artek

Level 4
I've always wondered how many vendors track files spawned by script like this and just default block all files spawned by it at a certain threshold. It wouldn't be a hard thing to add to a security suite and you'd always get a high detection rate. Sentinel One is just transparent and terminates the script.
 

Umbra

Level 25
Verified
Might not be exactly Pcmatic..Pc matic is a white list based default deny (Default block 100/100)
i think, since the enviornment around is malicious continuosly, so these A.I based av generally go with full force;) upto certain time
i know what is PCmatic, my point was what is the difference between strict whitelisting and an "Ai" with algorithm set to block everything unknown...not much.