We really need someone who knows the comodo firewall - I have just checked my AIS settings and svchost is under system

I have just revisited the CF log as it shows open ports and all I found was this one legitimate item

[HKLM~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
“AllowInboundEchoRequest”= 1 (0x1)

It is a legitimate windows process however, it can be disabled http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/hnw_icmp_disable.mspx?mfr=true