BTW, do you think MSE is a good choice for general protection? Would it be likely to catch this sort of thing if it happens again? At least Avast threw up warnings telling me what it was blocking (before it got compromised, I guess)... otherwise I would never have known it was Sirefef at all. Malwarebytes, maybe?