Desktop Email Encryption

About all my files in my server have a extension with OMG!, files doc, xls, etc.. , and whem i delete that OMG!, I get the information that my file is encrypted

exempl: myhome.xls.OMG!

Checking the extenions of the file *.OMG it looks like it is coming from the 3rd party software  
'O&O DiskImage'

http://www.oo-software.com/en/docs/usersguide/oodi7.pdf

----snip----

File format OMG

O&O DiskImage generates the file extension (*OMG)for the image files it creates when imaging your entire computer or single drives. This file type can be used for further activities by O&O DiskImage, such as restoration, validation or conversion.

Encryption

Your data can be securely encrypted using the recognized AES method. This permits O&O DiskImage to provide your image with an extremely high level of security with a key length of up to 256 bits. 
You can select the encryption level for your files under Drive imaging/Imaging options/Image file/Security.
 If you then start the imaging process (Drive imagings), enter a password when being prompted.

------------------------------------

In my opinion you did an image of the files/folders with encrytpion so you need to use O&O DiskImage software to restore data from this image. Check if you have got this software on your machine installed.

Hi Lisa_RG,

This is likely a ransomware infection.  The following article may be of interest:

Recovering Ransomlocked Files Using Built-In Windows Tools
https://www-secure.symantec.com/connect/articles/recovering-ransomlocked-files-using-built-windows-tools

Hope this helps!

Mick

Here is the official write-up:

Trojan.Ransomcrypt.G

http://www.symantec.com/security_response/writeup.jsp?docid=2014-030318-1550-99

And Security Response have just posted a blog about this:

OMG a Ransomcrypt Trojan with a Conscience!
https://www-secure.symantec.com/connect/blogs/omg-ransomcrypt-trojan-conscience

Hope this helps! 

Mick

Yeah, this certainly sounds like ransomware or a virus to me. I hope you found a solution.