How to Recover Data From a Bitlocker Encrypted Disk

Discover the essential guide to recovering data from a disk encrypted by BitLocker in this comprehensive tutorial. If you’ve encountered data loss or need to retrieve files from a BitLocker encrypted disk, don’t worry. We’ve got you covered with expert solutions and step-by-step instructions to recover your data effortlessly. We walk you through the process of recovering data from a disk encrypted by BitLocker and ensuring the safety of your valuable files.

How to Recover Data From a Bitlocker Encrypted Disk

In order to recover data we will use the utility Repair-bde (BitLocker Repair Tool), a command prompt utility which appeared back in Windows 7 / 2008 R2. This utility is used for access and recovery of encrypted data in a damaged disk encrypted by BitLocker.

Warning. This procedure should be applied after all the others have failed, and it was impossible to unlock the encrypted disk in a standard way by using a Bitlocker password or recovery key.

Go to view
How to Encrypt a USB Disk with BitLocker, Unlocking with Password or Recovery Key 🔐💻⚕️

How to Encrypt a USB Disk with BitLocker, Unlocking with Password or Recovery Key 🔐💻⚕️

Reasons why a disk may be locked

Reason Description
TPM Unavailability Your computer can no longer be automatically unlocked using the TPM (Trusted Platform Module).
Forgotten Password or PIN You have forgotten the BitLocker password or PIN code set for the drive.
Disconnected from Corporate Network Your computer was removed from the corporate network, which may have been required to authenticate the drive.
Drive Connected to Another Computer You connected the BitLocker-encrypted drive to a different computer, which cannot unlock it without the recovery key.
System Data Modification Critical system data (such as the MBR or boot partition) was modified by you or due to malware activity.

Requirements For Data Recovery From a BitLocker Volume

To recover data from a disk encrypted by BitLocker you need to have at least one of the following Bitlocker defense elements:

  • BitLocker recovery password;
  • Recovery key;
  • System startup key (Startup key — .bek).

Data will be recovered to a separate disk the size of which should be no less than the size of the damaged disk. In the course of recovery, all contents of this disk will be deleted and replaced by decrypted data from the Bitlocker volume.

In our example, disk E: (size 2 Gb) is a USB drive the contents of which are encrypted by BitLocker, and which cannot be opened for some reason. To recover data, we have installed an additional external disk F: (size 16 Gb).

BitLocker volume

Method 1. Data Recovery With The Use of a BitLocker Password

In the first place, try recovering data with this method (it will work with Windows 8 / 2012 and newer versions):

  • Launch command prompt as administrator.
  • Execute the command:

    repair-bde E: F: -pw –Force

    where: E: — disk with Bitlocker data, F: — disk where decrypted data should be extracted.
  • In the course of executing the command you will have to specify BitLocker password (the same which a user is to enter into UI when trying to access an encrypted volume).
Data recovery with the use of a BitLocker password

Method 2. Decryption Of a Bitlocker Volume With a Recovery Key

For decryption of data located in a damaged volume which is encrypted with Bitlocker we will need a recovery key or a system startup key (if the system partition is encrypted).

Advice. BitLockerRecoveryKey is a unique sequence of 48 symbols. The recovery key is generated when a Bitlocker volume is created; it can be printed, saved as a text file to a local (this choice is not recommended) or external disk, or in a user account at Microsoft website.

Decryption of a Bitlocker volume with a recovery key

Now let us launch data recovery with the help of this key:

repair-bde E: F: -rp 011407-712393-682121-100210-377003-405174-520014-328130 –Force

If Bitlocker is used for encryption of the system partition containing Windows, and for loading the system a special startup key on a USB drive is used, the encrypted volume can be decrypted as follows:

repair-bde E: F: -rk I:F558473-943D-4330-8449-62C36BA53345.BEK –Force

where file 3F558473-943D-4330-8449-62C36BA53345.BEK is a key to launch BitLocker disk encryption on a USB drive G: (by default, this file is hidden).

