Data Recovery Machine, Myth or Reality?

November 8th, 2011

Vaughan, Ontario, Canada.

Some people believe that data recovery service companies have automated “data recovery machines”. Basically, a data recovery technician physically removes an individual disk or platter from the inaccessible hard drive, inserts the disk into the machine and automatically reads off the data. While several recovery companies have attempted to create such a data recovery machine, in reality there exists NO such device!

Even if such a machine existed it could’nt solve “all” the data loss situations. In many cases the physical damage to the hard drive’s discs prevents any chance of reading the discs and successfully recovering data. The drive’s disks are coated with an extremely thin layer of magnetic material and when a crash develops on the disks it physically removes this coating and turns it into a black magnetic dust. That dust is the actual data and nothing will ever be able to put it all back together …period.

But the real problem with developing a data recovery machine would be the customization required to support the overwhelming number of different hard drive families in existence. Each family shares similar hardware, architecture, and encoding schemes. When you send data to a hard drive to be written, it is typically encoded 5 different times before it is actually written on the physical disks. These encoding schemes are usually quite different between families of hard drives and are constantly being updated in pursuit of higher data densities. In my estimation there are thousands of different schemes that would need to be reverse engineered in order to decipher data from just today’s current drive models, let alone the equal amount of non-current hard drives still in use.

Back in the late 1990’s there was a Scandinavian data recovery company called Ibas that developed a data recovery machine called the Patan for Pattern Analyzer. http://web.archive.org/web/20021101051021/http://www.ibas.com/technology/hard-disk-repair.htm Of course the company claimed, ambiguously that it could recover data from independent hard drive platters or disks, but in reality it

Data Recovery Machine

PATAN Data Recovery Machine

could recover data from just one family of Seagate hard drives, and even then it was a non-current family of MFM hard drives. (ST4000 series) MFM drives use an interface with 2 ribbon cable connectors and haven’t been manufactured since the early 90s.

More recently (early 2000’s) in my prior life at a leading data recovery company, we developed a machine to read data off the disks of a Western Digital SCSI hard drive and a few other similar PATA models.  http://www.channelscience.com/files/Drive-Independent_Data_Recovery.pdf But again, the device took talented engineers many years to develop, could recover data from just a few specific models and required constant tweaking and attention. As of today, it’s my understanding that this dust gathering machine has been largely used as a slick marketing tool.

Due to the extreme and constant technical advancements in hard drive technology and the presence of several distinct and competitive hard drive manufacturers I doubt we will see any additional attempts at creating a drive independent data recovery device. And with many of the newer data recovery techniques we have developed, the need for such a machine is becoming a distant memory. So, once again don’t forget Memofix Data Recovery Services www.memofixdatarecovery.com for those occasions when you just can’t live without your data.

Tags: , , , , , , , , , ,
Posted in General | No Comments »

Data Recovery and the Thailand floods

October 31st, 2011

If you’re not aware, Thailand, the 2nd largest producer of hard drives in the world, has been experiencing some intense flooding which in turn has significantly depleted the worldwide supply of hard disk drives.  Western Digital appears to be the worst hit and as result will likely lose its ranking as the #1 producer of disc drives.

Does this affect the data recovery business? YES, you may pay more.

The majority of Data Recovery cases require the replacement of various defective hard drive components and in particular the head assembly. These individual hard drive components cannot be bought on the open market and consequently data recovery companies source complete hard drives for breaking down into parts. This need for specific hard drive parts has in turn fostered a growing business in used hard drive sales.  And while a disk drive may have originally sold for $79, these vendors have long been demanding double the price when supplying a data recovery service provider.

NOW, with the worldwide shortage of new hard drives, the used hard drive market is exploding and prices are exploding even more.  Many data recovery companies will need to start charging higher rates to cover the increase in parts cost. However, Memofix Data Recovery Services sources 98% of its parts drives from our mother company Memofix Hitech Services and as a result we rarely need to order parts. Memofix has over 26,000 hard drives in stock and services up to 3000 new hard drive every month. With such a large supply we charge less, try harder and complete recoveries quicker. When it matters, call Memofix!

http://www.memofixdatarecovery.com/data-recovery-hard-drive.php

Tags: , , , , , , , , , , , , , , , ,
Posted in General | No Comments »

Data Recovery & Encryption, foe or friend ?

