[rkhunter]

Guys, somebody have dealt with a similar feature?
I want to redirect all I / O from the keyboard or mouse or drawing windows on the other desktop (windowstation) in order to user does not seen the USER-activity of this process. Redirection (or hijacking) should occur at the start of the process (or in began converting the first thread in Win32), i. e. that to process began to work with new non-interactive desktop.

[rkhunter]

I found the solution. It was very simple <3. Start the process, created by specifying desktop (usual API). In order to process could not switch to another desktop, need to grab a few functions (NtUserxxx).

[Vrtule]

Desktop switching could be prevented by putting the target process into specially configured job object.

[rkhunter]

SetInformationJobObject with JobObjectBasicUIRestrictions?

[Vrtule]

Yes, that should do the job.