Windows Security Tutorials - Herong's Tutorial Examples - v3.01, by Dr. Herong Yang
Windows 7: Event Log Viewer
This section provides a tutorial example on how to review all event log entries with the Event Viewer on a Windows 7 system.
As part of the security review, you should also review Windows 7 system event log file. Investigate any log entries that are strange to you.
1. Go to "Control Panel\System and Security\Administrative Tools".
2. Double click on "Event Viewer". You see the "Event Viewer" screen shows up.
3. Click on the "Windows Logs" folder and the "Application" on the left side. You see a list of all events in the Application group.
4. Click on a log entry to review its detail information. For example, the "gupdate" event happened on 12/14/2013 has the following details:
Level: Information Date: 12/14/2013 Source: gupdate The description for Event ID 0 from source gupdate cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.
This event tells me that "gupdate" ran into some trouble while trying check for Google update. The only Google product on my computer is Google Chrome. I can actually disable the "gupdate" service to avoid this issue. I can check Google Chrome updates myself.
5. Continue to review other event log entries in "Application", "Security", "Setup", and "System" groups to see if there are security related issues.
The picture below shows you the list of Windows 7 event log entries:
Table of Contents
About This Windows Security Book
Windows 8: System Security Review
Windows 8: System Security Protection
Windows 8 Defender for Real-Time Protection
►Windows 7: System Security Review
Windows 7: System Version-Information
Windows 7: Create Restore Point
Windows 7: Uninstall Unwanted Programs
Windows 7: Disable System Services
Windows 7: Disable Scheduled Tasks
Windows 7: Remove Startup Programs
Windows 7: Review Running Processes
Windows 7: Disk Folders and Files
Windows 7: Review Personal Downloads Folders
Windows 7: System Security Protection
Windows 7 Forefront Client Security
Norton Power Eraser - Anti-Virus Scan Tool
McAfee Virus and Malware Protection Tools
Spybot - Spyware Blocker, Detection and Removal
Keeping IE (Internet Explorer) Secure
Malware (Adware, Spyware, Trojan, Worm, and Virus)
HijackThis - Browser Hijacker Diagnosis Tool
IE Add-on Program Listing and Removal
"Conduit Search" - Malware Detection and Removal
"Tube Dimmer", "Scorpion Saver" or "Adpeak" Malware
Malware Manual Removal Experience
Vundo (VirtuMonde/VirtuMundo) - vtsts.dll Removal
Trojan and Malware "Puper" Description and Removal
VSToolbar (VSAdd-in.dll) - Description and Removal
PWS (Password Stealer) Trojan Infection Removal