That's a policy check... meaning the value is defined (as global admin) under:
Manage > Policy.
That script maps to the:
Audit Detailed Tracking
Policy setting within the various Windows OS's Policy's.
If a target doesn't match what you've set (or the default if you've not changed it) then you will get a vulnerable result when you run any scans that have the Windows > Security Policy/Options category selected.
I hope that helps!