You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
If you symlink to \??\globalroot\device\mup\;webdavredirector\candcip\davwwwroot\ and make the payload create a symlink \??\globalroot -> \??\nul It will only get executed when not already loaded, on termination \??\globalroot resolves through to shadow \global??\globalroot
this persistence method will not show up in any tool dedicated to show what will get executed on boot. If offline scanned implant is gone and persistence very unlikely to show up.
