diff --git a/windows/security/threat-protection/windows-defender-exploit-guard/evaluate-controlled-folder-access.md b/windows/security/threat-protection/windows-defender-exploit-guard/evaluate-controlled-folder-access.md
index 667c554a43..958cc3e6d8 100644
--- a/windows/security/threat-protection/windows-defender-exploit-guard/evaluate-controlled-folder-access.md
+++ b/windows/security/threat-protection/windows-defender-exploit-guard/evaluate-controlled-folder-access.md
@@ -49,10 +49,11 @@ You can also use Group Policy, Intune, MDM, or System Center Configuration Manag
 
 The following controlled folder access events appear in Windows Event Viewer.
 
-Event ID | Description
-5007     | Event when settings are changed
-1124     | Audited controlled folder access event
-1123     | Blocked controlled folder access event
+| Event ID | Description |
+| --- | --- |
+| 5007     | Event when settings are changed |
+| 1124     | Audited controlled folder access event |
+| 1123     | Blocked controlled folder access event |
 
 ## Customize protected folders and apps
 
@@ -63,4 +64,4 @@ See [Protect important folders with controlled folder access](controlled-folders
 ## Related topics
 - [Protect important folders with controlled folder access](controlled-folders-exploit-guard.md)
 - [Evaluate Windows Defender ATP](evaluate-windows-defender-exploit-guard.md)
-- [Use audit mode](audit-windows-defender-exploit-guard.md)
\ No newline at end of file
+- [Use audit mode](audit-windows-defender-exploit-guard.md)