Question 1mediummultiple choice
Full question →Question 221 of 1,000
mediummultiple choiceObjective-mapped
220-1102 Practice Question: Runs outside the main Windows operating system.
This 220-1102 practice question tests your understanding of runs outside the main windows operating system.. Read the scenario carefully and evaluate each option against the stated constraints before committing to an answer. A key principle to apply: runs outside the main Windows operating system.. Once you have made your selection, read the full explanation to reinforce the concept and understand why each distractor is designed to mislead on exam day.
A technician suspects that a Windows 10 computer is infected with malware that prevents the user from opening Task Manager and Command Prompt. Which tool should the technician use to run a virus scan from outside the operating system?
Answer choices
Why each option matters
Good practice is not just finding the correct option. The wrong answers often show the exact trap the exam wants you to fall into.
A
Best answer
Windows Defender Offline
This tool boots into a recovery environment and performs a scan before Windows loads, allowing it to remove stubborn malware.
B
Distractor review
System Restore
System Restore reverts system files and settings to a previous point, but does not scan for or remove malware.
C
Distractor review
Safe Mode
Safe Mode loads Windows with minimal drivers, but the malware might still be active and prevent tools from running.
D
Distractor review
Last Known Good Configuration
This option is used to boot with the last successful configuration; it is not a malware scanning tool.
Answer analysis
Why the other options are wrong
Understanding why incorrect options are tempting is as important as knowing the correct answer.
- ✗
System Restore
System Restore reverts system files and settings to a previous point, but does not scan for or remove malware.
- ✗
Safe Mode
Safe Mode loads Windows with minimal drivers, but the malware might still be active and prevent tools from running.
- ✗
Last Known Good Configuration
This option is used to boot with the last successful configuration; it is not a malware scanning tool.
Common exam trap
Common exam trap: answer the scenario, not the keyword
Candidates might be tempted by Safe Mode, incorrectly assuming it always allows full malware removal, but deeply embedded malware can still be active.
Technical deep dive
How to think about this question
Windows Defender Offline is specifically designed to address malware infections that are deeply embedded within the operating system or actively prevent security tools from running. When initiated, it reboots the computer into a minimal, pre-boot environment, essentially a separate operating system, where Windows Defender can run a full scan without interference from the active Windows installation or any malware residing within it. This isolation is crucial because the malware in this scenario is preventing access to critical system tools like Task Manager and Command Prompt, indicating it has a strong foothold and is actively trying to evade detection and removal. By operating outside the compromised OS, Windows Defender Offline can access and clean files that would otherwise be locked or protected by the malware. This approach fundamentally differs from the other options. System Restore, while useful for reverting system changes, does not scan for or remove malware; it merely rolls back system files to an earlier state, which might still contain the infection. Safe Mode loads a stripped-down version of Windows, but the malware could still be active or have components that prevent security software from functioning effectively, especially if it's designed to detect and disable antivirus in minimal environments. Last Known Good Configuration is a boot option for resolving startup issues caused by recent driver or system changes, not a tool for malware remediation. The ability of Windows Defender Offline to operate independently of the main Windows installation is what makes it the most effective solution for stubborn, system-level malware.
KKey Concepts to Remember
- Runs outside the main Windows operating system.
- Effective against persistent and rootkit malware.
- Boots into a pre-boot recovery environment.
- Can be initiated from within Windows Defender settings.
TExam Day Tips
- Watch for words such as best, first, most likely and least administrative effort.
- Review why wrong options are wrong, not only why the correct option is correct.
Key takeaway
Runs outside the main Windows operating system.
Related practice questions
Related 220-1102 practice-question pages
Use these pages to review the topic behind this question. This is how one missed question becomes focused revision.
CompTIA A+ hardware practice questions
Practise 220-1102 questions linked to CompTIA A+ hardware.
CompTIA A+ mobile devices practice questions
Practise 220-1102 questions linked to CompTIA A+ mobile devices.
CompTIA A+ networking practice questions
Practise 220-1102 questions linked to CompTIA A+ networking.
CompTIA A+ operating systems practice questions
Practise 220-1102 questions linked to CompTIA A+ operating systems.
CompTIA A+ security practice questions
Practise 220-1102 questions linked to CompTIA A+ security.
CompTIA A+ software troubleshooting questions
Practise 220-1102 questions linked to CompTIA A+ software troubleshooting questions.
CompTIA A+ operational procedures questions
Practise 220-1102 questions linked to CompTIA A+ operational procedures questions.
More questions from this exam
Keep practising from the same exam bank, or move into a focused topic page if this question exposed a weak area.
Question 1
A change advisory board (CAB) approved a standard change to update antivirus definitions on all servers. The technician completes the update on a file server and verifies the server is functioning normally. According to change management best practices, what documentation should the technician complete?
Question 2
A company's change management policy requires all server changes to be approved by the Change Advisory Board (CAB). A technician discovers that a critical database server's operating system needs a security patch to comply with a new regulatory requirement that takes effect in one week. The patch has a known risk of causing service downtime. The next scheduled CAB meeting is in two weeks. What should the technician do FIRST?
Question 3
A company is implementing a bring-your-own-device (BYOD) policy and needs to ensure that corporate data on employee mobile devices is protected. Which of the following is the MOST important technical control to implement?
Question 4
A company requires employees to present both a smart card and a PIN to log into their workstations. Which authentication principle is being implemented?
Question 5
A company requires all Windows 10 workstations to be able to join an Active Directory domain. Which edition of Windows 10 must be installed on these workstations?
Question 6
A company wants to allow employees to securely access internal resources from home via the internet. Which method provides the highest level of security for remote desktop connections?
Practice this exam
Start a free 220-1102 practice session
Short sessions build daily habit. Longer sessions build exam-day stamina. Try a timed session to simulate real conditions.
FAQ
Questions learners often ask
What does this 220-1102 question test?
Runs outside the main Windows operating system.
What is the correct answer to this question?
The correct answer is: Windows Defender Offline — Windows Defender Offline (now Microsoft Defender Offline) is a bootable tool that runs outside of Windows to detect and remove malware that is deeply embedded or that actively interferes with Windows tools. It is the best option when malware prevents standard tools from functioning.
What should I do if I get this 220-1102 question wrong?
Review runs outside the main Windows operating system., then practise related 220-1102 questions on the same topic to reinforce the concept.
About these practice questions
Courseiva creates original exam-style practice questions with explanations and wrong-answer analysis. It does not publish real exam questions, exam dumps, or protected exam content. Learn why practice questions differ from exam dumps →
Keep practising
More 220-1102 practice questions
- A change advisory board (CAB) approved a standard change to update antivirus definitions on all servers. The technician…
- A company's change management policy requires all server changes to be approved by the Change Advisory Board (CAB). A te…
- A company is implementing a bring-your-own-device (BYOD) policy and needs to ensure that corporate data on employee mobi…
- A company requires employees to present both a smart card and a PIN to log into their workstations. Which authentication…
- A company requires all Windows 10 workstations to be able to join an Active Directory domain. Which edition of Windows 1…
- A company wants to allow employees to securely access internal resources from home via the internet. Which method provid…
Question Discussion
Share a tip, memory trick, or ask about the reasoning behind this question. Do not post real exam questions, leaked content, braindumps, or copyrighted exam material. Comments are moderated and may be removed without notice.
Loading comments…
Sign in to join the discussion.
This 220-1102 practice question is part of Courseiva's free CompTIA certification practice question bank. Courseiva provides original exam-style practice questions with explanations, topic-based practice, mock exams, readiness tracking, and study analytics to help learners prepare for the 220-1102 exam.