September 26th, 2011

Toronto, Ontario, Canada.

To most of us, the word “encryption” conjures up images of spies and secret disks containing information that must be guarded at all costs.  Few of us realize that we all rely on and use encryption almost every day in our normal lives. Whether making a cell call, sending an email, buying something with your debit card, or accessing the web wirelessly, we are using and being protected by this not so simple process.

What is encryption? Encryption is the process used to transform and disguise data so that it is unreadable or undecipherable to anyone without a pre-determined secret code or password.  Basically, the data to be encrypted is sent through an elaborate algorithm using the secret code or password to scramble the data into indistinguishable rubbish.

Please note, that password protection is NOT encryption. Password protection “may” prevent access to the data, but it does not alter the actual data. Password protection can be easily bypassed.

Encryption has also become common place for protecting data on computer based storage device like hard drives and USB flash sticks. Encryption can be used to protect an entire volume, a folder or even a single file. There are several distinct implementations available:

  • SOFTWARE, Users can buy or use free encryption programs that make it possible to encrypt files, folders or even their entire hard drive or flash device using software routines to intercept and modify the data on the fly. The entire encrypting and decrypting process is handled by your computer’s CPU or processor.  Popular examples include SafeGuard, SecureDoc, PGP, TrueCrypt and Safeboot. Starting with XP Professional, Microsoft includes a built in folder and file encryption feature called Encrypting File System or EFS for short. Software encryption methods are popular as they are inexpensive and can be implemented on any existing storage device. However, they are generally much slower, typically 20% slower than hardware based methods.
  • HARDWARE, There are external hard drive devices that use a standard hard drive connected through a “hardware based” encryption interface board. In many cases this encryption process is performed without the user even being aware. Many Western Digital external boxes use this method allowing 100% data protection if the drive is ever removed from the enclosure and its encrypting interface board. Hardware techniques are considerably faster than software methods.
  • SELF ENCRYPTING, Users can now buy hard drives and SSDs that utilize on-board hardware to encrypt and decrypt the data on the fly.  These devices encrypt the entire contents of a storage device and are referred to as SEDs or self-encrypting devices or drives. These drives carry a premium price tag but are the ultimate in safety and speed. Some hard drive manufactures such as Seagate may also refer to this self-encrypting as FDE or Fixed Disk Encryption.

Why use encryption? Most of us have heard a story or two about personal financial data falling into the wrong hands due to a corporate laptop being stolen or lost. Or the often recreated news story about reporters picking computers out of the trash and finding “valuable” info left abandoned. Yes it does happen, as someone who regularly buys previously used hard drives can attest. But just how many of us actually have super sensitive data on our computers in the first place?  If you are one of the few that must keep your data from prying eyes, then by all means encrypt away. But if you don’t need to … DON’T!

Besides the potential loss in performance, there are several other reasons not to use encryption.

  • LOSS OF PASSWORD OR KEYFILE: If you can’t remember the password or can’t find the keyfile you made 3 years ago, you will NOT get your data back, period. While there are numerous recovery techniques for decrypting or accessing encrypted volumes, they all require some form of a username/password combo or a special key file created by the encryption software.
  • OPERATING SYSTEM FAILURE: If an encrypted drive’s operating system becomes corrupted, perhaps due to a simple virus and the drive is no longer bootable or accessible, there is no easy way to repair the file system and regain access. To resolve the issue you must first decrypt the entire volume. Again you will need a user/password or keyfile (and specialized programs) to perform such an operation. Once the volume is decrypted, the  file system damage can then be repaired using the file system’s own repair utilities, i.e. chkdsk.exe
  • READ ERRORS: Over time storage device can easily develop read errors and if these read errors affect the operating system files or an area used to store pertinent encryption parameters, it can become impossible to access your data. As above, complicated procedures will be required to decrypt the volume and access the data. A single read error can stop everything.

