This has been around for a while I guess, but has anyone thought of an idea for using (abusing?) ADS for getting BH work done? In essence its a file inside a file and hidden from site. Its not that simple to run the 'hidden' file without something being spotted but I know there is a way to us ethis somewhere. Have a quick read at HTML: http://www.windowsecurity.com/articles/Alternate_Data_Streams.html if you want to know about ADS, and maybe we can throw some ideas about!