Have the lsass.exe error that wont let OS run. OS is XP home. No safemode or anything.
Thanks.
Have the lsass.exe error that wont let OS run. OS is XP home. No safemode or anything.
Thanks.
Can you select last known good from the safem mode menu ?
If not are you able to burn a cd ?
no luck on the last known. I did burn a cd and i’m currently running the OTL like you suggested to the other guy. When I run that, do I pick the C drive/windows as the folder to browse for?
Yes please
Hi mbender2,
Did you try to perform a repair installation: http://www.microsoft.com/windowsxp/using/helpandsupport/learnmore/tips/doug92.mspx
polonus
no i didnt, should i do that first?
Actually, I don’t have a disk, it didn’t come with the laptop. Toshiba wants me to order it from them. I’m trying not to pay for something I already bought, if you know what i mean.
Here’s the first OTL.txt.
Could you save it as ANSI please
http://i1224.photobucket.com/albums/ee362/Essexboy3/Untitled.gif
Here it is.
Start OTLPE as you did previously from CD
Copy the attached Fix.txt to a USB
[*]Insert your USB drive with fix.txt on it
[*]Start OTLPE
[*]Drag and drop fix.txt into the Custom scans and fixes box
[*]If you cannot drag and drop for some reason. Then press the Run Fix button and a dialogue box will pop up asking for the location - select the file on your USB drive
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot when it is done to normal mode if possible
[*]Then post a new OTL log ( don’t check the boxes beside LOP Check or Purity this time )
No luck with normal boot. I’m running the new scan now. Do I leave the Custom Scans/Fixes box empty?
Here’s the 2nd OTL. I ran it with nothing in the custom box.
OK I will need to try and locate some files and see if they are in the right place
Prior to this problem what happened ? Were you running a malware removal programme or something like that ?
If this fails I may need to run a programme from a USB drive to locate and then run one of your system restore points - do you have a USB drive ?
Run OTL and copy the following into the custom scans box and then press run scan
/md5start
lsass.*
/md5stop
Update. I was screwing around a bit.
I copied the repair folder configs to the config folder and now I get a paaswords error. “current password is not correct.” it flashes quickley and then reboots. Hard to get the exact error word for word. I hope I didn’t make matters worse. lsass.exe error is gone though ???
Not sure what happened. I started hearing an audio file playing out of the blue in the backround and the stupid windows secutiry 2011 popping up.
I do have a usb drive.
We will use an mobile operating system called xPUD, and a script called rst.sh to restore your computer.
On the clean computer.
Creating a bootable USB using xPUD
[*]Please download the following files and save it to the desktop
[]Unetbootin.exe
[]xPUD latest version is xpud-0.9.2.iso
Insert the USB device to make bootable to the computer. (Make sure that no other USB’s are inserted)
[*]Double-click on unetbootin.exe to run
Select Disk Image, ISO and in the space provided, enter the path location of xpud-0.9.2.iso (ex. [I]C:\Documents and Settings[B]yourusername\Desktop\xpud-0.9.2.iso)
[*]Select USB Drive type and the drive letter assigned to your USB stick.
[*]Click “OK” and wait until the program finishes. You now have a bootable xPUD.
[*]Download the following tool and save it inside the bootable USB
[*]rst.sh
Please note: if you prefer to create a bootable CD using xPUD, you may download the ISO image found here and burn it to a CD.
On the infected computer.
[*]Reboot your system using the xPUD bootable USB you just created.
Note : If you do not know how to set your computer to boot from USB follow the steps here
[*]Your system should now display a xPUD desktop.
[*]Select on the File icon; on the right pane click on the “mnt” folder and highlight “sdb1” - this is your USB device.
[indent]sda1,2…usually corresponds to your HDD
sdb1 is likely your USB[/indent]
[*]Click on the “Tool” menu and select Open Terminal
http://noahdfear.net/hives.sh_files/image008.jpg
[*]In the open terminal window, type in the following:
bash rst.sh
[*]Press “Enter” and let it run uninterrupted.
(The program lists available Restore Points and will save a report enum.log located in the USB drive.)
[*]The program is finished when it say’s “Done”.
[*]Type “Exit” to close the terminal window.
[*]Please attached the enum.log file in your reply. (You may remove your USB drive when transferring log to a clean computer).
Please note: If you have an ethernet connection you can access the internet by way of xPUD (Firefox). You can perform all these steps on your sick computer. When you download the download will reside in the Download folder. It can be found under the File tab also. You can similarly access our thread by way of this OS too so you can send the logs that way.
Did the xpud. Attached is the enum.log
You have no restore points on your computer
Can you achieve the safe mode menu now ?
Yeah, I noticed that. Before when I could get into windows I would try a restore and it would just sit after hitting the next button after a date selection.
Still nothing on booting, even safe. Just the password error.