This is what I've done and it works pretty well. You can usually filter out just the "bad" session IDs pretty easily and recover a more or less chronological explanation of what happened.