I have a file server in my office that is used by around 150 people and several departments. At some point we were hit with a cryptolocker but the virus is not on the server. By my best guess it's on an infected laptop and miking it's rounds over the last few months because a small number of files are encrypted every few weeks. Finding the virus on the computer could be troublesome since there are 5 sites and multiple visitors from the main office. That said does anyone know of a way to break the encryption? I've tried using what it has for removal and using the key.dat file but without the offending computer to get said file is there a different method anyone can suggest? Obviously finding the offending computer is the best solution in the long term but right now if I could unlock what we have I'd take it.