I want to make sure this log doesn't indicate any intrusion or malicious attempt. Its popped up quite a bit, with some variations, (sometimes a group is being deleted, new user added, removed, etc) but the basic info remains relatively consistent.
I'm assuming the Security ID being "SYSTEM" and the Logon ID being 0x3e7 pretty much confirms it's nothing to be worried about. And yes, JJS is my computer/network name (minus the $ added sometimes ), so that's another good sign.
Just want to double check with some experts here.
Thanks! Here's two quick snapshots: