SecurityHealthService.exe unprotects LSA
2024-10-13 by 59e5aaf4
Who needs protection? Not LSA!
Sets HKLM\SYSTEM\CurrentControlSet\Control\Lsa\RunAsPPL to 0 (= insecure = might raise EDR alerts ahem ahem) just before setting it (back?) to 2 for no valid reason.