Log Name:      Security
Source:        Microsoft-Windows-Security-Auditing
Date:          10/27/2009 9:52:10 PM
Event ID:      4719
Task Category: Audit Policy Change
Level:         Information
Keywords:      Audit Success
User:          N/A
Computer:      dcc1.Logistics.corp
Description:   
System audit policy was changed.
Subject:
	Security ID:		S-1-5-21-1135140816-2109348461-2107143693-500
	Account Name:		Administrator
	Account Domain:		LOGISTICS
	Logon ID:		0x1806d9
Audit Policy Change:
	Category:		System
	Subcategory:		Security State Change
	Subcategory GUID:	{0CCE9210-69AE-11D9-BED3-505054503030}
	Changes:		Success Added, Failure added
===========================
Description template stored in adtschema.dll:
===========================
System audit policy was changed.

Subject:
	Security ID:		%1
	Account Name:		%2
	Account Domain:		%3
	Logon ID:		%4

Audit Policy Change:
	Category:		%5
	Subcategory:		%6
	Subcategory GUID:	%7
	Changes:		%8