suply
asked on
What is the best antivirus spyware protection for windows server 2003
Hello Experts,
I have a windows sever2003. Looking for a free trial version that I can test and remove probable viruses. One that is effective in protecting and light on services.
Server is now very slow, spyware is probably present. I would need to download since I can only get to the server via logmein. Would like to program scheduled scans.
Thanks
Suply
I have a windows sever2003. Looking for a free trial version that I can test and remove probable viruses. One that is effective in protecting and light on services.
Server is now very slow, spyware is probably present. I would need to download since I can only get to the server via logmein. Would like to program scheduled scans.
Thanks
Suply
A server should never receive spyware. If someone is browsing with it, that's a no-no, Server 101.
If someone has uploaded spyware to it, and it's executed on the server (installed), then you have MUCH bigger problems than AV / Spyware. You have a compromised system.
Generally, I never install AV on a server. By definition, if should never have the opportunity to contract anything.
The only issue you may possibly have is, if it's in a shared environment where others are uploading web files, etc., someone may have placed malware on it to be downloaded. But for the server to be infected, someone would have to execute the files ON the server itself. If that's the case, securing the server is your first step.
If someone has uploaded spyware to it, and it's executed on the server (installed), then you have MUCH bigger problems than AV / Spyware. You have a compromised system.
Generally, I never install AV on a server. By definition, if should never have the opportunity to contract anything.
The only issue you may possibly have is, if it's in a shared environment where others are uploading web files, etc., someone may have placed malware on it to be downloaded. But for the server to be infected, someone would have to execute the files ON the server itself. If that's the case, securing the server is your first step.
Generally, I never install AV on a server.
Oh my god you are living very dangerous :-O
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you for your prompt answer. In regards to malwarebytes I have currently on my pc. I see they only have one version, Is the trial version good for windows server 2003?
Thank you
Thank you
If a server has a network share on it, it need some protection. I lock down my server so that it is next to impossible to browse with it if anyone can access the physical machine (which is locked up). I also have serverside AV/AM just in case and the server is scanned daily and backed up as files change in a time capsule way. As well as the normal backups (full/diff). I also backup to the cloud with a service that provides versioning.
Malwarebytes is only good for the server if you are using the enterprise edition (otherwise no console) https://www.malwarebytes.org/enterprise/. The business edition will work on the server but no console and less support. MB doesn't have a decent trial - one suggestion I have made.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you
When I say I don't use AV on the servers, to translate to OTHER folks servers, that would be highly dictated by what you are doing on the server. If it's just a web server / db, other "no file sharing" server that people don't directly connect to via smb / nfs, etc., then WHY would you run AV on a server?
On a file share, sure, but, even then, the install file should not be able to infect the server itself. Generally, that requires a person to run the install, which should NEVER happen on the server itself.
That being said, an external AV scanning the file share is the way to go.
The other exception would be, of course, a mail server. But you would use an app built for scanning mail servers. Not just some 3rd party AV installed, gratuitously scanning files. That's a good way to loose mail.
On a file share, sure, but, even then, the install file should not be able to infect the server itself. Generally, that requires a person to run the install, which should NEVER happen on the server itself.
That being said, an external AV scanning the file share is the way to go.
The other exception would be, of course, a mail server. But you would use an app built for scanning mail servers. Not just some 3rd party AV installed, gratuitously scanning files. That's a good way to loose mail.
I've used the free MBAM but have always felt you get what you pay for. I bought 3 copies of the MBAM lifetime license. I run 2 of those now and use it on my work machine but not on the server except on an as needed basis, I keep the third on hand just in case.
My concern has always been the ability to try out the console - which is very important. MB has no console trial and wouldn't even give me a per machine quote until I was ready to buy. I love malwarebytes apps, but they are shooting themselves in the foot, by not making some demo available. We ended up purchasing Comodo (CES/CESM) partially because they had a 1yr/10 user trial or 60 day/600 user trial that included the console. They've gotten rid of the 1yr trial but still offer the 60/600.
My concern has always been the ability to try out the console - which is very important. MB has no console trial and wouldn't even give me a per machine quote until I was ready to buy. I love malwarebytes apps, but they are shooting themselves in the foot, by not making some demo available. We ended up purchasing Comodo (CES/CESM) partially because they had a 1yr/10 user trial or 60 day/600 user trial that included the console. They've gotten rid of the 1yr trial but still offer the 60/600.
On a file share, sure, but, even then, the install file should not be able to infect the server itself. Generally, that requires a person to run the install, which should NEVER happen on the server itself.
Uh, not that I know of. If you get cryptolocker it will immediately encrypt all mapped network shares. They are more variants out there that will do the same. That is the reason why we have a policy that any machine that is infected is IMMEDIATELY taken off our network, until it can be okayed by one of our techs.
One reason I use Linux for all human-touch files shares. :) But all of our workstations have AV at that level, so they don't make it to a file share. Never had an issue with it, been running this way for a decade. We don't allow BYOD on the corp network. Only approved machines with approved AV / Malware apps. Malwarebytes is our choice of first line defense from anything other than the classic "virus".
I'm not proficient enough in UNIX based systems to run a decent Linux file share. I have an UBUNTU box running in my office, but that is kind of like comparing a workstation to a server running AD.
I wish I didn't have to worry about infected file shares.
I wish I didn't have to worry about infected file shares.
You can try the following antivirus software:
http://free.avg.com/us-en/homepage
http://www.immunet.com/free/index.html
http://www.avast.com/en-us/index
http://free.avg.com/us-en/homepage
http://www.immunet.com/free/index.html
http://www.avast.com/en-us/index
Remember you very what you pay for especially with server av.
Note: You can install Malwarebytes with an existing Anti Virus Software.