I ran the comment from the channel owner through an online translator:Only the files on the desktop were affected.
I have several folders amongst which the desktop added to Protected Data Folders. That should have stopped the ransomware from deleting files on the desktop. It is unfortunate that Comodo does not add the default data folders of Windows to the Protect Data Folders by default.
I watched the video and thought it was fake but no, now I can see that it is a bad CIS configuration... but then, [at]EricJH, by your explanation it bring me several doubts and questions:
1º You said that only the desktop folder is not protected by default again a sandboxed malware unless you add the the desktop to Protected Data Folders (Hips component). Then, by default the standard windows folders like Documents, Music, Pictures, etc... are protected by default again a sandboxed malware or you need to added to the Protected Data Folders?
2º Any other file/folders in others paths (same/other harddisk, usb memory, network path) are protected by default or not (I thought so)?.
3º The custom protection for the Protected Data Folders only works when the HIPS component is enabled or not?
Sorry if this isnt's a place for help-questions but you answer brought me with many doubts...