Malware

Some crap encrypted the file, what should I do?

Good afternoon.
Today, users have discovered that some of the files cannot be opened and have a strange *.just extension, i.e. there was a document.doc file, but it became document.doc.just and message.txt lies next to these files:

Purchasing a decryptor: [email protected]
When applying, indicate your ID in the subject line: 1117114721 The
key is stored until 09/22/2014 Applications
after 09/22/2014 will be ignored.
Letters are processed by an automatic system.
Possible response delays

I scanned CureIt on one machine and found several log files . I don't know if these malware are ransomware or not.
The initials of the employee are set in the file properties, nothing was found when scanning his car. If necessary, the archive contains examples of encrypted files. password virus.
Damn, I don’t know what to do, only at the weekend they wanted to introduce TrendMicro.
We called several more companies where we have valid keys:
Kaspersky support says that try to decrypt the files with our decryptors, and if it doesn’t help, then write a statement to the authorities (of course it didn’t help). Yeset said send the files - terms from two weeks to two months - sent.
Moreover, what is most interesting, encryption began only on the server where the working documents were, on other machines not a single file with the *.just extension was found. And the worst thing is that we cannot determine whether this malware has been removed or not.