Boot Verification Program
Location:
HKLM\SYSTEM\CurrentControlSet\Control\BootVerificationProgram
Classification:
| Criteria | Value |
|---|---|
| Permissions | Admin |
| Security context | System |
| Persistence type | Registry |
| Code type | EXE |
| Launch type | Automatic |
| Impact | Non-destructive |
| OS Version | All OS versions |
| Dependencies | OS only |
| Toolset | Scriptable |
Description:
If there is a REG_SZ or REG_EXPAND_SZ value named ImagePath, it will be used to launch a process by the Service Manager.