After the procedure of data recovery and decryption, before opening the disk where the contents of the Bitlocker volume were extracted, it is necessary to run its check. In order to do it, execute the following command and wait until it is complete:

Chkdsk F: /f

Important note. If you failed to recover data from an encrypted disk with the described methods, it is worth trying to create a sector-by-sector copy of the damaged disk with the help of a Linux utility DDRescue (or any other similar utility). After that, try recovering data from the received copy by the following scenario.

Go to view
How to Encrypt System Disk C with BitLocker in Windows 10 Without TPM, Enable TPM 🤔🔐💻

How to Encrypt System Disk C with BitLocker in Windows 10 Without TPM, Enable TPM 🤔🔐💻

Method 3. Bitlocker Data Recovery Software

We also should notice that exist more common and simpler way to recover files from Bitlocker encrypted storage. These are data recovery software. Of course, not all programs сan cope in such situation but some of them have required function.

The only thing is that you must have a password to unlock the device which was specified when encrypt.

Then it's simple. Connecting device with the information that you want to recover to your computer and getting message.

Further, enter password in a special window after double-clicking on the device you need to recover in “This PC”.

After that, the storage becomes fully accessible for data recovery for any of the Hetman Software programs.

Partition Recovery™ 5.0
The tool recovers data from any devices, regardless of the cause of data loss.
Download
How to Recover Data From a Disk Encrypted by Bitlocker
Vladimir Artiukh

Author: , Technical Writer

Vladimir Artiukh is a technical writer for Hetman Software, as well as the voice and face of their English-speaking YouTube channel, Hetman Software: Data Recovery for Windows. He handles tutorials, how-tos, and detailed reviews on how the company’s tools work with all kinds of data storage devices.

Oleg Afonin

Editor: , Technical Writer

Oleg Afonin is an expert in mobile forensics, data recovery and computer systems. He often attends large data security conferences, and writes several blogs for such resources as xaker.ru, Elcomsoft and Habr. In addition to his online activities, Oleg’s articles are also published in professional magazines. Also, Oleg Afonin is the co-author of a well-known book, Mobile Forensics - Advanced Investigative Strategies.

  • Evaluations:
  • 17
  • /
  • :

Share

Questions and answers

  • What is BitLocker and how does it work to encrypt data on a disk?

    BitLocker is a disk encryption feature available in certain versions of Windows. It uses a combination of encryption algorithms to protect data stored on a disk from unauthorized access. It works by encrypting the entire disk, including the operating system, all user data, and system files. The encryption key is stored on the disk, and the user must enter a password to access it. The encryption key is also backed up to a secure location, so that if the disk is lost or stolen, the data can still be recovered.

  • Can data recovery be performed on a BitLocker encrypted drive without the recovery key?

    No, data recovery cannot be performed on a BitLocker encrypted drive without the recovery key. The recovery key is necessary to decrypt the data on the drive and make it accessible.

  • What are the common scenarios where data loss can occur on a BitLocker encrypted disk?
    1. Accidental deletion of data.
    2. Physical damage to the drive.
    3. Malware or ransomware attack.
    4. Software or hardware malfunction.
    5. Unauthorized access to the drive.
    6. Improper system shutdown.
    7. Power outage or surge.
    8. Corrupt MBR or partition table.
    9. Incomplete or failed BitLocker encryption process.
    10. Incorrect configuration of BitLocker settings.
  • Is it possible to recover data from a BitLocker encrypted drive if the BitLocker partition table is damaged?

    It is possible to recover data from a BitLocker encrypted drive if the BitLocker partition table is damaged, but it is not easy. It requires specialized tools and expertise to extract the data from the encrypted drive. It is also important to note that the data may not be completely recoverable, as some of the data may have been lost due to the damage to the partition table.

  • How can a user access a BitLocker encrypted drive if the original computer is no longer available?

