interference from fsgk32.exe

We have a problem with the process fsgk32.exe it is since update to client security 11.51 been interfering with a remote admin software we have called PDQ Inventory. When tha software is looking for that .NET 3.51 P1 is installed is fsgk32.exe intering somehow making it impossible for the software to work.

Everything runs fine if we kill fsgk32.exe and we have tried reinstalling after a clean uninstall with the uninstall tool but the problem persists.

Is there anyway to add exceptions to the fsgk32.exe and whatever it does?

Find more posts tagged with

Comments

MarcusH

So our problem was solved by excluding the directory used by the scanner but the info to solve this was oddly found.

No where in the exclusion settings in the policy manager does it state that you need to escape \ characters...

After days of searching i found this post: http://community.f-secure.com/t5/End-point/Using-wildcards-in-exclusions/ta-p/20428

Which solved the problem, there is a quick help right under the Excluded Objects might be good to hint about escaping character there Smiley Wink

Vad

Hello MarcusH,

You may try process exclusion feature as well - exclude PDQ Inventory process(es) from scanning.

If this doesn't help, please, contact support. We'll need fsdiag and scunner debug logs to investigate your issue.

Best regards,

Vad

MarcusH

The inventory scanner is not installed on the clients it is pushed and executed and i have added the files and folders used to exceptions and that made no difference. But turning of the realtime scanner worked so i guess something is wrong with the exceptions.

Frisjo

Hello MarcusH

Can you try to make the exlusion by writing the following: *\\HarddiskVolume*\\Program Files (X86)\\PDQ inventory installation folder\\*

You could also try to just add the name of the executable runned by the software.

Another thing to try on the client could be to disable Real time scanning under Settings in Client security and the uncheck the box at the top saying "Activate real time scanning", By doing this we will know if an exclusion will be able to solve it or if we should try other ways.

Johan

MarcusH

We have added the exeptions to the real time scanning but it has no effect on the problem, also no alert is given that it detects unwanted actions and that for me seems odd if it is normal blocked actions.

etomcat

Hello,

Remote admin type software are all considered potentially dangerous code, due to the risk of unauthorized installation and backdoor access.

Therefore, first you need to enter a real-time-scanning exception for "PDQ Inventory" in the FSAVCS 11.51 software, to let the code run without hinderance.

Best Regards: Tamas Feher, Hungary.