Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 3 Source: Kernel-EventTracing

Session "ReadyBoot" stopped due to the following error: 0xC0000188
According to the time stamp there was an event 4 source Kernel-EventTracing at the same time. The general details were: The maximum file size for session "ReadyBoot" has been reached. As a result events might be lost (not logged) to file "C:\Windows\Prefetch\ReadyBoot\ReadyBoot.etl". The maximum files size is currently set to 20971520 bytes.

Another instance of this event "Session "Microsoft Security Essentials OOBE" stopped due to the following error: 0xC000000D" happened after a total lock-up of my system. I had to do a hard reboot in order to regain access.
In my case the error was: Session "Microsoft Security Essentials OOBE" stopped due to the following error: 0xC000000D"

You will need to navigate to: C:/program data/microsoft/microsoft security essentials/support/ then locate the file: "MSSEOOBE.etl" and simply delete it.

Once you restart the computer MSE will recreate it and that should resolve the issue.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.