Is encryption breakable? Theoretically, with enough computing power and enough time, any encryption scheme can be broken. But if the process takes a thousand years, the value of the data may be very limited. And fortunately the increase in computing power to break the key is easily outstripped by the exponential increase in difficulty by adding an additional bit to the encryption key. Presently, most credit card companies recommend transactions using 128 bit encryption keys. 128 bits keys are considered by the experts to be safe until about 2030 although some recommend 256 bit keys due to the advent of the “quantum computer” where theoretically the difficulty may be halved.

There are 2 basic ways of breaking encryption. The hacker either breaks the password by guessing the password or the hacker uses crypto analysis to guess the message based on the natural frequency and composition of the characters in a given language. To guess a password is often very easy as people tend to use real words and they are often chosen from an individual’s personal life or interests. Even brute force using a pre-created word list is often successful. To be sure your password can’t be compromised in your lifetime it has been recommended that your password should be at least 20 random characters. Of course few of us can remember such a long sequence.

In the real world, getting around the encryption is often much easier than either of these methods. Keyboard recorders are simple to install devices that can be used to record all the keystrokes of a user including their passwords. Or perhaps a hidden camera could provide the same results.  Another technique can be utilized if a user leaves their computer unattended, as the contents of RAM memory are not encrypted and there are ways to dump the RAM contents and retrieve a password. Additionally, a group of researchers/hackers recently discovered that the contents of RAM memory do not disappear as soon as the power is removed. In fact if the RAM chips can be kept cool, the data may be retained for 10 minutes or longer. Theoretically reading the RAM contents could be possible even if the power is turned off. But this isn’t really so much about breaking the password as it is about stealing the password.

Can Memofix recover your encrypted data? Usually YES, but we need your keyfile or username/password combo … PERIOD. If we could recover your encrypted data without these credentials then what would be the point of using encryption in the first place.

We regularly recover data encrypted with PPG, Safeboot, SafeGuard, SecureDoc, EFS and most other software encryption programs. We are also very successful recovering hardware encrypted hard drives where the encryption is performed by an interface board separate from the storage device. i.e. the popular Western Digital My Book.

However, SEDs or Self Encrypting Devices present a real problem. It is estimated that by 2017 over 80% of all hard drives and all SSD or Solid State Drives will be SED or self-encrypting devices. There are NO decryption methods available for these SEDs and if consumers and businesses are to adopt these new SEDs, this concern must be addressed by the manufacturers.

Encryption is here to stay whether you need it or not. If you do choose to encrypt your data, we suggest you always create a key file and store it in a secure location. Additionally, record all usernames and passwords in a secure location and until the SED manufactures create a solution for authorized decrypting, we suggest you steer clear of their products or be sure to regularly backup.

As always, when things don’t quite go as planned remember your friends at Memofix http://www.memofixdatarecovery.com/ are always willing to help!

Tags: , , , , , , , , , , , , , , , , , , , ,
Posted in General | No Comments »

Laptop Hard Drive Crash

April 6th, 2011

An Unrecoverable Notebook Hard Drive

Many of the 2.5″ hard drives designed for laptop, notebook and netbook applications use glass platters. The glass platters can be manufactured with smoother and flatter surfaces which allow the heads to be flown closer to the disk surface. This in turn allows the manufactures to increase the density and store more data in the same space.
However, glass isn’t exactly known for its indestructibility and this picture illustrates the problems. This Western Digital laptop drive originally had two disks but the top disk has shattered into a hundred pieces. No useful data will be recoverable in this situation.

Tags: , , , , , , , , , , , , ,
Posted in General | No Comments »

a terrible pic …

March 30th, 2011
Data Recovery Toronto

the Data Recovery Blues

Sometimes the data is just not going to be recoverable!  Here is an example of a badly crashed hard drive we received for data recovery from a disappointed Toronto client.  Less then 5% of the hard disk drives we receive for data recovery purposes are in a similar condition. Typically this degree of damage begins with a lot of noticeable noise (clicking hard drive sounds) and escalates quickly into a total disaster!

Tags: , , , , , , , , , , ,
Posted in General | No Comments »

Recovering the past …

February 10th, 2011

North York, Ontario, Canada.