    If the original computer is no longer available, the user will need to use the BitLocker recovery key to access the encrypted drive. This recovery key can be stored in a variety of ways, such as on a USB drive, printed out, or stored in a Microsoft account. If the user does not have the recovery key, they will not be able to access the drive.

Comments (21)

  • or
    or 24.09.2020 20:57 #
    Hi. thanx for the support, my worry is, Is there anyway of retrieving data (or bypassing / removing pswd) from a bitlocker encrypted disk whose password i totally cant find?
    Reply
  • RamaKrishna Y
    RamaKrishna Y 2.08.2019 20:33 #
    Hi.. I have WD Passport 1 TB HDD encrypted with Bit Locker. During encrypting due to error it was stopped abruptly. Post this unable to access both password and recovery key. Please suggest.
    Reply
    • Hetman Software: Data Recovery
      Hetman Software: Data Recovery 5.08.2019 09:28 #
      I'm afraid that without a password (or if the system does not accept it), you will not get access to your data in any way ....
      Reply
  • khwazask
    khwazask 1.08.2018 23:36 #
    HI BROTHER, I ENCRYPTED MY EXTERNAL HARD DISK WITH BITLOCKER I REMOVED IT FROM SYSTEM WITHOUT SWITCHIN OFF AND THEN WHEN EVER IAM TRYING TO OPEN THAT POPUP COMING ACCESS DENINED & UNABLE TO READ I ALSO TRIED WITH CMD PROMPT NO USE PLZZZZZZZZZZ GUIDE ME WHAT TO DO I HAVE MY FAMILY PHOTOS IN IT WHICH IS VERY IMPORTANT FOR ME MY EMAIL IS khwazask1@gmail.com
    Reply
    • Hetman Software: Data Recovery
      Hetman Software: Data Recovery 2.08.2018 09:29 #
      Try methods described in the article.
      Reply
  • Amir Saood
    Amir Saood 1.05.2018 11:51 #
    Need Help. My operating system (windows 10) crashed during an update. I tried to repair it by installing new windows 10 as a result i lost 3 of my existing partition of 220 GB and it shows now only 1 drive named free space. In those 3 partitions one was encrypted by bit locker password. I tried to recover all 3 with well known recovery software but that only recovers 2 partitions not my encrypted one. :( Plz help me to recover my encrypted one that has all my personal data and accounts informations. when i tries to recover it my encrypted partition doesn't show up there. Only shows one lost partition of 220GB. please help me I'm waiting for your quick reply asap.
    Reply
  • sam sharma
    sam sharma 12.08.2017 22:50 #
    i have a problem with related this bitlocker. i have lost my partitions from my 1tb hardrive of my laptop three partition are lost 2 of them was bit locked encrypted . the r lost by using my drive as a usb hardrive in backtrack . i want to recover my partitions
    Reply
  • Drad Ranada
    Drad Ranada 9.03.2017 16:53 #
    I got a hdd previously encypted(FVE) by bitlock. It was "re-imaged" using a windows clone. I need to recover thedata prior to re-imaging it. Repair-BDE accepts the Recovery password but it says the data needed to be decrypted is not available.... Is there still any chance of recovery of this particular scenario?
    Reply
  • Mohanmad
    Mohanmad 15.02.2017 11:23 #
    I formated my bit locker drive and installed windows on it... Now i have have that drive with no password... I started to recover files.. And there is a lot of files with unknown format(I guess because they are encrypted). Can I decrypt this files instead of whole drive? By the way i have my bit locker password
    Reply
  • Erik Steinholtz
    Erik Steinholtz 21.10.2016 15:43 #
    Thanks, but how do I go about this without a bootable system disk? do you say that I am required to pull it out of the PC, put it on an USB adapter and then plug it in to another PC? I would like to find some solution that works in conjuction with an emergency boot, ie pendrive. Normally, those are linux so it would be tricky since this tool isnt
    Reply
  • Shane Hackett
    Shane Hackett 16.02.2016 00:36 #
    Are there any specific precautions that should be taken before attempting to recover data from a BitLocker encrypted drive?
    Reply
    • Hetman Software
      Hetman Software 16.02.2016 01:11 #
      1. Ensure that you have the correct recovery key or password for the drive.
      2. Make sure you have the latest version of the BitLocker software installed.
