Solved

What are these log files for?

Posted on 2013-12-09
7
303 Views
Last Modified: 2013-12-10
We have a Windows 2008 Server running IIS, one application, and AV. It has c:\hostact.log size=380MB and a c:\hoststat.log with a size of 200MB.
What is generating these log files?
How do we disabled this logging?
0
Comment
Question by:johnj_01201
  • 5
  • 2
7 Comments
 
LVL 19

Accepted Solution

by:
jss1199 earned 500 total points
ID: 39707121
These are not generated by IIS or Microsoft.  Use sysinternals process explorer to determine what application or process is writing to the file - once we know the app we can assist further.

When you open process explorer, use the icon that resembles a pair of Binoculars... or use the hotkey Ctrl+F(find) and type the name of the file... it will show you which process is presently running and has locked the file for use.

http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx
0
 
LVL 1

Author Comment

by:johnj_01201
ID: 39707155
Neither filename shows up in Process Explorer and the logs continue getting updated.
0
 
LVL 1

Author Comment

by:johnj_01201
ID: 39707173
Resource Monitor shows one of the files c:\hostact.log
System, PID=4 (along with most everything else).
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 19

Expert Comment

by:jss1199
ID: 39707197
files accessed through a share will be locked by the system process (PID 4).

Try opening compmgmt.msc -> System Tools -> Shared Folders -> Open Files to see if the locked file is listed there
0
 
LVL 1

Author Comment

by:johnj_01201
ID: 39708395
no open files either. I rebooted the server and the logs continue to update\grow. I used to have a notepad replacement that could open up large files but forgot the name and do not know of any legit programs to try.
0
 
LVL 1

Author Comment

by:johnj_01201
ID: 39708406
More information. The server is a VM running on VMware and the AV software is Kaspersky anti-virus.
0
 
LVL 1

Author Comment

by:johnj_01201
ID: 39708412
OK. I used Programmers Notepad and was able to open the files and now see what the log files are for.
thank you.
0

Featured Post

Don't lose your head updating email signatures!

Do your end users still have the wrong email signature? Do email signature updates bore you or fill you with a sense of dread? You can make this a whole lot easier on yourself by trusting an Exclaimer email signature management solution. Over 50 million users do...so should you!

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
A Bare Metal Image backup allows for the restore of an entire system to a similar or dissimilar hardware. They are highly useful for migrations and disaster recovery. Bare Metal Image backups support Full and Incremental backups. Differential backup…
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now