How many questions is the A+ Core 2 (220-1202) exam and how long is it?

Core 2 has a maximum of 90 questions and a 90-minute time limit. Questions are multiple-choice (single and multiple response), drag-and-drop, and performance-based questions (PBQs).

What is the passing score for A+ Core 2?

700 on a scale of 100 to 900. Core 1 (220-1201) is a separate exam with a passing score of 675.

How long should I study for A+ Core 2?

Most candidates need about 4–6 weeks of focused study. Our 4-week plan assumes roughly 10 hours per week, weighted toward Operating Systems and Security.

How hard is A+ Core 2?

It is an entry-level operating-systems and security exam. Operating Systems and Security together are over half the exam, and the malware-removal process and command-line tools reward hands-on practice.

CompTIA A+ Core 2 (220-1202) Study Guide — Domains, Plan & Cheat Sheet

Q: Do I need both Core 1 and Core 2 to earn the A+?

Yes. CompTIA A+ requires passing two separate exams — Core 1 (220-1201) and Core 2 (220-1202). This guide covers Core 2.

Q: Are these practice questions real exam questions?

No. Every question is original, written against the publicly available 220-1202 objectives and checked against primary sources. Real exam content is under CompTIA's NDA; using leaked dumps can void your certification.

Exam at a glance

CompTIA A+ Core 2 (220-1202) validates that you can work with operating systems, security, software troubleshooting, and operational procedures. Here are the numbers that shape how you should study.

Questions

90 max

Time limit

90 minutes

Passing score

700 / 100–900

Question types

MCQ + PBQs

A+ is two separate exams — Core 1 (220-1201) and Core 2 (220-1202); you need both to certify. This guide covers Core 2. With up to 90 questions in 90 minutes, that's about a minute per item, and the performance-based questions take longer — so pace yourself. The exam spans four domains, and Operating Systems (31%) and Security (25%) together make up over half the exam, so they deserve the most study time.

Domains & weighting

Operating Systems Domain 131% Security Domain 225% Software Troubleshooting Domain 322% Operational Procedures Domain 422%

Where to spend your hours: a sensible split mirrors the weights — most time on Operating Systems and Security, which together are more than half the exam.

The four domains

What each domain covers, plus one explained, sourced sample question so you can see the depth the exam expects. Expand a domain to dig in.

1Operating SystemsWindows, command-line tools, file systems, and admin utilities31%

Windows editions & featuresCommand-line toolsFile systems (NTFS/FAT32/exFAT)Control Panel & SettingsMMC snap-insmacOS & Linux basicsInstall & upgrade methods

SAMPLE · DOMAIN 1 → FILE SYSTEMS Sourced

Which file system should be used on a Windows system drive to support file permissions, encryption (EFS), and journaling?

ANTFSNTFS supports ACL permissions, EFS encryption, journaling, and large volumes — the standard for Windows system drives.Correct

BFAT32No file permissions or encryption, and a 4 GB per-file limit — unsuitable for a modern system drive.No security

CexFATGreat for large removable media, but lacks NTFS permissions, EFS, and journaling.Removable use

Dext4A Linux file system — not used for Windows system volumes.Linux

Microsoft Learn — NTFS overview (permissions, EFS, journaling) · 220-1202 Obj 1.x.

Drill Operating Systems

2SecurityMalware, social engineering, authentication, and hardening25%

Malware typesSocial engineering & attacksAuthentication & MFAWireless security (WPA2/WPA3)Workstation hardeningPermissions & NTFS vs shareData destruction

SAMPLE · DOMAIN 2 → MALWARE Verified · 2 sources

Malware encrypts a user's files and displays a message demanding payment for the decryption key. What type is this?

ARansomwareRansomware encrypts data (or locks the system) and demands payment to restore access.Correct

BTrojanDisguises itself as legitimate software to gain entry — a delivery method, not the encrypt-and-extort behavior.Delivery

CRootkitHides at a privileged level to evade detection — concealment, not extortion.Stealth

DSpywareSecretly collects information; it doesn't encrypt files for ransom.Surveillance

CISA — Ransomware guidance (#StopRansomware) · 220-1202 Obj 2.x.

Drill Security

3Software TroubleshootingOS, application, and malware-removal scenarios22%

Windows boot & OS issuesApplication crashesMalware-removal processMobile OS symptomsBrowser issues & redirectsBSOD / spinning pinwheel

SAMPLE · DOMAIN 3 → MALWARE REMOVAL Sourced

In CompTIA's best-practice malware-removal process, what should you do immediately after identifying and verifying malware symptoms?

AQuarantine the infected systemIsolating the host (e.g., disconnect from the network) stops the malware spreading before you remediate.Correct

BEducate the end userUser education is the final step, after the system is clean.Last step

CEnable System RestoreSystem Restore is re-enabled near the end; during removal it's disabled to clear infected restore points.Reversed

DRun a full remediation scanRemediation comes after quarantine and disabling System Restore — not before isolation.Too soon

CompTIA A+ best-practice malware-removal procedure · 220-1202 Obj 3.x.

Drill Software Troubleshooting

4Operational ProceduresSafety, documentation, change management, and communication22%

Safety & ESDEnvironmental controlsDocumentation & ticketsChange managementBackup & recoveryProfessionalism & communicationIncident response & PII

SAMPLE · DOMAIN 4 → SAFETY Sourced

Which document describes the safe handling, storage, and disposal procedures for a hazardous material such as a leaking battery or toner?