      3. Make sure you have a reliable backup of your data before attempting any data recovery.
      4. Ensure that the drive is properly connected and that the system is powered on.
      5. Consider using a professional data recovery service if the data is of high value or importance.
      Reply
  • Rathbone Jackson
    Rathbone Jackson 15.02.2016 20:36 #
    How can a user prevent data loss on a BitLocker encrypted drive?
    Reply
    • Hetman Software
      Hetman Software 15.02.2016 20:56 #
      1. Regularly back up important data.
      2. Enable BitLocker auto-unlock.
      3. Use a strong password and multifactor authentication.
      4. Ensure that the system is updated with the latest security patches.
      5. Set the system to hibernate or shut down when not in use.
      6. Disable BitLocker when not in use.
      7. Use a reliable anti-malware solution to protect against malicious software.
      Reply
  • Arnie Seals
    Arnie Seals 15.02.2016 17:39 #
    What are the recommended steps for ensuring successful data recovery from a BitLocker encrypted drive?
    Reply
    • Hetman Software
      Hetman Software 15.02.2016 18:01 #
      1. Check the BitLocker recovery key. If you have the recovery key, you can use it to unlock the drive and access the data.
      2. Use a data recovery software to scan the drive for recoverable files. There are many data recovery tools available that can help you recover data from a BitLocker encrypted drive.
      3. If the data recovery software is not able to recover the data, you can try using a specialized BitLocker data recovery tool. These tools are designed to recover data from encrypted drives, and they may be able to recover your data even if the drive is heavily damaged or corrupted.
      4. If all else fails, you may need to consult a professional data recovery service. These services can usually recover data from even the most severely damaged drives.
      Reply
  • Gaylord Saxon
    Gaylord Saxon 15.02.2016 14:31 #
    Can the BitLocker recovery key be used to access all encrypted drives on a system?
    Reply
    • Hetman Software
      Hetman Software 15.02.2016 14:56 #
      No, the BitLocker recovery key can only be used to access the drive that was encrypted with it. It cannot be used to access any other encrypted drives on the system.
      Reply
  • Benson Rogers
    Benson Rogers 15.02.2016 11:37 #
    What are the advantages of using a data recovery software tool for recovering data from a BitLocker encrypted drive?
    Reply
    • Hetman Software
      Hetman Software 15.02.2016 12:03 #
      1. Quick and easy recovery: Data recovery software tools are designed to quickly and easily recover data from BitLocker encrypted drives. This makes it much easier to recover lost or corrupted data without having to manually decrypt the drive.
      2. Comprehensive recovery: Data recovery software tools are designed to recover data from a variety of different file systems, including NTFS, FAT, HFS+, and Ext2/3/4. This means that you can recover data from any type of BitLocker encrypted drive.
      3. Support for multiple devices: Data recovery software tools are designed to work with a variety of different storage devices, including hard drives, USB flash drives, SD cards, and more. This makes it easy to recover data from any type of device.
      4. Advanced features: Data recovery software tools often include advanced features such as deep scan, sector-by-sector scanning, and support for RAID arrays. These features make it easier to recover data from complex or damaged storage devices.
      Reply
  • Hetman Software: Data Recovery
    Hetman Software: Data Recovery 27.04.2018 12:33 #
    Read how to recover data from a disk encrypted by Bitlocker. If you do have any questions, don't hesitate to contact our technical support service - we will be happy to help you.
    Reply
Post comment
User
Leave a reply
Your email address will not be published. Required fields are marked *

Recommended For You
This website uses cookies to improve your experience. Description
Hello! This is AI-based Hetman Software virtual assistant, and it will answer any of your questions right away.
Start Chat