A computer in our office was recently infected with the cryptolocker trojan, and we fear it has spread to files on our shared servers. The infected computer has been taken off the network, and though removal of the software is doable, the files remain encrypted without their private key (the public key is on the local machine).
What are the steps to take in this situation, if anyone has dealt with this? Is there a way to obtain their private key without paying the ransom?