We've received a report or two from administrators who've spotted weird traffic in their network: machines sending large amounts of data to TCP port 80 at address 212.100.234.54.
So far, we haven't been able to secure a sample of the offending piece of malware from the affected computers, but we'll continue investigating. In the meanwhile we urge administrators to check their firewall logs for similar activity. And please pass any suspected programs for our analysis to samples@f-secure.com.