Our Windows server was attacked by Ransomware DMALocker.
All of files and database backups where encrypted with byte pattern !Encrypt!## .
We found cryptinfo.txt, date_1.txt, start.txt, svchosd.exe under C:/ProgramData
Is there any chance to decrypt the encrypted files or is better to pay? We need database files to get instance in running mode.
Thanks for replay