The alert windows of CIS should not only show the name of the respective file but the full path name.
E.g. I allowed a rundll.exe that turned out to be an infected file in the TEMP-folder, not the original system file. Without clicking the file name in the alert window one cannot see this.
Like the svchost.exe handling I see this as another leek of CIS. >:-D