Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 200 Source: Microsoft-Windows-Diagnostics-Performance

Level
Description
Windows has shutdown:
     Shutdown Duration : <duration>
     IsDegradation : <state>
     Incident Time (UTC) : <date> <time>.
Comments
 
This event indicates that Windows took an unusually long time to shut down and that might be an indication of a problem. Try to identify if there is any software that has to perform certain tasks before shutting down. A post in a support forum mentioned that some UPS management programs take a long time to exit when the computer shuts down and in some cases they are the culprit for this type of problem.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...