Is it possible to configure the Event Log to record only events above a specific severity level?
On one Windows 10 Home PC, there are currently 1,123 separate Event Logs, from AMSI/Debug
to Windows.Globalization/Analytic
. Is there a way to control globally what types of events are captured, such as in Java's Log4j?
Log4j
can be configured to capture only fatal errors, or other error levels such as Error, Warning... all the way to Debug and Trace. However, the Windows Event Logs seems to be capturing everything, which causes constant writing to disk and overwriting old log data. Some events are spurious, such as TDL events.
[BTW, though I'm seeking to do this to reduce disk usage, could this be a cause of early SSD death on Windows machines? Though write-caching may reduce the total number of storage operations, having that many active logs would seem likely to have some impact on disk usage. It would be useful to compare at different levels of logging.]