So I suppose I imagined the fairly standard threats popping up in my temp folders around the clock, popups at blocked domains, attempted infected...
Just wasted an hour cleaning up a TDSS infection. It would appear NOD32 just laid down and played dead whilst the rootkit somehow got through...
Separate names with a comma.