Using dual-boot Linux Mint to temporarily store, possibly repair data from Windows drive

[jadebrain]

In a previous question (link at bottom), in which I asked for help with an extreme malware-related situation, the only solution that has been given so far was to format the corrupted (and possibly still infected) drive and reinstall the OS (Windows Vista). Given the data I have on the drive, I'm wondering if I can use my dual-boot drive, with Linux Mint as the OS, to try to save as much of it as possible...

Right now, I'm thinking of a general list of steps to take in accomplishing this. So far, the infected Windows drive is already mounted in my Linux system, so I can access it. From here, I'm wondering if there's a way to repair the data from within Linux, and then put it back on the Windows Drive once it's formatted and the OS is reinstalled. From what little I've found on my own, the process for copying data from Linux to Windows is much harder, and I haven't found anything yet on repairing the data while in Linux.

I'd like all answers provided to be as easy-to-understand as reasonably possible; while I understand that some things can't be accurately explained in "simple" terms, I must also say that the causes of stress which I had mentioned in the last paragraph in the linked post still apply, and on top of that, I'm not nearly as familiar with Linux as I am with Windows...

http://www.tomshardware.com/answers/id-2692344/emergency-virus-removal-vista-copy-longer-genuine-desperately.html

 

[Calculagator]

You shouldn't need to repair any data. While running linux, copy any files you want to save to the linux partition or a separate drive. After you reformat the windows partition and reinstall, you can copy the files back. You can scan them from windows to be sure they don't have any traces of the before you open them.

When working with dual boot systems, I find that linux can usually read and write to both windows and linux drives without issue. Windows, however, cannot natively read or write to linux drives. Just use linux when you want to copy between them.

 

[stillblue]

If by repair you mean locate viruses so as to not reinfect windows then yes, you can. Clam and clamtk (clam gui) are virus scanners that you can use to scan for viruses. If I were you I'd transfer the files you want to save to another NTFS partition and scan it with clam. Finish the re-install and install your anti-virus there and scan the files again, twice, before opening anything from there in windows. You should be good to go then.

 

[jadebrain]

You shouldn't need to repair any data. While running linux, copy any files you want to save to the linux partition or a separate drive. After you reformat the windows partition and reinstall, you can copy the files back. You can scan them from windows to be sure they don't have any traces of the before you open them.

When working with dual boot systems, I find that linux can usually read and write to both windows and linux drives without issue. Windows, however, cannot natively read or write to linux drives. Just use linux when you want to copy between them.

Well, the viruses are one thing, but what about error-checking? As far as I can tell, the OS lost its "genuine" status after Avast did its work, though it might also be that I didn't see it until then, due to the fact that it had to reboot in order to finish the job. I could only tell that there were viruses when there was extreme lag, and none of the usual suspects were the cause; given my rush to disinfect the system, I didn't check anything else until the virus removal was done.

Although, there were already some minor (yet irritating) errors in the OS long before all of this... Perhaps I shouldn't try to save any system data, at that point. I wouldn't think that anything I could do between systems like that would account for things like third-party software, which will probably require their own individual error fixes. Anything else I should potentially account for, though?

If by repair you mean locate viruses so as to not reinfect windows then yes, you can. Clam and clamtk (clam gui) are virus scanners that you can use to scan for viruses. If I were you I'd transfer the files you want to save to another NTFS partition and scan it with clam. Finish the re-install and install your anti-virus there and scan the files again, twice, before opening anything from there in windows. You should be good to go then.

I'll have to try that when I get back home, and can access the computer again. Shouldn't be that long.

 

[Calculagator]

There is really no such thing as error-checking. If your files have been corrupted there is nothing you can do: they are lost forever. If a virus has infected a particular file, your virus scanner with catch and remove it (after you reinstall windows and a virus scanner).

The only things you should try to save are your personal files and documents. Copy them to a separate drive or partition. Format the corrupt windows partition and reinstall windows. You will then need to reinstall all programs. You will have to start from scratch with all of your settings and apps. Once this is done you can safely copy your files back and scan them for any virus remnants.

*There is such a thing as error checking for hardware. Some of the corruption you experienced could be due to a failing hard drive. This would be completely unrelated to any virus activity, however.

