Troubleshoot Hyper-V using the Event Log - Chathura Ariyadasa (He/Him/His)

Hyper-V logs a lot of useful information if you need to diagnose a problem, so I thought I would put together a little post explaining where you should be looking. The first thing to know is that all Hyper-V event logs are stored in the Event Viewer under “Applications and Services Logs”, “Microsoft”, “Windows”:

There are 10 main categories to look at:

Hyper-V-Config: This section is for anything that relates to virtual machine configuration files. If you have a missing or corrupt virtual machine configuration file – there will be entries here that tell you all about it.
Hyper-V-High-Availability: This section tells you about actions and changes that happen because of Hyper-V clustering.
Hyper-V-Hypervisor: This section is used for hypervisor specific events. You will usually only need to look here if the hypervisor fails to start – then you can get detailed information here.
Hyper-V-Image-Management-Service: This section is used by the image management service to log information about virtual hard disk operations – like creating, converting and editing virtual hard disks. If you have problems creating or editing a virtual hard disk – look here.
Hyper-V-Integration: This section is used to log events that relate specifically to integration services.
Hyper-V-Network: This section is used for events relating to virtual networks. You will see information about the creation and configuration of virtual networks here (as opposed to virtual network adapters).
Hyper-V-SynthNic: This is the section where information about virtual network adapters. You will see entries in here each time a virtual machine with virtual network adapters powers up. You will also see entries here if a virtual machine fails to power on because of a configuration issue with its network adapters.
Hyper-V-SynthStor: This section is to do with virtual hard disks that are associated with running virtual machines (it is the storage equivalent of the SynthNic section).
Hyper-V-VMMS: This section is where the virtual machine management services files its events.
Hyper-V-Worker: This section is used by the worker process that is used for the actual running of the virtual machine.

Please follow and like us:

Author: Chathura Ariyadasa

♚Father ♚Innovative Technical Architect ♚ Cyber Security Strategist ♞ vCISO | vCIO ♞ Blogger & an Adrenaline junkie... View all posts by Chathura Ariyadasa

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
__cfduid	1 month	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.

Cookie	Duration	Description
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.