Thanks again Nick
... shame on us, the trash bin had been set to off !! Grrr
Spending half a day on the forums about this problem ... the only option left is paying or not
But thanks

I am surprised there is no .trash. I thought they were there by default (I don't use flexshares). Do a "locate .trash --basename".

The same comment applies for ClearOS. If you are looking to recover files it is best to take it offline.

Please google ransomeware solutions as well.

[edit]
The default .trash may be at top level of the filesystem and common to all shares.
[/edit]

Hi Nick
Thanks for your answer Unfotunately, there's no .trash folder on that flexshare ! Grrrrr ...
Maybe a commande like extundelete ?
Thanks to all

If the files were on flexshares, with something like WinSCP have a look on the server at for .trash folders which are probably at the top of any flexshare path.

If the files were on the PC you may have a chance or recovering old files. To do this take the PC offline and remove the disk. Work on the disk from another PC, or, even better, a copy of the disk from another PC. The more the original PC is on, the more chance it has of overwriting the deleted files which is bad.

A while ago on some security forum I bumped into, I noticed that they had found a way to recover some/all files. Presumably this is with a particular version to the ransomware, but I don't know.

[edit]
Try googling "recover ransomeware".
[/edit]