which lsass bug are you referring to? lsass.exe is a required process as it runs the winlogon process for authentication
there are a few virii and trojans that exploit an old vulnerability in it but there are patches at Microsoft to get rid of that hole - but I would first get a bootable disk with a virus/trojan checker and verify your system is clean first - then report back here please
