Start program hidden with user's desktop access?

[1mscar3d]

I have a C# program which installs rootkit and add itself in r77's autorun. After restarting my c# application starts as System and I can't access user's desktop and start files as user. Is in r77 a option, to start the file as user (or administrator (will be better)), not as system?

[bytecode77]

When your program runs under the SYSTEM user, it doesn't have access to the desktop, or the user directory, etc. So, that's a limitation. However, under Windows, lot's of processes run under SYSTEM that need to interact with the current user account. I would suggest implementing impersonation - you can basically search for the right code snippet and use it.

As mentioned in the documentation, you need to impersonate the current user. Maybe this post could lead you into the right direction.

Hope it helps!