What are best practices for installing antivirus protection on servers? Is there a certain type of server where that's just a bad idea (like a AD DC)? What about IIS web servers (a huge enterprise server, with over 200 Host Header sites, Perl, PHP, .NET, etc. ISAPIIs, all going on it)? What are the best solutions for this?