Everyone once in a while we get an interesting case that makes you scratch your head. We recently had a client that had re-formatted her hard drive and re-installed a bunch of programs before realizing that over 5 years of digital photographs were inadvertently forgotten. In a panic she arrived desperate for some advice or assistance in retrieving her photos. We quickly calmed her fears and assured her if there were photographs left intact on her hard drive, we could recover them.

Once in the lab we discovered that her actions had only overwritten a small portion of the drive’s file system and we were able to provide her with 85% of her pictures intact and in their original folders. We also recovered hundreds of orphaned photos which we gathered and put into a separate folder. She was ecstatic and went on her way happy to have her pictures.

A few days passed and we received a call from one very unhappy client. Apparently, we have included photographs which do not belong to her and they are of a very racy nature. She is irate and offended. Of course her husband denies any knowledge of these pictures, nobody else has access to her system, and the people in the pictures are not familiar to her or her husband.

I’m at a loss to explain how this could happen. My only thought is that the target drive we imaged her drive  to, was not erased prior to us using it, and we have recovered images from what is left of some former client’s data image. But our target drives are always prepared in advance with a pre-determined pattern written on every sector, and we are extremely meticulous in these processes. We quickly pull out our virgin image of her drive, which we retain for 30 days, and we confirm that the areas of our drive not used by the present image are still filled with our pre-determined pattern.  Ok so what the heck?

In order to get to the bottom of this issue we had the client once again send in her original hard drive. Our image was then compared with the original and not one byte was out of synch. It’s pretty clear that the mystery pictures were on her original drive before she ever brought it to us.  A conversation ensues with the client as to the history of the computer and the hard drive inside it. She reveals that the original hard drive was filled to capacity several years ago and her son-in-law upgraded her to a larger drive. Uh-huh … I think we’re getting somewhere. Where did the son-in-law purchase the “new” drive? “Oh it wasn’t so new, he purchased it on eBay.”  The pieces quickly merge together as we realize that the images have survived several formats and at least 2 years of constant computer use. Who took the pictures originally and who the cute girl is, we may never know, but we do know there is one husband who is very happy not to recognize  her.

Tags: , , , , , , , , , , , ,
Posted in General | No Comments »

DIY or Do-It-Yourself Data Recovery?

November 8th, 2010

WARNING: If your data is absolutely critical, DO NOTHING but send it to the professionals. More data is lost by well intentioned recovery attempts than is ever lost from the initial problem.

hard drive data recovery service

Toronto, Ontario, Canada. In some situations it may be possible to access your lost data using simple procedures OR even recover your lost data using relatively inexpensive software. Knowing how to differentiate which situations call for a professional and which don’t, is the key.

Before considering if DIY data recovery may be an option for you, be aware that your efforts may cause the permanent destruction of your data, so please proceed with caution!

The stress and panic of losing your data can often result in hasty and unwise decisions. Take the time to calm down before making any important decisions. Try and determine what data is absolutely critical and what data you can live without. Can the data be recreated and if so, at what cost? Is it backed up elsewhere or have I shared copies with any of my colleagues? Often, much of your data can be re-assembled from other sources and the remaining lost data can be worked around.

If you’re a home user or even a budget minded business, the cost of the recovery must be compared with the value of the data. Data recovery on hard drives typically starts at $500 and can easily surpass the $1000 mark, while data recovery from USB flash devices and camera cards is typically $300 or less.  Putting a value on last summer’s vacations pics or ten years of email is not always that easy. The value of the data is always in the mind of the beholder.

If you decide to attempt a DIY data recovery, you will first need to determine if your data recovery situation is a candidate for DIY data recovery.  Data loss can be the result of the 2 distinct problems:

  1. DEFECTIVE STORAGE DEVICE: Your data can’t be accessed because the storage device (typically a hard drive) is no longer functioning properly.  Unless you’re a hard drive expert, there is little you can do.
  2. DAMAGED FILE SYSTEM: the storage device is working but due to corruption or damage to the computer’s file system structures, the data cannot be seen or accessed.  The fie system keeps track of where the files are actually store on the hard drive or storage device.