*Now would be a good time to consider upgrading your OS. Windows 8 actually runs faster on old hardware than Windows Vista. You could also install the Windows 10 preview for free. The newer versions are faster and safer than Vista ever was.

 

[jadebrain]

There is really no such thing as error-checking. If your files have been corrupted there is nothing you can do: they are lost forever. If a virus has infected a particular file, your virus scanner with catch and remove it (after you reinstall windows and a virus scanner).

The only things you should try to save are your personal files and documents. Copy them to a separate drive or partition. Format the corrupt windows partition and reinstall windows. You will then need to reinstall all programs. You will have to start from scratch with all of your settings and apps. Once this is done you can safely copy your files back and scan them for any virus remnants.

*There is such a thing as error checking for hardware. Some of the corruption you experienced could be due to a failing hard drive. This would be completely unrelated to any virus activity, however.

*Now would be a good time to consider upgrading your OS. Windows 8 actually runs faster on old hardware than Windows Vista. You could also install the Windows 10 preview for free. The newer versions are faster and safer than Vista ever was.

Yeah, most of my computer knowledge is about hardware, so I didn't really know what was available for error-checking software (I know Steam can verify local game data by comparing it to the data of an original copy of the game, but I wasn't sure if anyone else did this). As for the OS upgrade, well, I'm on an extremely limited budget... I built this computer myself, back when I had no regular expenses (you know, parents' basement dweller, and all; I could save up for the hardware, and even do some future proofing, which is why the computer's hardware is still pretty nice, even 5 years later), and now, I can't really afford a new OS license. When I got the Vista install disc, I was planning on using the included voucher for a free upgrade to Windows 7, but by the time the system was built, the offer had expired. Anyway...

Thanks for the info.

 

[stillblue]

One more thing, when you re-install windows the the linux boot loader will be lost. Get a copy of the program boot-repair https://help.ubuntu.com/community/Boot-Repair as a standalone or add it to a usb with linux on it. Fixes that in a jiffy. If you have the original windows licence number then you can just re-register it,no problem.

 

[jadebrain]

One more thing, when you re-install windows the the linux boot loader will be lost. Get a copy of the program boot-repair https://help.ubuntu.com/community/Boot-Repair as a standalone or add it to a usb with linux on it. Fixes that in a jiffy. If you have the original windows licence number then you can just re-register it,no problem.

Good to know. Thanks!

 

[Calculagator]

One more thing, when you re-install windows the the linux boot loader will be lost. Get a copy of the program boot-repair https://help.ubuntu.com/community/Boot-Repair as a standalone or add it to a usb with linux on it. Fixes that in a jiffy. If you have the original windows licence number then you can just re-register it,no problem.

You probably only lose the boot loader if you install windows to the same physical disk as linux. If you use a different disk and select from the bios which disk to boot from, you shouldn't have that problem.

If you join the Windows Insider program, you can get with Windows 10 preview for free. I'm not sure how things will work out, but it sounds like as long as you are willing to use a stable testing version, you can keep using it for free for as long as you like. You might also be able to use your expired windows 7 voucher to get a free upgrade to Windows 10 when it is released. It's at least worth looking into. Windows 10 will be much better than Vista.

 

[jadebrain]

One more thing, when you re-install windows the the linux boot loader will be lost. Get a copy of the program boot-repair https://help.ubuntu.com/community/Boot-Repair as a standalone or add it to a usb with linux on it. Fixes that in a jiffy. If you have the original windows licence number then you can just re-register it,no problem.

You probably only lose the boot loader if you install windows to the same physical disk as linux. If you use a different disk and select from the bios which disk to boot from, you shouldn't have that problem.

If you join the Windows Insider program, you can get with Windows 10 preview for free. I'm not sure how things will work out, but it sounds like as long as you are willing to use a stable testing version, you can keep using it for free for as long as you like. You might also be able to use your expired windows 7 voucher to get a free upgrade to Windows 10 when it is released. It's at least worth looking into. Windows 10 will be much better than Vista.

I don't think that'll work... I need a computer that's actually running Windows 7 or 8.1, and the voucher won't work for that. I called the "installation services" at the Microsoft tech support number (because contact by email isn't an option, apparently), and had a lengthy conversation to confirm this. I might be able to get a copy of Windows 7 for an affordable price at this point, but I'll have to go searching for that when I get done typing this.

