ThrdScan: Fix process filtering

This check was both causing an `InvalidAddressException` due to the
member access, while at the same time not being a useful check, since it
prevents VADs from being mapped in children of the `System` process.

Author: dgmcdona

volatility3/framework/plugins/windows/thrdscan.py

@@ -111,24 +111,23 @@ def gather_thread_info(
             return None
 
         # don't look for VADs in kernel threads, just let them get reported with empty paths
-        if (
-            owner_proc_pid != 4
-            and owner_proc.InheritedFromUniqueProcessId != 4
-            and vads_cache is not None
-        ):
+        if owner_proc_pid != 4 and vads_cache is not None:
             vads = pe_symbols.PESymbols.get_vads_for_process_cache(
                 vads_cache, owner_proc
             )
-
-            start_path = pe_symbols.PESymbols.filepath_for_address(
-                vads, thread_start_addr
-            )
-            win32start_path = pe_symbols.PESymbols.filepath_for_address(
-                vads, thread_win32start_addr
-            )
         else:
-            start_path = None
-            win32start_path = None
+            vads = None
+
+        start_path = (
+            pe_symbols.PESymbols.filepath_for_address(vads, thread_start_addr)
+            if vads
+            else None
+        )
+        win32start_path = (
+            pe_symbols.PESymbols.filepath_for_address(vads, thread_win32start_addr)
+            if vads
+            else None
+        )
 
         return (
             format_hints.Hex(thread_offset),