In the first category, the storage device or hard drive is NOT working properly. To self evaluate your hard drive, open up your computer and locate the hard drive. If possible remove the hard drive from the computer, but keep the connectors attached as illustrated in the picture on the right.  laptop data recoveryNow place your ear as close to the hard drive as possible and power up the computer while listening. If your hard drive is making any strange or uncommon noises such as clicking, squealing, banging, clacking, ticking, scraping or other destructive metallic noises you likely have a defective hard drive. The louder the noises, the more likely your hard disk drive has begun to physically crash and there may only be a short window of time before the damage becomes insurmountable. If the data is mission critical, shut if off immediately, do nothing, and start shopping for a professional recovery service.  

If you don’t hear any audible screams of pain, your hard drive may still be defective.  hard disc data recoveryTo check further, monitor the screen as the computer is powering up for the post BIOS routines. In particular, there should be a message displayed when the computer is checking for the presence of hard drives. In the example on the left, there is one Maxtor 2F040L0 hard drive detected. If no hard drives are displayed, your hard drive is likely defective. However if no concerning noises are present, you can continue and attempt some of the additional procedures mentioned further on in this article. 

 In the second category of data loss, the hard drive is assumed to be working properly, and the data loss is likely the result of damage to the operating system files or to the “index of files”. However, this damage may still be the result of a hard drive perhaps failing internmittently, so be careful.

Many times a user cannot access their data simply because their computers will no longer boot up. Try attaching the inaccessible hard drive as a second drive on a good booting computer or install the inaccessible hard disk drive inside an external USB box and access it through a USB port. If the file system is still relatively intact you should be able to open up “My Computer” and gain access to the drive’s data files.  For MAC users the inaccessible data drive should show up as an icon on your desktop.

If the drive’s data files still can’t be seen, there is one more tactic that can be employed.  Running a commercially available data recovery program may recover the files you need, even if you’ve formatted the hard drive, deleted files or re-installed the operating system. Many of these programs can be purchased for less than $100 and offer a free trial period where you get to see the results before you decide to actually purchase the product. Be sure to attach an additional working storage device to the computer for recovering the data to. Data should never be recovered to the original storage device.

Hopefully your data loss is a simple issue and these procedures help you regain access to your data. However if your data loss situation is a more serious problem, please contact the experts at Memofix Data Recovery Services where data recovery is our passion and the tougher the case, the more determined we are to be successful. http://www.memofixdatarecovery.com/

Tags: , , , , , , , , , ,
Posted in General | No Comments »

and the Winner is ….

October 21st, 2010

Memofix Data Recovery Services recently ran a data recovery survey on our corporate web site. In appreciation for completing the survey we entered all participants (except my Mom) in a draw for a free 2TB External USB drive.

Yesterday the draw was held and we are pleased to announce the winner is;   

Alexandre Lemoine of ALTech Info located in Saint-Hyacinthe, Québec

Congratulations Alexandre!

We would also like to thank all participants for completing the survey. Your input was both valuable and greatly appreciated.

Tags: , , , , , , , ,
Posted in General | No Comments »

Laptop, Notebook, & Netbook Data Recovery

August 13th, 2010

Toronto GTA, Ontario, Canada.   Data recovery from laptops, notebooks and netbooks is not that much different then recovering data from desktop systems.  The most noticeable difference lies in the size of the storage device or hard disk drive being used by each computer. Most modern desktop computer systems uses a larger 3.5” HDD or hard disc drive while a typical laptop or notebook style computer will use a smaller 2.5” HDD. Additionally many newer notebooks and netbooks are starting to use SSD or Solid State Drives. This discussion will focus solely on hard drives.

While most people assume it’s tougher to recover data from a smaller 2.5” laptop hard drive versus the 3.5” desktop drive, it is actually the opposite in most circumstances. When data is lost due to a physical or mechanical issue with a hard drive, our historical statistics clearly show that 2.5” laptop or notebook hard drive owners have an almost 10% better chance of seeing their data again versus 3.5” desktop drives owners.  In my previous life at another recovery company, this same statistic also held true. Hmm … seems strange, especially when I see some data recovery service companies adding a surcharge for dealing with laptop hard drives.

So why are we more successful with 2.5” hard drive recoveries? First 2.5” hard drives sustain less damage when they do crash and second they are more accepting of standard data recovery procedures.

