[Kelly Crooks]

The first type of event log is an application log. An application log contains errors related to individual software and applications installed by a user on a machine. An example of an application log in digital forensics would be determining if a firewall program had been disabled during a specific time on the device.

A second type of event log is a system log. A system log logs specific errors and logs of an operating system and can alert if there is faulty hardware such as a bad drive in the machine. An example of a system log would be if a machine shutdown unexpectantly. When the system restarts the screen comes up with a warning screen that says the system didn’t shut down properly.

A third type of event log is a security log. A security log is related to logs and errors. Security logs include functions and processes such as account logon/logoff, privileges assignation, and other users who are logged on the system. An example of a security log would be if a user changed or upgraded their user privileges on a system. This change would be noted in the security log.