By waking up this morning, I realized that two servers and a PC in my office were infected by a ransomware. All I had on my screen was a message saying:
To decrypt contact email@example.com
By a quick research I did I found that this is most probably a MBR ransomware, as when I reboot the computer/server, I got immediately this message.
Also By putting a drive as an external on USB docking, I see that the main partition of the drive is on a RAW format and the the system reserved part remains as NTFS.
Do you believe I could have some luck to recover my systems? Any help would be much appreciated.
PS: How can I attach images on this post?