What is a bootable Metadefender Core USB drive?

MetaDefender Core has a simple and powerful client that can be used to scan endpoints. However, these features may also be used for the following reasons:

  • Scanning a system without booting it

  • Scanning a system which does not have login credentials

  • Scanning a system which is suspected to contain malware and should not be allowed in its default state onto the network

In the scenarios mentioned above, the default MetaDefender client is insufficient. However, they can be addressed by hosting the client on a bootable Windows PE environment.

To scan with a bootable drive:

  1. Insert the thumb drive into a powered-down machine.

  2. Boot the machine, instructing the BIOS to load from the USB drive rather than the internal hard drive.

  3. Use the MetaDefender client to scan the machine’s internal hard drive. No login credentials are required and, at no point is malware that may exist on the system, allowed to run.

OPSWAT recommends following our configuration guide for setting up a personalized bootable USB. The reason for this is two-fold:

  • To configuring the client with the IP address of your MetaDefender Core server is necessary

  • To ensure that the Windows PE environment contains all the necessary networking drivers for your systems. The system comes preconfigured with a standard set of drivers, but they cannot cover every hardware configuration

For a step-by-step guide on how to configure a customized bootable USB, please contact us.

This article pertains to all MetaDefender Clients
This article was last updated on 2018-03-28
EF