us | Like us Like us
© 2001-2013  2-spyware.com  All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.