I have installed NOD32 on two of my seven servers as a precursor to a system-wide rollout (60 users). These two systems were configured according to the accepted Microsoft advice as summarised here. One server is an W2K3 server domain controller / DHCP server and the other is an W2K3 server / Exchange 2K3 email server, both running SP2 Standard Edition. Both servers are vanilla in that they have no non-standard software running. They have also been in use for some time with no problems. In the last two weeks we have observed significant misbehaviour on the test servers. In each case the symptoms are the same. The server locks out and no longer responds to keyboard / mouse input but can be pinged over the network. The three-fingered salute (CTRL-ALT-DEL) does not successfully bring up Taskman for analysis of running processes. In my experience these symptoms look like those of a rogue process consuming all CPU time. A hard reboot is required to deal with these issues. In the case of the DHCP server I find errors such as the following when browsing through the Directory Services (DS) logs on other domain controllers: In the case of the email server I find errors such as the following when browsing the systems log: The failures on both servers have resulted in some systems downtime. No such failures have been seen prior to installation of NOD32 on these servers. Having done some digging it appears as though both examples deal with RPC failures on the domain controllers. Looking around these forums I see reports of other similar issues with NOD32 v4 on W2K3 server. In a number of cases these reports are dismissed by the NOD32 community and no solutions are offered. "Tough luck" seems to be the response du jour. Would someone who actively represents ESET/NOD32 in an official capacity please definitively detail the issues surrounding NOD32 v4 and Microsoft's use of RPC for Directory Services in W2K3 Server? I'd rather proceed from an informed stance than from conjecture. I need to understand this server misbehaviour, and how to correct it, so that I can make a judgement call about the suitability of NOD32 as an AV solution.