• Introduction To Comodo Cleaning Essentials
  • System Requirements
  • Downloading Comodo Cleaning Essentials
  • Starting Comodo Cleaning Essentials
  • The Main Interface
• Scanning Your System
  • Smart Scan
  • Full Scan
  • Custom Scan
  • Comparison Of Scan Types
• Configuring Comodo Cleaning Essentials
• The Tools Menu
  • Managing Quarantined Items
  • Managing Trusted Vendors
  • Importing Antivirus Database
  • Checking For Software Updates
• Introduction To KillSwitch
  • Starting KillSwitch
    • From The Comodo Cleaning Essentials Interface
    • From The Folder Containing Comodo Cleaning Essentials Files
    • Replacing Windows Task Manager With KillSwitch
  • The Main Interface
    • The System Tray Icon
  • Viewing And Handling Processes, Applications And Services
    • Processes
      • Stopping, Starting And Handling The Processes
      • Viewing Properties Of A Process
    • Applications
      • Handling The Applications
    • Services
      • Stopping, Starting And Deleting The Services
      • Viewing The Properties Of A Service
  • Viewing And Handling Network Connections And Usage
    • Network Connections
      • Inspecting And Closing Network Connections
    • Network Utilization
  • Configuring KillSwitch
  • KillSwitch Tools
    • Viewing System Information
    • Repairing Windows Settings And Features
    • Analyzing Program Usage
    • Searching For Handles Or DLLs
    • Verifying Authenticity Of Applications
    • Boot Logging And Handling Loaded Modules
    • Running Programs From Command Line Interface
    • Viewing KillSwitch Logs
    • Finding Process Of The Active Window
  • Managing Currently Logged-in Users
  • Help And About Details
• Introduction To Autorun Analyzer
  • Starting Autorun Analyzer
    • From The Comodo Cleaning Essentials Interface
    • From The KillSwitch Interface
    • From The Folder Containing Comodo Cleaning Essentials Files
  • The Main Interface
  • Viewing And Handling Autorun Items
    • Handling Autorun Items
    • Filtering Entries Based On Categories
    • Viewing Autorun Items For Other User Accounts
  • Help And About Details
• Help And About Details
  • Help
  • About
• Using The Command Line Interface
  • Running A Smart Scan From The Command Line Interface
  • Running A Custom Scan From The Command Line Interface
  • Running A Virus Database Update Task From The Command Line Interface
  • Viewing Help
• About Comodo

Configuring Comodo Cleaning Essentials

CCE can be configured according to user preferences by clicking the 'Options' from the title bar. You can manage various functions such as scanning suspicious MBR entries, connection to CAMAS (Comodo Automated Malware Analysis System) for submitting suspicious files and more.

To access the Options interface, click 'Options' from the title bar controls.

MBR Options

• Scan for suspicious MBR modifications - When selected, CCE will automatically scan MBR (master boot record) for unknown or suspicious changes made to it.

• Report all MBR modifications- When selected, CCE will record MBR modifications, if any, in the log file.

Virus Scanner Settings

• Release any kernel hooks before the scan - When selected, hooked kernel hooks will be released before any scanning process. This option is for advanced users only. Unhooking kernel hooks will deactivate any other security products installed in your system and may impair the stability of your system and/or can incur permanent data loss. Select this option only if you are an advanced user and have knowledge on the risks of the process.

• Heuristics Scanning/Level - CCE employs various heuristic techniques to identify previously unknown viruses and Trojan horses. 'Heuristics' describes the method of analyzing the code of a file to ascertain whether it contains code typical of a virus. If it is found to do so then the application recommends it for quarantine. Heuristics is about detecting virus-like behavior or attributes rather than looking for a precise virus signature that matches a signature on the virus blacklist.

This is a quantum leap in the battle against malicious scripts and programs as it allows the scan engine to 'predict' the existence of new viruses - even if it is not contained in the current virus database.

The drop-down menu allows you to select the level of Heuristic scanning from the four levels:

• Off - Selecting this option disables heuristic scanning. This means that virus scans only uses the 'traditional' virus signature database to determine whether a file is malicious or not.

• Low- 'Lowest' sensitivity to detecting unknown threats but will also generate the fewest false positives. This setting combines an extremely high level of security and protection with a low rate of false positives. Comodo recommends this setting for most users.

• Medium - Detects unknown threats with greater sensitivity than the 'Low' setting but with a corresponding rise in the possibility of false positives.

• High - Highest sensitivity to detecting unknown threats but this also raises the possibility of more false positives too.

• Do not scan files larger than - This box allows you to set a maximum size (in MB) for the individual files to be scanned during manual scanning. Files larger than the size specified here, are not scanned. Default = 40 MB

CAMAS Settings

CAMAS - CAMAS (Comodo Automated Malware Analysis System) is a cloud based analysis system where the submitted files will undergo a thorough inspection by our cloud virus scanning and behavior monitoring systems to try to establish whether they contain malicious code. If the file exhibits malicious behavior, it will be added to the global blacklist. Once the global lists have been updated, any other users that have the same file on their machines will receive an almost instant verdict as to the files safety.

• Scan unknown processes in memory with CAMAS - When this check box is selected, any unknown process or processes in memory will be automatically submitted to CAMAS.

• CAMAS timeout - This boxallows you to set the time (in seconds) for which the files will be submitted to CAMAS. If the timeout is exceeded then CCE will stop attempting to contact the CAMAS servers and it is possible that no result will be returned to you.

Miscellaneous Settings

• Create a Windows restore point before performing the scan - When selected, CCE will create a Windows restore point before embarking on the scanning process. Should problems occur after wards, you will be able to restore your system to the state just before your started the scan.

• Log level - Thisdrop downbox allows you to select options for CCE event logs. There are two main types of log file - KillSwitch logs and CCE (scan) logs . The following options apply to both types of log:

• Disable - If you select this option, CCE will not create any log files.

• Threats - If this option is selected, CCE will generate log reports containing files that it has detected as threats.

• All - If this option is selected, CCE will generate log reports for all files that it have been scanned and will record all events. The log file will contain system information, cleanup results, details about the file path, whether it is malicious, the action taken and whether the action has been implemented.

Logs are saved in the folder <Folder containing CCE files>\Data\CCE\Logs:

To view the logs:

• Double-click or right click and open the Logs folder. The folder will contain logs stored as time stamped text files.

Or

• Click Tools > Browse Logs...

 

• Select Language - CCE is available in several languages and the default language is US English. If you want to change the language, select your language from the drop-down menu.

• Click 'OK' for the settings to take effect .