dhcp64-134-64-55.wgp.atl.wayport.net which indeed resolves to 64.134.64.55 is infected.
I got a message, forged from another LUG member. Neither of us have windoze email, so I thought I'd pass along the info to see if anyone here recognized the address. The message had the above subject, text that says "Argh, i don't like ?the ?plaintext :)" and a password protected zip file. The package is a win32 executable, in my case "rckokpeba.exe". Strings shows the typical calls to KERNEL32.DLL and USER32.DLL
