Critical folders of Windows 10 where Malware can hide?

Discussion in 'other anti-virus software' started by rpk2006, Mar 10, 2019.

  1. rpk2006

    rpk2006 Registered Member

    Joined:
    Jan 29, 2003
    Posts:
    72
    Location:
    Planet Earth
    I am using ESET Internet Security and renewed to 12.1.31.0.

    I have scheduled a scan immediately after each update with "Smart Scan" profile.

    Other than Windows\System, Windows\System32, Windows\Temp .. which are the critical places where a ransomware or malware can hide?
     
  2. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    7,436
    Location:
    U.S.A.
    To answer your question generally speaking, malware can run from anywhere. Without getting into the "nitty gritty" of that, the most important area to monitor for program execution from is the C:\Users\xxxxxx\AppData\* folders/directories. And if your create a HIPS rule for this, you will get alerts since many installers for example create temp .exe files in C:\Users\xxxxxx\AppData\Local\Temp directory.
    This really is not necessary since Eset has a default scan set up to do the same after every module update.
     
  3. shmu26

    shmu26 Registered Member

    Joined:
    Jul 9, 2015
    Posts:
    1,282
    Another location to monitor closely is C:\ProgramData\*
     
  4. ArchiveX

    ArchiveX Registered Member

    Joined:
    Apr 7, 2014
    Posts:
    1,430
    Location:
    Land of the Light
    Entire C:\ :D
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.