Tuesday, January 25, 2022

Common virus locations

 # %System%
# %Windir%
# %Temp%
# %UserProfile%
# %ProgramFiles%
# %SystemDrive%
# %CommonProgramFiles%
# %CurrentFolder%

------------------------------

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows\"load"