Laptops, notebooks, netbooks AND 2.5” hard drives are designed to take more physical abuse then your typical desktop computer or hard drive. By design and virtue of their tiny mass, 2.5” hard drives can absorb anywhere from 3-5 times as much shock as a typical desktop drive. Portable computers also use shock absorbing mounting brackets to further isolate the hard drive from any external bumps or drops. These damage saving features decrease the severity of damage due to crashes.

Laptop and other portable computer manufactures are also concerned with decreasing the energy consumption and heat dissipation of their products. Fortunately, both of these pursuits provide additional benefits for preserving your data. For example, most laptops save energy by spinning down the hard drive when the laptop is not used for a predetermined period of time. And because hard drives are much more susceptible to damage when they are spinning, this energy saving feature can really save data. 2.5” laptop hard drives take it even a step further and use ramps to lift the heads physically off the disk surface when the drive is spun down while many 3.5” hard drives continue to land the heads on the surface of the disks or platters. Once again an energy saving feature that helps prevent damage to the disk. And there is also some validity in the argument that saving energy creates less heat which in turn causes less drive failures.

Laptop, notebooks and netbook drives are also much more tolerant of data recovery techniques. Head xplants or the process of replacing a bad head assembly with a good head assembly is one of the more commonly used data recovery techniques, but because each hard drive’s head assembly is ever so slightly different and the hard drives electronics were tuned to work specifically with the original head assembly, xplants are often not successful.  However this procedure is much more successful when attempted between two 2.5” hard drives versus between two 3.5” hard drives.

Because 2.5” hard drives are principally used in portable devices that  by definition will operated while the user is mobile, they are designed to deal with harsher conditions and recover from a larger range of off track data situations then a typical 3.5” hard drive. Consequently they are more accepting of new heads with their slight differences. You can compare it to a racing car and a jeep. The racing care is tuned for high performance and is capable of going very fast and taking corners at incredible speeds as long as the road is smooth. But when the road turns too dirt and mud the racing car gets stuck.  On the other hand, the jeep may not go as fast but when the road gets rough, it’ll keep on going.

Media damage, whether disk or platter damage, head crashes, or rings forming on the disk are always a problem. And once again, we find 2.5” hard drives are just more tolerant of damage. As a method of preventing damage in the first place, 2.5” hard drives fly the heads at a greater height above the disks then 3.5” hard drives. This allows a laptop or notebook drive to take more physical abuse or impact without having it’s heads coming into contact with the disk surfaces. This design also allows them to float above damage that would impede the positioning or even damage the heads of a typical 3.5” hard drive and thus giving us a much better chance of recovering data.

So even though your laptop hard disk drive may be smaller then it’s big brother the desktop drive,  it’s still the leader in data loss prevention and the better drive to be using should you ever need the services of a professional data recovery company, like Memofix Data Recovery Services.  http://www.memofixdatarecovery.com/

… David Foster

Tags: , , , , , , , , , , , , , , , , , ,
Posted in General | No Comments »

Remote Data Recovery

July 8th, 2010

Toronto GTA, Ontario, Canada.  Recovering data remotely is a service presently being offered by several of the larger data recovery companies.  It sounds so convenient, no shipping, no computer disassembly, no risk, just call someone up and they remotely connect to my computer, and “poof” my data is restored. If only it were so simple. In reality it’s much more of a marketing ploy then a realistic recovery option. The complexities and dangers of offering remote service seem to counter the very pillars of data safety.

First you must consider that for a remote data recovery service to be successful the hard drive must be functioning properly; otherwise there is a serious risk of causing further damage. If the drive has physical problems and is beginning to fail, there may only a short window before the damage becomes insurmountable. As every data recovery company will advise, if the data is important, shut it off immediately and do nothing. So unless you’re knowledgeable enough to determine the condition of your hard drive or you don’t mind a 50/50 chance of doing further damage you may want to reconsider a remote data recovery service.

Furthermore, this service requires the user to have some technical computer skills as the original hard drive must be removed and installed in a second web attached computer along with possibly an additional hard drive to copy the recovered data to. Some assistance will also be required to setup and establish the remote link. And while some users may feel comfortable with these tasks, the real concern is with the increased risk of causing further damage whether due to physical handling, static shock, or the unintended running of automatic drive utilities like chkdsk.

