We do support you, as much as we can, rebrov. Each of us has been where you are. None of us just picked up a computer and hacked systems, with no learning curve, behind it. We also understand the difficulty with English, as many of us deal with customers and co-workers who are in the same situation. If there's a term you need clarified, by all means, ask, and we'll try to explain it. But you must also be willing to spend some time, yourself, trying to understand and find meaning, as this IS a website, where 'us members' don't just sit and monitor all day, waiting for the opportunity to clarify things. :-)
In your case, it's just that we CAN'T easily tell you to 'do this, or do that' simply by knowing you gained a user account with ftp access. As I'd said, there's very little 'ELSE' we can offer, simply by knowing you successfully found a user account and password for the ftp server. You'll learn as you progress and study that MUCH more time must be spent in enumeration (where you find open ports / services and research exploits and hacks available for those services.) We can't simply say, 'Look at 'abc' process and run ' xyz' exploit, because we aren't in the know on what services are running on it, ourselves, and where to send you.
Again, it'd be well for you to spend some time with the de-ice bootable security lessons and others, which will help you to learn, more effectively, how to deal with what you find, and how to use other resources, such as milw0rm, on the web, to help you locate known exploits for various findings. Also, assuming this MIGHT be a windows server, you might do well to obtain some hackable windows VMWare images (you'd have to search the net, or obtain them from a CEH course or something,) or intentionally dig and install some vulnerable windows executables on a lab machine, so you can spend some time learning where to go with the information you uncover. Additionally building your OWN lab up, and spending time hacking against it, is well worth effort (assuming you have the resources, but if you don't, and your friend is obviously letting you test on his systems, then maybe HE can help you setup a lab.) There are good books out there on the subject, such as:http://www.amazon.com/Build-Your-Own-Se ... 0470179864
I think you'll find we all will do our best to help you out, but until you've been able to dig further, and provide more information than simply having gained ftp access, it leaves us in a position where we have no further advice to offer, other than what we have already given you. With learning comes research, and with research comes time. And sometimes, with both, comes much frustration, pain, and confusion. You have to 'roll with the punches,' so to speak, and just 'roll up your sleeves' keep 'plugging away.' (Sorry, this means, work through frustration, increase your knowledge and skills through study and testing, and keep trying.)
But, if you're just learning, to simply start out with ftp account brute force access, and to hope for a quick root access hack, is NOT a reasonable expectation. Not if you won't take what we've given you (hints = SQL, Domain Controller, RPC,) and start exploring. That's how all of us learned the trade, and learning to understand the flow and other possibilities is essential.
Please understand, we're on here to help you learn. And we're generally happy to do so. It's just that, as you progress, you also have to learn what to ask us, what information to provide when you ask it, and what to do with the answers you're given.
Good luck, and I wish you well in your learning, rebrov.