On another note, I decided that, while I was on the phone, I'd check and see if it was anyone's business over at their malware department to investigate suspicious sites (I didn't think it would be, but I was already on the phone, so...), and while I was there, the tech support representative started talking about how I should use Microsoft Security Essentials instead of Avast, and one of the things she mentioned was that I can't use both because of conflicts between the two, and when I asked "what if they're not running simultaneously," she said that the same would happen. I suppose I should have clarified that, by "running," I was talking about the process as a whole (the one you can close via task manager), and not just the UI (the one you can close with the X button on the upper right), but given the kind of horror stories you'll find about tech support, I wouldn't blame her for thinking that I meant the UI, instead of the entire process. Given that information, would there still be trouble?

 

[stillblue]

Choose an anti-virus. One. Anti-viruses are "running" all the time unless expressly told to stop by you otherwise they'd be of no value. Essentially an anti-virus checks all programs as they start and verifies if they are on the virus list, if not the program continues otherwise you get a virus alert. Two running at the same time, any two, will have conflicts and start accusing each other of being viruses. A virus scanner is different, it runs only when you tell it to and seeks viruses and I've never run into any conflicts there. Finally you have a virus stinger which seeks a specific virus or class of virus to remove. I've had good luck with Avast but you must keep it up to date to work, as you would any anti-virus or scanner, if the computer is not connected to the internet then you have to download the virus signatures elsewhere and Avast makes this simple. MSE I don't know.

Here's how I explain how anti-viruses and scanners work to the tech challenged. A farmer's market has a problem with thieves stealing cream pies. They put up video cams wherever cream pies are sold and review the tapes putting the images of all the cream pie thieves on a poster. Next day the security scans everyone entering to see if they are on the poster. If they are they're arrested, if not they go in. That's your antivirus. If the thief is already in and has an accomplice then he's never caught unless one of the security guards starts circulating with the poster looking for them. That's your scanner. Some viruses, if they are already on your computer, can fake out the anti-virus when updated, this is why you need to do scans. Of course without updates the anti-virus and scanners don't know what to look for and there are many new viruses every week. Hope this helps.

 

[stillblue]

One more thing, when you re-install windows the the linux boot loader will be lost. Get a copy of the program boot-repair https://help.ubuntu.com/community/Boot-Repair as a standalone or add it to a usb with linux on it. Fixes that in a jiffy. If you have the original windows licence number then you can just re-register it,no problem.

You probably only lose the boot loader if you install windows to the same physical disk as linux. If you use a different disk and select from the bios which disk to boot from, you shouldn't have that problem.

In that case, you'd have to choose your boot order each time rather than select from grub2 because grub2 doesn't go looking for a new drive or OS unless told to. That can be fixed by either using boot-repair or running the command "sudo grub-update". It may take more than one try.

 

[Calculagator]

I don't think that'll work...

On another note, I decided that, while I was on the phone, I'd check and see if it was anyone's business over at their malware department to investigate suspicious sites (I didn't think it would be, but I was already on the phone, so...), and while I was there, the tech support representative started talking about how I should use Microsoft Security Essentials instead of Avast, and one of the things she mentioned was that I can't use both because of conflicts between the two, and when I asked "what if they're not running simultaneously," she said that the same would happen. I suppose I should have clarified that, by "running," I was talking about the process as a whole (the one you can close via task manager), and not just the UI (the one you can close with the X button on the upper right), but given the kind of horror stories you'll find about tech support, I wouldn't blame her for thinking that I meant the UI, instead of the entire process. Given that information, would there still be trouble?

It may not work, but I wouldn't necessarily take their word for it. It's very common for there to be vast differences between what they say is possible and what actually is.

You do need to pick a single virus scanner. They are designed to not be killed from the task manager. Even if you think only one is running, there may be parts of the other still active and results will be unpredictable. Security Essentials is better about not bothering you or creating false alarms. Avast may be better at catching new viruses. They are both constantly changing. If you keep using Vista (which I don't recommend) Avast is probably better. If you upgrade, I would stick with the MS solution.