I came accross a problem recently that really peaked my interest (http://www.experts-exchange.com/Q_22045531.html
). In short they disabled the network adapter on a remotely hosted Server 2003 were looking for a way to reenable it via a script to be run at startup. Their solution in the end was to restore from backup but I'm left with 2 questions as a result:
1. Assuming someone has unfettered access to the filesystem but no access to the registry or OS is there a way to have files execute at startup by copying files to the appropriate location, giving files copied over the appropriate names, or editing existing files, or something similar?
2. How do you prevent this if it is possible?