Lasan Virus File (.lasan DRV) Removal and Recovery Guide
THREAT REMOVAL

Lasan Virus File (.lasan DRV) Removal and Recovery Guide

Lasan virus, also known as DRV ransomware is the name of a cryptovirus, whose primary purpose is to infect your computer and then encrypt your files to extort you into paying ransom.

Lasan Virus File

Lasan virus is the name of a ransomware infection that is very dangerous. It aims to stealthily enter your computer shortly after which encrypt your files and hold them hostage until you pay a ransom of some form. The interesting part of DRV Ransomware is that there is no form of contact with the crooks, since the ransom note, called READ_ME.txt claims you should send some “happyness” to the criminals. The virus can render all your documents, photos and other personal files completely useless, unsless you get the decryptor with a decryption key, which will hopefully help recover your files effectively.

Threat Summary

NameLasan Virus
File Extension.lasan
TypeRansomware, Cryptovirus
What Is ItA ransomware infection that encrypts your files and makes them no longer able to be opened.
SymptomsFiles cannot be opened and the ransom note of the virus appears.
Ransom Demanding NoteREAD_ME.txt
Distribution MethodSpam Emails, Email Attachments, Executable Files, Hacked Websites
RemovalTo effectively remove active Lasan Virus virus infections, we recommend that you use an advanced anti-malware tool.

Download

Malware Removal Tool

User ExperienceJoin Our Forum to Discuss Lasan Virus.
Data Recovery ToolWindows Data Recovery by Stellar Phoenix Notice! This product scans your drive sectors to recover lost files and it may not recover 100% of the encrypted files, but only few of them, depending on the situation and whether or not you have reformatted your drive.

Lasan Virus – Description
The Lasan virus can infect your computer via two main methods:

Via e-mail attachment that carries arount a virus infection file, masked as an important document (ticket revoked, invoice, receipt, banking document, etc.)

Via infected cracks, patches, fake installers or other files downloaded from torrent and low reputation sites.

Once your computer becomes infected, the Lasan ransomware virus may begin to assume rights as administrator on it. The outcome of this is that it creates mutexes and registry entries likely in the following Windows sub-keys:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce

Besides this, the Lasan virus will also likely delete and disable all Windows backups by running the following commands as an administrator on your computer:

→ sc stop VVS
sc stop wscsvc
sc stop WinDefend
sc stop wuauserv
sc stop BITS
sc stop ERSvc
sc stop WerSvc
cmd.exe /C bcdedit /set {default} recoveryenabled No
cmd.exe /C bcdedit /set {default} bootstatuspolicy ignoreallfailures
C:\Windows\System32\cmd.exe” /C vssadmin.exe Delete Shadows /All /Quiet

Once it has completed all of its activities on your computer, the Lasan virus may begin to encrypt files of the following file types:

  • Pictures.
  • Videos.
  • Documents.
  • Audio.
  • Video.
  • Archive.

After encryption, the files begin assuming the following appearance:

Remove Lasan Virus and Try Restoring .lasan Files

Lasan virus can be removed if you follow the removal instructions that are posted underneath this article. They have been created with the primary purpose to help you delete the virus files of this infection step by step. The steps include the usage of an anti-malware software, whose main purpose is to scan your computer automatically and make sure that all of the virus files of Lasan ransomware are detected and removed from your computer.

Avatar

Ventsislav Krastev

Ventsislav has been covering the latest malware, software and newest tech developments at SensorsTechForum for 3 years now. He started out as a network administrator. Having graduated Marketing as well, Ventsislav also has passion for discovery of new shifts and innovations in cybersecurity that become game changers. After studying Value Chain Management and then Network Administration, he found his passion within cybersecrurity and is a strong believer in basic education of every user towards online safety.

More Posts - Website

Follow Me:
Twitter

Leave a Comment

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.

Share on Facebook Share
Loading...
Share on Twitter Tweet
Loading...
Share on Google Plus Share
Loading...
Share on Linkedin Share
Loading...
Share on Digg Share
Share on Reddit Share
Loading...
Share on Stumbleupon Share
Loading...