Hi, I'm Evaluating TDS-3 and have a few queries about some of the results I've recieved from scans. Running an XP pro SP1 system, with all the TDS configuration options checked (inc. "ZIP/RAR Archives") and saved. Generic sensitivity is set to highest. Archives made with standard windows zip utility, and no other compression applications installed either. 1. I made an folder and placed serveral dual extensions inside (.txt.vbs .txt.shs .txt.shb .txt.exe .jpg.bat etc.). When scanned, TDS found them all. However when I zipped them, TDS only found ."any-File-Extension-Here".exe files, but none of the other types like .txt.bat or .jpg.vbs. Does this mean TDS descriminates about what it wants to scan for in archives? If so, what? Or did it just fail in detecting them? 2. I found a link to a trojan simulator in one of the posts in these forums (from computer cops, i think), and downloaded it. TDS found this pseudo-trojan, both zipped and unzipped. However when I placed it in a zip file within another zip file, TDS could not find it. Does this mean TDS can't detect malicious wares that have been archived within an archive? After This I installed winRAR Trial v3.20, where neither dual extensions or the trojan simulator were detected when archived once with WinRAR. Of course I don't really care about the detection of dual extensions, but am just curious that if these can be concealed within archives, how would TDS fare with real trojan horses or malicious programs which are probably far more complex to identify. Thanks in advance!