2

An "event log" is a log of actions which occurred on a computer - an application being executed, a keystroke interrupt, etc. It can log any myriad of events, depending on what the logging program is designed to watch.

Event logs are used by security suites to monitor activity.



An "application log" would usually just be a log of the application's execution, so that bugs could be identified, such as a segmentation fault.

Event logs are recorded events that take place when you download new security updates or update your IE......security recorded logs are the debugging service on the computer which runs once every month when Microsoft updates the Microsoft Malicious Software Removal Tool which is on the computer....you can see it > Start > run > type in mrt...hit ok.......



Application logs are just that...applications to all the software programs on the computer including downloaded programs and all AV products and miscellaneous software.............

Event Logs



Applies To: Windows 7, Windows Server 2008 R2, Windows Vista



Windows Vista includes two categories of event logs: Windows Logs and Applications and Services logs. You can use either the Event Viewer or the wevtutil command-line tool to manage event logs. When you use wevtutil to manage event logs, messages that you receive from wevtutil might refer to event logs as channels. In most cases, event logs and channels are equivalent. For more information about event logs and channels, see the Event Logs and Channels in Windows Event Log topic in the Windows Event Log Software Development Kit (SDK) online.

Windows Logs



The Windows Logs category includes the logs that were available on previous versions of Windows: the Application, Security, and System logs. It also includes two new logs: the Setup log and the ForwardedEvents log. Windows logs are intended to store events from legacy applications and events that apply to the entire system.

Application log



The Application log contains events logged by applications or programs. For example, a database program might record a file error in the application log. Program developers decide which events to log.

Security log



The Security log contains events such as valid and invalid logon attempts, as well as events related to resource use, such as creating, opening, or deleting files or other objects. Administrators can specify what events are recorded in the security log. For example, if you have enabled logon auditing, attempts to log on to the system are recorded in the security log.

Setup log



The Setup log contains events related to application setup.

System log



The System log contains events logged by Windows system components. For example, the failure of a driver or other system component to load during startup is recorded in the system log. The event types logged by system components are predetermined by Windows.

ForwardedEvents log



The ForwardedEvents log is used to store events collected from remote computers. To collect events from remote computers, you must create an event subscription. To learn about event subscriptions, see Event Subscriptions.