Thank you for your patience.
The cleanpc mode was designed to train D+ soon after installation in
order to have all existing app automatically learned.
Yes, I understand the concept. But not the execution.
OK, even though the help file suggests not to, I gave the Avira updater the ‘installer/updater’ profile instead of ‘custom’, and it appears now that the avira files that are updated every hour are NOT added to the pending list. That was the behaviour I was looking for.
I occurs to me that ‘cleanPC’ mode is NOT a good mode for a new pc, so I’m now using ‘safe mode’ instead.
IMO, it is silly to use cleanPC on a new PC because you are just about to add all your software! All you’ll end up with a ‘my own files’ whitelist with thousands of files in it! The better time to switch to cleanPC is when you’ve finished installing all your software, and want comodo to learn its behaviour without prompting, but want to be prompted about all new executables that you haven’t actively installed yourself.
I still don’t know what ‘remove’ does to pending files. There are also other issues, like why all programs with a security policy have ‘no’ set in the protection settings by default; surely you want your safe programs to be protected against injection and modification??
But to be honest I no longer care. This program is a mess. Firewalls are notorious for being difficult to set-up, but I have never had to spend an entire day doing it and still have no idea how this program is actually protecting my computer!! It’s insane! Outpost has thousands more configuration settings than comodo, yet I had it set-up and working in about three hours, and more importantly I knew exactly what it was doing and why, and how it was protecting my computer.
Thanks so much for your patience and help yesterday, but I’m still at a loss. I’ll leave comodo running for a day or two and see what happens, but I suspect that it will be uninstalled if I can’t work out how it is actually protecting my computer.