This info is for education Purposes so you can easily fight with malwares.
Recently i have seen that most of the malwares are hiding them in these places.
E:\$RECYCLE.BIN\S-1-5-21-753910001-3131002939-2694377654-1000
Reasons:-
Because this location is hidden or can be set it to hidden attributes. Some people try to check the files in pen drive with command prompt. So if the person do this he will only see the autorun file not the original exe file. For the original file he have to go to this location.
