Had to go out to a client who was using NOD 32 version 3 Business Edition. One of their computers was infected with a malware called "Total Security" which the person appears to have been able to install in the Program Files directory. The malware appeared to be able to close down NOD32 v3 GUI in systray. Was able to clean it via safe mode and another antimalware package. Then upgraded NOD32 to current version 4 and password protected NOD32. Made sure their firefox was up to date and removed IE from their desktops. Question is shouldnt NOD32 version 3 prevented this application to be installed?