Online Lookup results - what to do?

Online Lookup results - what to do?
I have a bunch of files in my “pending files” section.
So, I submitted them for online lookup (although the notes in Help didn’t suggest that was an obvious step to take. And never mind the fact that I should have first done a “purge” , but Help didn’t suggest that either!)
So, now I have a list of safe and unknown files.
Great! There are over 200 of them!
There seems to be no way to print, copy, export or save this list. There is no way to select all the safe ones and mark them as safe. Or select the unknown and do something with them. It is just a stupid list with two categories safe and unknown.
The online forums are no help explaining what to do.
So what exactly is one supposed to do with this list? Admire it and click on the “Close” button!
This is such a stupid, dead-end process and so badly documented.
I wonder why there is even a pending list - it is almost pointless!
And what a waste of time it has been trying to find out what to do!

RobQQQ Welcome to the forums.

“Pending Files” is for “Clean PC Mode” (Defense+) ONLY. If you switch to a highly reccomended and common Defense+ Setting Safe Mode You will get 0 pending files, and higher/secure security. Since Clean PC Mode assumes all applications on your PC are safe. Safe Mode trains ALL applications and you make the policies and actions, etc. Pending Files is for submitting files to comodo for analysis- Which if the submitted file is malicious it will be added to the black list, AV database, etc.

If you don’t want pending files- Safe Mode is the answer, You can change Defense+ Settings in Defense+\Advanced\Defense+ Settings


Pending files can aid in finding an infection if you ever get infected. If you become infected then you can look at your pending files are see what doesn’t belong. As 3 said switch to safe mode instead. Read the help file system also. Here is a quote.

Paranoid Mode: This is the highest security level setting and means that Defense+ will monitor and control all executable files apart from those that you have deemed safe. The firewall will not attempt to learn the behavior of any applications - even those applications on the Comodo safe list. and will only use your configuration settings to filter critical system activity. Similarly, the firewall will not automatically create ‘Allow’ rules for any executables - although you still have the option to treat an application as ‘Trusted’ at the Defense+ alert. Choosing this option will generate the most amount of Defense+ alerts and is recommended for advanced users that require complete awareness of activity on their system.

Safe Mode: While monitoring critical system activity, the firewall will automatically learn the activity of executables and applications certified as ‘Safe’ by Comodo. It will also automatically create ‘Allow’ rules these activities. For non-certified, unknown, applications, you will receive an alert whenever that application attempts to run. Should you choose, you can add that new application to the safe list by choosing ‘Treat this application as a Trusted Application’ at the alert. This will instruct the firewall not to generate an alert the next time it runs. If your machine is not new or known to be free of malware and other threats as in ‘Clean PC Mode’ then Safe Mode’ is recommended setting for most users - combining the highest levels of security with an easy-to-manage number of Defense+ alerts.

Clean PC Mode: From the time you set the slider to ‘Clean PC Mode’, Defense+ will learn the activities of the applications currently installed on the computer while all new executables introduced to the system are monitored and controlled. This patent-pending mode of operation is the recommended option on a new computer or one that the user knows to be clean of malware and other threats. From this point onwards Defense+ will alert the user whenever a new, unrecognized application is being installed. In this mode, the files in ‘My Pending Files’ are excluded from being considered as clean and are monitored and controlled.

‘Installation Mode: Installer applications and updaters may need to execute other processes in order to run effectively. These are called ‘Child Processes’. In ‘Paranoid’, Safe’ and ‘Clean PC modes’, Defense+ would raise an alert every time these child processes attempted to execute because they have no access rights. Whilst in one of these 3 modes, Comodo Firewall Pro will make it easy to install new applications that you trust by offering you the opportunity to temporarily engage ‘Installation Mode’ - which will temporarily bestow these child processes with the same access rights as the parent process - so allowing the installation to proceed without the usual alerts.

If you are installing a new, unknown application. Defense+ will alert you with a pop-up notification and, as you want to allow this application to continue installing, you should select ‘Treat this application as an Installer or Updater’ at the Defense+ alert. You will subsequently see the following:

Firstly, thanks very much nd Vettetech for the comprehensive replies. As this was a new machine when Comodo was first installed, and I needed to find out/learn what was happening, I decided Clean PC Mode was the right one. (But nowhere did it say I would get caught up with pending files and wouldn’t be able to find out the right sequence to deal with them !)

I have also discovered (because I had no option but to “Close” the pending files lookup window) that the next screen says:
“There are unknown files in your list. Would you like to submit them to Comodo for analysis? Yes/NO”
And if you say no, the next screen says
“The safe files have been moved to your local Comodo certified database.”

That’s pretty self explanatory! But it would have saved so much time if these messages were instead placed at the bottom of the file list, not in the [unseen] next screen!!!

Soory - that should have read
“Firstly, thanks very much to 3xist and Vettetech for the comprehensive replies”