Microsoft advises Windows users not to delete a folder named “inetpub. The folder is created after installing a security update for a vulnerability referred to as CVE-2025-21204. Through the security vulnerability in Windows Process Activation, an attacker who already has access to the system can gain SYSTEM privileges and thus completely compromise the machine.
The appearance of the folder caused all kinds of questions on the Internet. Microsoft has now provided the security bulletin with more information. In it, the tech company reveals that the folder is created as part of the installation of the update. “This folder should not be deleted,” Microsoft said. “This behavior is part of changes that increase protection and does not require action by system administrators or end users.”