We're test driving Enterprise Inspector and at the moment I have more than 250 clients sending events to EEI, off course there's a lot of noise and I'm adding exclusions for normal application behaviour.
I'm noticing that a lot of my exclusions do not work and the events that I want to exclude are just showing up again.
Example exclusion for Process from SysWOW64 started by unpopular process [a0416]
And still the event keeps showing up as warning:
The signer and computernames match up, so I don't see any reason why... Any way to troubleshoot this?