How to Configure and Analyze Event Logs in Windows 10?

The Windows or any operating system needs to analyze or maintain users, activity , errors, security logs and these are all important to be viewed and analyzed, no worries, by using windows you’ve the best option to choose so quick and easy by the built-in app “Event Viewer“. You can launch Event Viewer and manage or maintain computer performance and analyze complete windows log. The Event viewer app covers almost every activity runs in windows of your computer or another computer whether they are local or on remote computers. It can help you uncover problems that are difficult or if not possible to diagnose elsewhere. Also, it includes user login or logout events and no one can skip even if a person removes the event logs from event viewer and don’t want to be captured by it.

Configure and Analyze Event Logs in Windows 10

1# Press Windows logo key and type Event Viewer or just event and hit enter.

Start Menu
Start Menu

2# When the Event Viewer opened, on the each log you’ll explore here shows information about events that occur and their importance and they logs contains these levels of events:

  • Information: Events labeled as Information are normal events, but they have been logged to provide information about a change related to a component or process.
  • Error: These events warn that a problem has occurred, but the problem probably won’t affect the performance of the component being called out. It might affect the performance of other components, though.
  • Warning: These events warn of problems that you might need to deal with (unless noted otherwise in the log entry). If they are not resolved, problems will likely ensue.
  • Critical: These events warn of catastrophic failure or loss of function of a component. These events must be addressed quickly.
  • Verbose: These events only provide information related to progress or successes and do not imply any problem has or might occur.
Event Viewer
Event Viewer -Dashboard

3# Now select Windows Log and select one of category from below and click on a log you can see all the details about it. Also, you can resolve them by searching the error details on Google and get the best results to solve.

  • Application: This log contains entries related to applications installed on the computer.
  • Security: This log contains entries related to security events, including successes and failures due to audited events. The events that are recorded are configured through audit policies in local computer policies and Group Policy.
  • Setup: This log contains entries that apply to system installation and setup history.
  • System: This log contains entries that have to do with the operating system. Entries might have to do with the failure of a service or a device driver that doesn’t start when it should.
  • Forwarded Events: This log contains events you create yourself using subscriptions. You’ll learn how to create a subscription later in this section.
Event Viewer -Windows Logs
Event Viewer -Windows Logs

4# Here to explore more Event Viewer and to understand what is available in Event Viewer, of course, you’ll need to know how to configure different views, create custom views, clear a log or logs, opening a saved log, attaching a task to this event and so on. So in this case now we’ll take a look at all of them in order to let you find all the answers to these questions.

To create a custom view in Event Viewer, on the Event Viewer window click on Create Custom View from the action menu then choose the options as you want and click Ok like the shot below.

After clicking Ok, you’ll be prompted to name the custom view and click Ok.

Create Custom View
Create Custom View

When the custom view created, it will look something similar to this.

New Custom View
New Custom View

 5#Ok, now right click on an error, information or warning and select Attach Task to this event(This wizard helps you to quickly schedule a task and perform it for the specific error, info or warning etc. On the window name the error, info or warning and click Next>Next>Select an action to perform and click Next>Finish.

Configure and Analyze Event Logs
Action

When the task attached, then to modify the task open windows Task Scheduler and find out the task and change it if you want.

No more options has remained to explain, on the right sidebar you can simply do them easily like opening saved log, create custom view, import custom view, clear log, filter current log, properties, find and etc.

And also you can connect other computers to it and view or analyze their windows logs to do that first click on Event Viewer Local and on the right corner select Connect to another computer then browse it and click ok.

Ok, that’s it. If you’ve any question regarding this we appreciate you to give them to us.

Author : Karar

is a tech geek, writes & share his experiences through the website. Also he's founder of Tactig and love to help people. You can connect with him on social media and ask your questions you're stuck.


Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *