Which folders should be excluded in case of any Endpoint protection client?

Hi,

If I want to install any antivirus/malware EndPoint protection client on any of my ELK stack windows servers, which folders should I exclude?

I am using two Windows Server 2012 R2 servers. One is for Logstash and other is for Elasticsearch and Kibana.