Some people know Remko Weijnen’s blog about stuff regarding Windows Terminal Server. If you don’t you should read his articles. You’ll get a deep insight how Windows works.

Recently another author published an article about TS internals on Remko’s blog. Danila Galimov exposes how communication is done between Terminal Service and a Terminal Session (like RDP or Console Session).

He uses this knowledge to create a completely new Session in Windows XP, which contains an idle winlogon.

You can copy this behavior by running the supplied example (e.g. in a VM). However, it only works on XP and 2000 with a SYSTEM command prompt.
Maybe a next step would be to switch to this session? I’m excited what to come next…

Yes, I was told that more is to come. So dig into the first article Terminal Service Internals.