ASDS (Safety Data Sheet)An SDS details a substance's hazards, safe handling, PPE, and disposal — the go-to reference for hazardous materials.Correct

BSLAA service-level agreement defines service expectations — nothing to do with material safety.Service doc

CAUPAn acceptable-use policy governs how systems may be used.Policy

DNDAA non-disclosure agreement protects confidential information.Confidentiality

OSHA — Hazard Communication Standard, Safety Data Sheets (29 CFR 1910.1200) · 220-1202 Obj 4.x.

Drill Operational Procedures

A 4-week study plan

A realistic schedule at roughly 10 hours per week. Adjust to your experience — but keep the heaviest weeks on Operating Systems and Security, since they're the biggest slices of the exam.

Week 1

Operating Systems (Domain 1)

Windows editions and features, command-line tools, file systems, and admin utilities (MMC, Control Panel, Settings). Read every answer explanation — even on questions you get right.

Week 2

Security (Domain 2)

Malware types, social engineering and attacks, authentication and MFA, wireless security, and workstation hardening, including NTFS vs share permissions.

Week 3

Software Troubleshooting (Domain 3)

OS and application symptoms, and the best-practice malware-removal process in order. Practice reading symptoms → cause.

Week 4

Operational Procedures + full mocks (Domain 4)

Safety/ESD, documentation, change management, communication and PII; then take full timed mocks and re-drill weak domains. Keep the last days light.

Learn the concept, not the letter. A+ rewards applying ideas to scenarios. When you miss a question, read why each wrong option is wrong — that's where the real learning is.

Cheat sheet

The reference tables worth memorizing cold — Windows command-line tools, file systems, malware types, and the malware-removal process. Bookmark this.

Windows command-line tools

Command	What it does
ipconfig	Show/release/renew IP configuration (/all, /release, /renew, /flushdns)
ping	Test reachability and round-trip time to a host
sfc /scannow	System File Checker — verify and repair protected system files
chkdsk	Check a disk for errors and bad sectors (/f, /r)
gpupdate	Refresh Group Policy settings (/force)
gpresult	Show the Resultant Set of Policy applied to a user/computer
diskpart	Manage disks, partitions, and volumes
tasklist / taskkill	List running processes / end a process by name or PID

File systems

File system	Best for	Notes
NTFS	Windows system & data drives	Permissions, EFS encryption, journaling, large volumes
FAT32	Legacy / cross-device removable	No permissions; 4 GB per-file and 32 GB volume limits
exFAT	Large USB drives & SD cards	No NTFS permissions; handles >4 GB files, broad device support
ext4	Linux	Default Linux file system; journaling
APFS	macOS	Apple File System; snapshots & encryption

Malware types

Type	Behavior
Virus	Attaches to a file; runs and spreads when that file is executed
Worm	Self-replicates across a network with no user action
Trojan	Disguised as legitimate software to gain entry
Ransomware	Encrypts data or locks the system and demands payment
Rootkit	Hides at a privileged level to evade detection
Keylogger	Records keystrokes to capture credentials
Spyware	Secretly collects user information

The key distinction: a virus needs a host file and user action; a worm spreads on its own.

CompTIA's malware-removal process

#	Step
1	Investigate and verify malware symptoms
2	Quarantine the infected system
3	Disable System Restore (in Windows)
4	Remediate — update anti-malware, scan, and remove
5	Schedule scans and run updates
6	Enable System Restore and create a restore point
7	Educate the end user

Frequently asked questions

How many questions is the exam, and how long?

Up to 90 questions in 90 minutes — about a minute each. Expect multiple-choice (single and multiple response), drag-and-drop, and performance-based questions (PBQs), which take longer, so manage your pace.

What's the passing score?

700 on a scale of 100–900 for Core 2. (Core 1 is a separate exam and passes at 675.) It's a scaled score, not a simple percentage, so treat ~80% on practice tests as a confident range rather than an exact cut line.

Do I need both Core 1 and Core 2?

Yes — A+ requires passing two separate exams, Core 1 (220-1201) and Core 2 (220-1202). This guide covers Core 2; there's a companion Core 1 study guide too.

How long should I study?

Most candidates need about 4–6 weeks of focused study per core. The 4-week plan above assumes roughly 10 hours per week, weighted toward Operating Systems and Security.

Are these practice questions real exam questions?

No — and that's deliberate. Every question is original, written against the public 220-1202 objectives and checked against primary sources. Real exam content is under CompTIA's NDA; using leaked "dumps" can get your certification revoked.

How this guide is sourced. Domain names and weights, the question count, time limit, passing score, and question formats are taken from CompTIA's publicly published A+ 220-1202 exam objectives and official exam details. Every sample question is checked against primary references (Microsoft Learn, CISA, and OSHA documentation), with the source shown on each. This is an independent study resource — certpracticelab is not affiliated with or endorsed by CompTIA.

CompTIA — A+ certification & exam details · comptia.org
Microsoft Learn — Windows file systems & command-line reference · learn.microsoft.com
CISA — #StopRansomware guidance · cisa.gov

CompTIA A+ Core 2 (220-1202) Study Guide

Exam at a glance

Domains & weighting

The four domains

A 4-week study plan

Readiness checklist

Domain 1 · Operating Systems

Domain 2 · Security

Domain 3 · Software Troubleshooting

Domain 4 · Operational Procedures

Cheat sheet

Windows command-line tools

File systems

Malware types

CompTIA's malware-removal process

Frequently asked questions

You've reviewed the map — now find your weak spots.