this trojan sample http://www.misec.net/trojansimulator/ TDS clearly detects this trojan sample but it didnt stop this from installing. i have TDS in the system tray, execution protection installed but when i install this trojan sample, TDS didnt do anything. when i look in the task manager the trojan server is running, TDS is also running. it only detected this sample when i click on reload. i then deleted the file with TDS hoping that it could clean all that remains of that sample but it only deleted the server, not the registry that it created. registry and file trace scan detected the entry, when i delete the entry it says that it is deleted but when i checked again its still there so i have to manually delete the registry entry using autostart viewer. can anyone here verify this or is this happening only in my box? now what if its a real trojan? or is there something wrong with my settings?