I too have found the code on my website. It appears to have infected all folders in the first two levels of the folder structure.
Does anyone know how to decrypt it?
I have removed all copies as it appears to have been "uploaded" onto my website when I was NOT ftp'd into it.
I also suspect that a new folder called "test" was uploaded - with CGI, PHP, Perl, ASP and ASPX code in it.
You might want to check for that folder - please respond if you have a copy of it also...