Endpoint Manager

• Introduction To Comodo Client Security
  • Special Features
  • System Requirements
  • Install Comodo Client Security
  • Starting Comodo Client Security
  • The Main Interface
    • The Home Screen
    • The Tasks Interface
    • The Widget
    • The System Tray Icon
  • Understanding Security Alerts
• General Tasks – Introduction
  • Scan And Clean Your Computer
    • Run A Quick Scan
    • Run A Full Computer Scan
    • Run A Rating Scan
    • Run A Custom Scan
      • Scan A Folder
      • Scan A File
      • Create, Schedule And Run A Custom Scan
  • Instantly Scan Files And Folders
  • Processing Infected Files
  • Manage Virus Database And Program Updates
  • Manage Quarantined Items
  • View CCS Logs
    • Antivirus Logs
      • Filtering Antivirus Logs
    • Viruscope Logs
      • Filtering Viruscope Logs
    • HIPS Logs
      • Filtering HIPS Logs
    • Containment Logs
      • Filtering Containment Logs
    • Firewall Logs
      • Filtering Firewall Logs
    • Website Filtering Logs
      • Filtering Website Filtering Logs
    • Alerts Logs
      • Filtering Alerts Displayed Logs
    • Tasks
      • Filtering Tasks Launched Logs
    • File List Changes Logs
      • Filtering File List Changes Logs
    • Trusted Vendors List Changes Logs
      • Filtering Trusted Vendors List Changes Logs
    • Configuration Changes
      • Filtering Configuration Changes Logs
    • Device Control Logs
      • Filtering Device Control Logs
  • View Active Process List
  • View Active Internet Connections
• Firewall Tasks – Introduction
  • Allow Or Block Internet Access To Applications Selectively
  • Stealth Your Computer Ports
  • Manage Network Connections
  • Stop All Network Activities
  • Advanced Firewall Settings
• Containment Tasks - Introduction
  • Run An Application In The Container
  • Reset The Container
• Advanced Tasks - Introduction
  • Create A Rescue Disk
    • Downloading And Burning Comodo Rescue Disk
  • Submit Files
  • Identify And Kill Unsafe Running Processes
  • Remove Deeply Hidden Malware
  • Manage CCS Tasks
• Advanced Settings
  • General Settings
    • Customize User Interface
    • Configure Program And Virus Database Updates
    • Log Settings
    • Manage CCS Configurations
      • Comodo Preset Configurations
      • Importing/Exporting And Managing Personal Configurations
  • Security Settings
    • Antivirus Settings
      • Real-time Scanner Settings
      • Scan Profiles
      • Exclusions
    • Advanced Protection Settings
      • HIPS Behavior Settings
      • Active HIPS Rules
      • HIPS Rule Sets
      • Protected Objects
        • Protected Files
        • Blocked Files
        • Protected Registry Keys
        • Protected COM Interfaces
        • Protected Data Folders
      • HIPS Groups
        • Registry Groups
        • COM Groups
      • Comodo Containment
        • The Container - An Overview
        • Unknown Files - The Scanning Processes
      • Configuring Containment Settings
      • Configuring Rules For Auto-Containment
      • Viruscope
      • Device Control Settings
    • Firewall Settings
      • Firewall Behavior Settings
      • Application Rules
      • Global Rules
      • Firewall Rule Sets
      • Network Zones
        • Network Zones
        • Blocked Zones
      • Port Sets
      • Website Filtering
        • Creating And Modifying Website Filtering Rules
        • Defining And Modifying Website Categories
    • Manage File Rating
      • File Rating Settings
      • File Groups
      • File List
      • Trusted Files
      • Unrecognized Files
      • Submitted Files
      • Trusted Vendors List
• Appendix 1 CCS How To... Tutorials
  • Enable / Disable AV, Firewall, Auto-Containment And Viruscope Easily
  • Set Up The Firewall For Maximum Security And Usability
  • Block Internet Access While Allowing Local Area Network (LAN) Access
  • Setting Up HIPS For Maximum Security And Usability
  • Create Rules For Auto-Containing Applications
  • Running An Instant Antivirus Scan On Selected Items
  • Creating An Antivirus Scanning Schedule
  • Run Untrusted Programs Inside The Container
  • Run Browsers Inside The Container
  • Restore Incorrectly Quarantined Item(s)
  • Submit Quarantined Items To Comodo For Analysis
  • Enable File Sharing Applications Like BitTorrent And Emule
  • Block Any Downloads Of A Specific File Type
  • Disable Auto-Containment On A Per-application Basis
  • Switch Off Automatic Antivirus And Software Updates
  • Suppressing CCS Alerts Temporarily While Playing Games
  • Control External Device Accessibility
• Appendix 2 - Comodo Secure DNS Service
  • Router - Manually Enabling Or Disabling Comodo Secure DNS Service
  • Windows XP - Manually Enabling Or Disabling Comodo Secure DNS Service
  • Windows 7 / Vista - Manually Enabling Or Disabling Comodo Secure DNS Service
• About Comodo Security Solutions

