I'm running SEP 11.0.5002.333 on a 32-bit server. The device in question is a test server. I check on it periodically as scenarios arise in the production environment.
---
On 6/11/2010, I attempted to connect to it and got an "Unexpected Server Error." I rebooted the server and attempted to log in. Had to reset the admin password.
On 6/14/2010, I had to reboot again with the same "Unexpected Server Error." The server sent a disk space warning.
A search for large files showed a lot of files named VIRSCAN7.DAT, VIRSCAN8.DAT, VIRSCAN9.DAT, TCSCAN7.DAT. File sizes range from 15 Megs to over 64 Megs.
and some zip files named FULL.ZIP, VDEFHUB.ZIP, JTDS-1.1-SRC.ZIP, IPSDEF.ZIP. File sizes range from just over 1 Meg to over 100 Megs.
There is a gap in consistent write dates from 02/28/2010 until 06/10/2010. There are periodic write dates in March, April, and May, but no daily writes until 06/10/2010.
Paths where the identified files are being written are:
c:\program files\common files\symantec shared\virusdefs\*
c:\program files\common files\symantec shared\virusdefs\binhub
c:\program files\symantec\symantec endpoint protection manager\inetpub\content\{**}\### (zip files)
tcscan7.dat
c:\program files\symantec\symantec endpoint protection manager\inetpub\content\{**}\### (dat files)
c:\program files\common files\symantec shared\virusdefs\*
c:\program files\common files\symantec shared\symcdata\sesmvirdef32\*
c:\program files\common files\symantec shared\virusdefs\*
At present, there are 97.8 Megs available on a 15 Gig drive.
----
Question 1: What files are safe to purge (how far back do I need to keep definition files on the server)?
Question 2: What should be done to keep this from recurring (Shouldn't the files be cycled/purged automatically)?
All assistance is appreciated.