It is our policy and that of most other professional data recovery services to create an exact image or mirror of the original drive. The original drive is then put away for safe keeping, while any alterations to the file system structures or running of utilities are completed on a copy of the copy. In a remote data recovery situation, you do not have the luxury of having a backup copy in case things go wrong.

We also see many cases of apparent file structure damage where the storage device or hard drive initially appears to be operating fine but as we attempt to image it we discover read errors or the drive starts failing in some other way. In instances like this there is a strong chance the file structure damage was actually caused by the physical issue. Attempting to recover data from a drive like this will just aggravate the situation and risk further damage to the storage device or filesystem.

In my past life, I worked for one of the larger data recovery companies that considered offering a remote recovery option. At the time we had multiple lab locations across the USA and we were already using remote connections to share the data recovery expertise spread throughout our different labs. Our more senior data recovery engineers essentially used remote access to evaluate and direct a more junior tech in how to proceed with a difficult data recovery. Prior to us offering the service to the general public, we investigated our competitors offering by conducting a secret shopper campaign where we attempted to engage their remote data recovery services. Surprisingly, we were repeatedly met with opposition when we requested a remote recovery. They tried to sell us data recovery software, followed by in-lab service before reluctantly agreeing to only attempt a remote recovery IF we approved a minimum of $1500 for the recovery if successful. And this was without ever looking at the media. It’s readily apparent that the entire concept was being used to get you to call them so they could then attempt to try and talk you into shipping the case to their lab.

Remote data recovery has most of same limitations and capabilities as that of a good data recovery software program. The drive must be functional and it must be connected to a working computer system.  In many situations a data recovery program will perform as good as a remote recovery service. In fact, the remote recovery tech is more then likely going to be running utilities as part of the effort to salvage your data.  So why pay for someone to hook up remotely and run utilities on your system. You can do that yourself and with less complications and time wasted establishing a safe connection.

There are a few occasions where remote data recovery does makes sense, where due to the isolation of the location there is no other option, but for those cases that can be delivered to a full service data recovery lab you would be very unwise not to take advantage of the hands on experience of a data recovery specialist.  http://memofixdatarecovery.com/  … David Foster

Tags: , , , , , , , , , , , , , , , , ,
Posted in General | 1 Comment »

Data Recovery Insurance

June 22nd, 2010

Toronto, Ontario, Canada. Hard drive manufactures provide a warranty on their disk drives that will provide you with a new drive should yours happen to fail within the warranty period. However, none of these warranties can protect or replace your data should it become inaccessible or lost as a result of a failing hard drive or accidental damage. And in fact, the drive manufactures go out of their way to distance themselves as far away as possible from any liability for the data that is stored on their product. So why hasn’t someone offered insurance on the data that resides on your hard drive or other digital storage device. Simply put, it isn’t possible! Data is not always recoverable, no matter how much money one is willing to pay.

A few companies have attempted to sell “data recovery” type insurance but none would ever be so bold as to guarantee your data. Instead the few twisted souls that have ventured into the data recovery insurance game have chosen to repackage a similar type of insurance under the name of a data protection service.

About 5 years ago one of the laptop hard drive manufactures partnered with a data recovery company in offering this type of insurance. In such a plan, you are charged a small premium to cover the cost of “attempting” to recover your data should such a disaster befall you. There are no guarantees they will recover your data, only a promise to give it their best efforts. And if they’re not successful, there are no pay outs or compensation of any sort, other than possibly offering to insure your new replacement drive for free. Personally, I fail to see any incentive for the underlying data recovery company to give it much of an effort or expend any serious resources.

Many of us already have a home owner’s insurance policy that may provide coverage for data recovery services should you lose the PERSONAL data on your home computer. I was surprised to see my policy covers such losses up to $1500. Unfortunately there was a $500 deductible but at least I am covered for a serious recovery attempt at a relatively low recovery cost. You may want to check your policy or ask your insurance agent if you have coverage.

