interference from fsgk32.exe

Aspirant

interference from fsgk32.exe

We have a problem with the process fsgk32.exe it is since update to client security 11.51 been interfering with a remote admin software we have called PDQ Inventory. When tha software is looking for that .NET 3.51 P1 is installed is fsgk32.exe intering somehow making it impossible for the software to work.

 

Everything runs fine if we kill fsgk32.exe and we have tried reinstalling after a clean uninstall with the uninstall tool but the problem persists.

 

Is there anyway to add exceptions to the fsgk32.exe and whatever it does?

1 ACCEPTED SOLUTION

Accepted Solutions
Aspirant

Re: interference from fsgk32.exe

So our problem was solved by excluding the directory used by the scanner but the info to solve this was oddly found.

 

No where in the exclusion settings in the policy manager does it state that you need to escape \ characters...

 

After days of searching i found this post: http://community.f-secure.com/t5/End-point/Using-wildcards-in-exclusions/ta-p/20428

 

Which solved the problem, there is a quick help right under the Excluded Objects might be good to hint about escaping character there Smiley Wink

View solution in original post

6 REPLIES 6
Superuser

Re: interference from fsgk32.exe

Hello,

 

Remote admin type software are all considered potentially dangerous code, due to the risk of unauthorized installation and backdoor access.

 

Therefore, first you need to enter a real-time-scanning exception for "PDQ Inventory" in the FSAVCS 11.51 software, to let the code run without hinderance.

 

Best Regards: Tamas Feher, Hungary.

Aspirant

Re: interference from fsgk32.exe

We have added the exeptions to the real time scanning but it has no effect on the problem, also no alert is given that it detects unwanted actions and that for me seems odd if it is normal blocked actions.

Highlighted
Supporter

Re: interference from fsgk32.exe

Hello MarcusH 

 

Can you try to make the exlusion by writing the following: *\\HarddiskVolume*\\Program Files (X86)\\PDQ inventory installation folder\\*  

 

You could also try to just add the name of the executable runned by the software. 

 

Another thing to try on the client could be to disable Real time scanning under Settings in Client security and the uncheck the box at the top saying "Activate real time scanning", By doing this we will know if an exclusion will be able to solve it or if we should try other ways.

 

Br

Johan

Aspirant

Re: interference from fsgk32.exe

The inventory scanner is not installed on the clients it is pushed and executed and i have added the files and folders used to exceptions and that made no difference. But turning of the realtime scanner worked so i guess something is wrong with the exceptions.

F-Secure
F-Secure

Re: interference from fsgk32.exe

Hello MarcusH,

 

You may try process exclusion feature as well - exclude PDQ Inventory process(es) from scanning.

If this doesn't help, please, contact support. We'll need fsdiag and scunner debug logs to investigate your issue.

 

Best regards,

Vad

Aspirant

Re: interference from fsgk32.exe

So our problem was solved by excluding the directory used by the scanner but the info to solve this was oddly found.

 

No where in the exclusion settings in the policy manager does it state that you need to escape \ characters...

 

After days of searching i found this post: http://community.f-secure.com/t5/End-point/Using-wildcards-in-exclusions/ta-p/20428

 

Which solved the problem, there is a quick help right under the Excluded Objects might be good to hint about escaping character there Smiley Wink

View solution in original post