Windows 7: Event Log Viewer

This section provides a tutorial example on how to review all event log entries with the Event Viewer on a Windows 7 system.

As part of the security review, you should also review Windows 7 system event log file. Investigate any log entries that are strange to you.

1. Go to "Control Panel\System and Security\Administrative Tools".

2. Double click on "Event Viewer". You see the "Event Viewer" screen shows up.

3. Click on the "Windows Logs" folder and the "Application" on the left side. You see a list of all events in the Application group.

4. Click on a log entry to review its detail information. For example, the "gupdate" event happened on 12/14/2013 has the following details:

Level: Information   Date: 12/14/2013   Source: gupdate

The description for Event ID 0 from source gupdate cannot be found.
Either the component that raises this event is not installed on your
local computer or the installation is corrupted. You can install or 
repair the component on the local computer.

This event tells me that "gupdate" ran into some trouble while trying check for Google update. The only Google product on my computer is Google Chrome. I can actually disable the "gupdate" service to avoid this issue. I can check Google Chrome updates myself.

5. Continue to review other event log entries in "Application", "Security", "Setup", and "System" groups to see if there are security related issues.

The picture below shows you the list of Windows 7 event log entries:

Windows 7 Event Log Viewer
Windows 7 Event Log Viewer

Table of Contents

 About This Windows Security Book

 Windows 8: System Security Review

 Windows 8: System Security Protection

 Windows 8 System Recovery

 Windows 8 Defender for Real-Time Protection

Windows 7: System Security Review

 Windows 7: System Version-Information

 Windows 7: Create Restore Point

 Windows 7: Uninstall Unwanted Programs

 Windows 7: Disable System Services

 Windows 7: Disable Scheduled Tasks

 Windows 7: Remove Startup Programs

 Windows 7: Review Running Processes

Windows 7: Event Log Viewer

 Windows 7: Disk Folders and Files

 Windows 7: Review Personal Downloads Folders

 Windows 7: System Security Protection

 Windows 7 System Recovery

 Windows 7 Forefront Client Security

 Norton Power Eraser - Anti-Virus Scan Tool

 McAfee Virus and Malware Protection Tools

 Spybot - Spyware Blocker, Detection and Removal

 Keeping Firefox Secure

 Keeping IE (Internet Explorer) Secure

 Malware (Adware, Spyware, Trojan, Worm, and Virus)

 HijackThis - Browser Hijacker Diagnosis Tool

 IE Add-on Program Listing and Removal

 "Conduit Search" - Malware Detection and Removal

 "Tube Dimmer", "Scorpion Saver" or "Adpeak" Malware

 Malware Manual Removal Experience

 Vundo (VirtuMonde/VirtuMundo) - vtsts.dll Removal

 Trojan and Malware "Puper" Description and Removal

 VSToolbar (VSAdd-in.dll) - Description and Removal

 PWS (Password Stealer) Trojan Infection Removal

 MS08-001 Vulnerability on Windows Systems

 Antivirus System PRO


 Full Version in PDF/ePUB