There is one external hard drive manufacture that I don’t have much experience with, but who does offer data recovery insurance on their products as a standard offering. The company is ioSafe http://www.iosafe.com/ and they specialize in manufacturing disaster proof external hard drives. Protecting your data is what their products are all about and guaranteeing them with a warranty to cover up to a $1000 of data recovery services should make you take them seriously.

I  also remember working at ActionFront Data Recovery Labs in the early 2000s and we provided the recovery services to support a data recovery warranty for Belkin surge suppressors. Basically if you lost your data as a result of their product failing to protect your hard drive they would pay for the cost of recovering your data. There were no limits as I recall and the plan was based on our best efforts. We didn’t get paid unless we were successful so the client really did get a 1st rate recovery attempt.

While any item can be insured for cash compensation should that item be destroyed or lost, there are some things that just can’t be replaced with cash and perhaps your data is one of them. There are no guarantees that your data can be recovered so do what you can to prevent a data disaster in the first place. Protecting your data isn’t expensive, it’s priceless!  … David Foster

Tags: , , , , , , ,
Posted in General | No Comments »

Got Your Data Back, Now What? … Re-Integrating Your Data

June 9th, 2010

Toronto, Ontario, Canada. If you’ve had the misfortune to experience a data loss situation, whether because you accidentally dropped your laptop, your brother-in- law insisted on reformatting your hard drive or perhaps a passing lightning storm drove a voltage spike through the heart of your system, then you know getting your data recovered is just the first step in getting your computer back in order.

 In recovery cases where the original hard drive was found to be defective, it will need to be replaced with a new drive.  In cases where the only problem was a LOGICAL issue, you may be able to re-use the original hard drive, BUT we do not recommend this as some logical problems may be the result of intermittent problems with your hard drive. Regardless of your situation, once a reliable storage device has been physically installed in your computer, you need to install & configure the operating system and install all the various programs or applications you may use. In most cases you will require the original licensed installation diskette(s), CD/DVD(s) or USB flash stick.

 Once you have your system setup and bootable, the storage device with the recovered data (typically a USB external hard drive) can be attached to the new system.  Identifying where to locate and copy the recovered data to is determined by the operating system and what your original username was.

 For example, in Windows XP there is a folder in the root directory or top level folder called “Documents and Settings”.  Within the “Documents and Settings” folder you will see a folder named for each user set up to use the system.  There will be folders with names like “Administrator” and “All Users”. Among these folders you should also see a folder with the same name as your previous login name. So if you previously logged in as JoeUser you should see a folder called “JoeUser”. This is the default location for storing all your personal data. Some advanced users may have chosen a non-default location for some of their data files but such users should not require this article to reintegrate their data. Once inside your personal “JoeUser” folder, you will see some standard data folders with names such as “Desktop”, “MyDocuments”, MyPictures”, and “MyFavorites” . If you were to open the “Desktop”  folder you should see all the items that were previously on your desktop. To copy this folder to your new system so your desktop looks just like it was before, simply drag and drop the “Documents and Settings/JoeUser/ Desktop” folder into the “Documents and Settings/JoeUser”  folder on the new system. The new system will prompt you for permission to overwrite the “Desktop” folder and once approved your data will be copied.  Repeat this procedure for each additional folder you may wish to copy. By default much of your data will be stored in the “MyDocuments” folder.

 If you use Outlook for your email under Windows XP, you can find your .pst data files in the default \Documents and Settings\%username%\Local Settings\Application Data\Microsoft\Outlook\ folder.  In Vista or Windows 7 the default is \Users\%username%\AppData\Local\Microsoft\Outlook\.

 The default location for storing your data in Windows Vista or Windows 2007 is very similar except the “Documents & Settings” folder has been renamed to “Users”. So if your login name was JoeUser, your data would be located in the “Users/JoeUser” folder. It’s interesting that this also happens to be the location of your data files on a Apple or MAC system.  Apple also uses a top level folder called Users which contains a folder named for each user and within each user folder you will find that user’s data. Drag and drop the data folders into the same locations on your MAC drive and you’re done.

David Foster

Tags: , , , , , , , , , , , , , ,
Posted in General | No Comments »

« Older Entries
Newer Entries »