My Book Live Total Data Loss
Philip Shaw
jpv...@gmail.com
--
Data Recovery Certification Group / for issue with google group please email sc...@myharddrivedied.com
---
You received this message because you are subscribed to the Google Groups "DataRecoveryCertification" group.
To unsubscribe from this group and stop receiving emails from it, send an email to datarecoverycertif...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CAPG2QkYrgM9c6yiVTnhWbK-rZskzQFK2Bh3Wf3uE949V5HKoew%40mail.gmail.com.
Paulo Braga
Philip Shaw
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CANBOQm798F5NOZnqBXB-wXJ%2B1%2BcB5XTeUcaAxvN0gK_HKbCeYw%40mail.gmail.com.
Desert Data Recovery
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CAPG2QkbLOguk_hsS2_APjqtKy5hiUe3b36tHJZoJUrLUx9xHzg%40mail.gmail.com.
Philip Shaw
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CAOasWzvmy%2BhsQxjua7x9NFcst-2tPw7AD0VHuVyX1raf7U2eng%40mail.gmail.com.
t...@desertdatarecovery.com
I think it’s highly unlikely that it is a virus, but who knows at this stage.
Tim Homer - Lead Engineer
Desert Data Recovery
From: datarecovery...@googlegroups.com <datarecovery...@googlegroups.com> On Behalf Of Philip Shaw
Sent: Friday, June 25, 2021 8:37 AM
To: DataRecoveryCertification <datarecovery...@googlegroups.com>
Subject: Re: My Book Live Total Data Loss
Very nice. Do you think there is any concern of putting this drive on an important computer? Could this malware propagate or is it just limited to screwing up these particular units?
On Fri, Jun 25, 2021 at 10:57 AM Desert Data Recovery <t...@desertdatarecovery.com> wrote:
You need UFS Explorer to recover the data. The File system is a hybrid SQL lite and EXT.
On Fri, Jun 25, 2021, 7:47 AM Philip Shaw <shawcomput...@gmail.com> wrote:
I am running this drive on R-Studio and it appears that the folder structure has been blown away but the data is definitely out there. No encryption (nefarious or WD) and no full format. Reclaime didn't find folder structure after about 10 minutes but I will try that again when R-Studio is done.
Virus-free. www.avast.com
On Fri, Jun 25, 2021 at 8:51 AM Paulo Braga <pauloa...@gmail.com> wrote:
Em sex., 25 de jun. de 2021 às 13:35, <jpv...@gmail.com> escreveu:
Not personally but it's all over the place. From what found sofar partitions were wiped, recreated and then reformatted. You're dealing with an EXT4 data partitions. I read mixed results on PhotoRec raw recovery.
__________________________________
Sent from eM Client | www.emclient.com
On 6/25/2021 2:30:11 PM, "Philip Shaw" <shawcomput...@gmail.com> wrote:
I got a call this morning from a potential customer who has a WD My Book Live that has been factory reset due to a "malicious software" update. Apparently this is a widespread problem. Has anybody encountered one of these yet?
It apparently happened worldwide on June 23rd so it is very new. He should be bringing it over this morning and I will let you know what I find.
Virus-free. www.avast.com
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CAPG2QkYL%3D1ztL4dU2wR06VwbE7YL6NLTfiPy-MvGKer6AFnktg%40mail.gmail.com.
jpv...@gmail.com
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CAOasWzvmy%2BhsQxjua7x9NFcst-2tPw7AD0VHuVyX1raf7U2eng%40mail.gmail.com.
Data Recovery Guru
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/em8f5968e2-873e-4ffa-beed-9af67f012687%40alien.
Philip Shaw
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/CAHoXmqkZ2Xa_Sfjt%2BuJAvjCQ2-WF-F6d3A6hJqSg5SuBdf1mpw%40mail.gmail.com.
giftedte...@gmail.com
jpv...@gmail.com
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/5b8dbd1f-f3c4-4d48-8471-327fc15c55d0n%40googlegroups.com.
t...@desertdatarecovery.com
That does seem to be the general consensus.
From: datarecovery...@googlegroups.com <datarecovery...@googlegroups.com> On Behalf Of jpv...@gmail.com
Sent: Wednesday, June 30, 2021 1:50 PM
To: datarecovery...@googlegroups.com
Subject: Re[4]: My Book Live Total Data Loss
I think RAW is all you're gonna get.
__________________________________
Sent from eM Client | www.emclient.com
On 6/30/2021 10:31:29 PM, "giftedte...@gmail.com" <giftedte...@gmail.com> wrote:
Received one yesterday. Data is there. File system is gone. Ive tried every tool. Only raw so far.
On Friday, June 25, 2021 at 3:53:07 PM UTC-4 Philip Shaw wrote:
The data should be there.
Virus-free. www.avast.com
On Fri, Jun 25, 2021 at 3:24 PM Data Recovery Guru <proz...@gmail.com> wrote:
Funny, a customer just called about this with a My Book Live drive here in Massachusetts.
On Fri, Jun 25, 2021, 12:07 PM <jpv...@gmail.com> wrote:
But is that the same device even. Problem is about the MyBook Live.
__________________________________
Sent from eM Client | www.emclient.com
On 6/25/2021 4:57:44 PM, "Desert Data Recovery" <t...@desertdatarecovery.com> wrote:
You need UFS Explorer to recover the data. The File system is a hybrid SQL lite and EXT.
On Fri, Jun 25, 2021, 7:47 AM Philip Shaw <shawcomput...@gmail.com> wrote:
I am running this drive on R-Studio and it appears that the folder structure has been blown away but the data is definitely out there. No encryption (nefarious or WD) and no full format. Reclaime didn't find folder structure after about 10 minutes but I will try that again when R-Studio is done.
Virus-free. www.avast.com
On Fri, Jun 25, 2021 at 8:51 AM Paulo Braga <pauloa...@gmail.com> wrote:
Em sex., 25 de jun. de 2021 às 13:35, <jpv...@gmail.com> escreveu:
Not personally but it's all over the place. From what found sofar partitions were wiped, recreated and then reformatted. You're dealing with an EXT4 data partitions. I read mixed results on PhotoRec raw recovery.
__________________________________
Sent from eM Client | www.emclient.com
On 6/25/2021 2:30:11 PM, "Philip Shaw" <shawcomput...@gmail.com> wrote:
I got a call this morning from a potential customer who has a WD My Book Live that has been factory reset due to a "malicious software" update. Apparently this is a widespread problem. Has anybody encountered one of these yet?
It apparently happened worldwide on June 23rd so it is very new. He should be bringing it over this morning and I will let you know what I find.
Virus-free. www.avast.com
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/em7da6d588-3619-4c09-b183-9c90841033de%40alien.
Alandata Recovery
To view this discussion on the web visit https://groups.google.com/d/msgid/datarecoverycertification/01ce01d76df2%2403e743c0%240bb5cb40%24%40desertdatarecovery.com.
"Cleanroom Data Recovery of RAID, VMware, NAS, Linux, Tape, Disk, Forensics"
