How can an administrator use MSDTC to launch a program with reduced privileges?

By running `msdtc -install` in an administrator command prompt, the MSDTC service loads `oci.dll` with administrator privileges instead of SYSTEM privileges, achieving privilege reduction startup. This technique is useful for running programs at a lower privilege level. For more methods of privilege reduction, refer to the article 'Penetration Techniques – Privilege Reduction Startup of Programs.'