I don't understand quite what you're trying to do. Perhaps you should contact the hosting support people.

I'm not sure what you're expecting these various win32 programs to achieve. Even a virtual server will have a virtual network interface that it must be using, or traffic would not be able to get to it. If a specific application is unable to use it, then that's something you must take up with that vendor's support people (it is REALLY nothing to do with php )

You should use whichever antivirus aplication you've tested on your development server and works. If it fails, contact the vendor's support.

If you're trying to do traffic analysis, you might want to consider:
- Have Apache make access logs in "combined" format
- Use one of the many long analysis applications

If you're trying to do intrusion detection / prevention, you might want to consider
- mod_security - but read ALL documentation thoroughly and test it extensively on your dev server before deploying it (this generates false positives easily)

Mark

No amount of third party software will prevent your application from being vulnerable, if it is coded that way. If you are really concerned, you should put extensive mitigation code in (e.g. rate-limiting for everything, CAPTCHAs). Correct design of your application will prevent most types of attack, however.

If you are in the UK or EU, I am happy to do a paid source code audit for a reasonable rate.

Mark