View Active Process List

The 'Active Process List' interface displays all currently active processes that are running on your PC and the parent applications of those processes. By tracing an application's parent process, the 'Sandbox' can detect whether a non-trusted application is attempting to spawn a trusted application and thus deny access rights for that trusted application. This system provides the very highest protection against Trojans, malware and rootkits that try to use trusted software to launch an attack.

The interface also allows you to perform an online lookup on a process, submit an application to Comodo for analysis, kill unwanted processes and more.

To view Active Process list

• Open the General Tasks interface and click 'View Active Processes'.

 

 The 'Active Processes List' screen will be displayed.

Column Descriptions

• Application – Displays the names of applications that are currently running.

• PID – Process Identification Number.

• Company – Displays the name of the software developer.

• User Name – The name of the user that started the process.

• Restriction – Displays the level of containment selected for the program.

• Rating – Displays the rating of the application, whether trusted or unknown. 

Right-click on any process to:

• Show full path: Displays the location of the executable in addition to it's name.

• Show Contained Only:  Will only show programs that are running inside the container.

Tip: You can open the Active Process List screen that shows only the processes that are currently running inside the containment by clicking the process button from the CCS widget. Refer to the section Viewing Active Processes list of Contained Applications for more details.

• Add to Trusted Files: The selected unknown program is added to the CCS File List and given a status of 'Trusted'. Refer to the section File List for more details.

• Online Lookup: Conducts a look-up of the program in Comodo's global blacklists and whitelists. The results will tell you whether the file is clean, malicious or unknown.

• Submit: The selected application will be sent to Comodo for analysis.

• Jump to Folder: The folder containing the executable file of the application will open.

• Show Activities: Opens the Process Activities List dialog. The Process Activities dialog will display the list activities of the processes run by the application. The 'Show Activities' option is available only if Viruscope is enabled under Advanced Settings > Advanced Protection > Viruscope.
  

Clicking the 'More' button at the bottom of the screen will open the Comodo KillSwitch application – an advanced system monitoring tool that allows users to quickly identify, monitor and terminate any unsafe processes that are running on your system.

If KillSwitch is not yet installed, clicking this button will prompt you to download the application. Refer to the section Identify and Kill Unsafe Processes for more details.

Viewing Active Processes list of Contained Applications

CCS allows you to view only the processes initiated by the applications that are running inside containment, by clicking a shortcut from the CCS widget. These applications include:

• Auto-Containment - Applications that are run inside the containment as per the rules defined for them or by default containment rules. Refer to the section 'Configuring Rules for Auto-Containment' for more details on defining auto-containment rules.

• Run Virtual - Applications that are selected and run in Containment. Refer to 'Run an Application in the Container' for more details.

• Applications that are run inside the containment using the context sensitive menu - Click here for more details.

• Running browsers inside the containment from Widget - Click here for more details.

• Drag-and-drop applications on to CCS Home Screen - Click here for more details.

• Programs that are added manually - Refer to the section 'Configuring Rules for Auto-Containment' for more details.

To view Active Process list of contained applications

• Click the first box in the second row in the CCS Widget.

The Active Processes List (Contained Only) screen will be displayed.