Family member had their computer with a one of the cryptolocker type things. Anyone know the one responsible for the ydmmxan file extension, and if there is a decrypter for it?
Here is the Note:
Your documents, photos, databases and other important files have been encrypted
with strongest encryption and unique key, generated for this computer.
Private decryption key is stored on a secret Internet server and nobody can
decrypt your files until you pay and obtain the private key.
If you see the main locker window, follow the instructions on the locker.
Overwise, it's seems that you or your antivirus deleted the locker program.
Now you have the last chance to decrypt your files.
Open http://43qzvceo6ondd6wt.onion.cab or http://43qzvceo6ondd6wt.tor2web.org
in your browser. They are public gates to the secret server.
If you have problems with gates, use direct connection:
1. Download Tor Browser from http://torproject.org
2. In the Tor Browser open the http://43qzvceo6ondd6wt.onion/
Note that this server is available via Tor Browser only.
Retry in 1 hour if site is not reachable.
Copy and paste the following public key in the input form on server. Avoid missprints.
Follow the instructions on the server.
***To help make things much faster, the drive is no longer in the machine nor will it be returned to it as it failed a seatools test. That and... they said they don't really have a lot they want, but would like to try to save it if possible.****
Edited by hamluis, 29 June 2015 - 04:32 PM.
Closed per request - Hamluis.