New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
MySQL doesn't exist in engine (Aftermath of JungleSec Ransomware)
We have managed to get all important data from a VPS that was encrypted. The problem is that we are unable to make the MySQL databases to work due to an error MySQL doesn't exist in engine.
mysqldump: Couldn't execute 'show create table attendance_info': Table 'attendance.attendance_info' doesn't exist in engine (1932)
Any database experts here? My client is willing to pay a small fee for the solution.
Comments
Have you already tried basic steps, like
https://www.devopssupport.in/blog/fixing-mysql-error-1932-table-doesnt-exist-in-engine/
and asking chatgpt.
USE attendance;
SHOW TABLES;
Sounds like corrupted data
You need to chexk whether the data is there, not corrupted
CHECK TABLE attendance_info;
Go into files, wherever the mysl is and chexk for the table. Maybe send the tree output
Already tried everything possible, whatever was found online.
So all the data is there. Just we can't use it or get dump backup due to the doesn't exist in engine (1932) error.
Hi,
Have you tried the following:
Export only that table, that sometimes skips the lock and gets you a dump:
mysqldump -u username -p --single-transaction --skip-lock-tables attendance attendance_info > dump.sqlTry a repair:
REPAIR TABLE attendance_info;ib_logfile*andibdata1files from the old MySQL data folder to the new MySQL data folder, this can resolve the issue.Hopefully this can help!
Full logs of mysqld?
aka I assume it's InnoDB database - did you restore all the files needed? There are some crazy files like
ibdata1andib_logfilethat are above of "per database" directory that are also needed for InnoDB engine to work.SHOW TABLE STATUS WHERE Name = 'attendance_info';
Pls run
CHECK TABLE attendance_info;
Ypu can try:
ALTER TABLE attendance_info FORCE;
It is InnoDB. I didn't touch it yet. Waiting for Rack911 to check out everything as it is.
We do have ibdata1 and ib_logfile.
Then you can try the force thing, chexk my comment
Pretty sure it was logged on status on InnoDB, you can tried execute query :
And see what lastest error occured.
Update?
Rack911 is trying to fix it now.
I will try myself again once they are done trying.
Probably messing with the files while mysql was running corrupted the file structure.
If everything fails and it's important data, send me a pm, I can help with trying some low level reading of the data, I have some experience on similar situations.
How much does r911 charge these days?
probably leg and an arm
$150 per hour with 30 minutes increments.
yikes, im cheaper
but definetly not as good
Which Rack911 is this? Rack911.com or Rack911Labs.ca? Or are they the same company just one is server management and one is pentesting/vulnerability?
They are related. They works together and so on but different as far as I know.
I am with .com
Any other providers that help with emergency service like rack911?
Did this get resolved? You got a number of really good suggestions here.
Around 50% of the database can be recovered. My client said it will not work for him and we might get sued if we are unable to recover most of the database.
So we will be trying to decrypt the VPS again with help from the attacker and see if we can do better.
Why would the client want to sue you? Did you somehow guarantee some sort of working backup or something? Sorry to derail the thread
Nope. Not in our terms. Those were the chosen parameters when the service was ordered.
Support: Unmanaged ($0.00)
Automated Backups: No thanks, I will keep my own backups ($0.00)
The plan itself comes with premium support so I just had to try my best. My client is currently running with a backup from 2 Sep 2024 for now. I have tried my best with Rack911 and the attacker to get those data fully recovered. We have managed to recover around 80% of the complete data so far after spending days and night on it. That includes 100% of the websites/files and at least 50% of the databases.
It sounds to me like you went way above and beyond for the client, and that you have a pretty solid defense against any legal action (which is likely just an empty threat anyway).
It's a good thing that we are debt-free and operate at very low monthly cost.
We can afford a decent lawyer and will definitely fight in case he does actually sue us. We won't be going for any settlements.
On a side note, never open a wrongful payment dispute on us. We usually fight those. Just ask for a refund first.
Maybe try to recover from binary log?
https://dev.mysql.com/doc/refman/8.4/en/point-in-time-recovery-binlog.html