Upon running my weekly scan today Spybot is flagging c:\windows\JESTERTB.DLL as virtumonde.sdn
This file comes up clean by Avast, Trojan Hunter, SAS & MBAM.
Submitted file to Virus Total - shows 0\41 (see attached)
Submitted file to Jotti - shows 0\19 (see attached)
Suggest this may be a false positive. Can supply copy if you wish.
Windows XP-Pro SP3 fully patched.
--- Search result list ---
Virtumonde.sdn: [SBI $043FD2D1] Library (File, nothing done)
C:\WINDOWS\JESTERTB.DLL
Properties.size=21504
Properties.md5=56DF1B6C087D4B9C0AB2318F226D3040
Properties.filedate=1241085852
Properties.filedatetext=2009-04-30 11:04:12
Much obliged.