The most common type is Signature-based detection. It identifies malware and viruses by matching it to an established lexicon of virus traits. The whole will be searched as viruses can embed themselves in existing files, the blighters.
Heuristic-based detection can be used to identify unknown viruses as it investigates the deep lying genetic code of a virus and compares it to an established database of known viruses.
File emulation involves running a program in a protective virtual environment and noting the actions the program performs. If the actions are not the desired ones, the software will determine the program as malicious and will carry out the appropriate disinfection.
You are most likely looking at a Host Intrusion Prevention System. HIPS are anti-virus or malware programs that will protect individual workstations.
There are other types, such as Network Intrusion Prevention Systems, but as you’re looking at a standalone server or workstation, stick with HIPS as NIPS does not offer local protection such as someone whacking an infected pen drive into your work station.
Regarding wireless deployment mistakes, the most common is the failure to use a base64 password, closely followed by not planning for future applications, not having enough capacity (which will affect performance) and a lot of people don’t implement any form of analytical software. It’s best to work with an experienced deployment partner.