Since the latest signature update, Windows Defender recognizes the AquaComputerService.sys file as a threat on some systems.



This is not a virus. This file is a driver that aquasuite uses for hardware monitoring (e.g. CPU temperature). The same driver is also used by numerous other far more popular programs. Windows Defender classifies the driver as a potential threat as it could be misused by malware. For this to work, the malware would have to be executed with admin rights, which would give it full access to the system anyway.

We are already working on a solution by having a customized version of the driver certified by Microsoft. However, this is a complex process and will therefore take some time.

This theoretical attack scenario exists since a long time. If you don't see a problem with this, you can define the driver as an exception. Alternatively, you can deactivate all hardware monitor modules in the aquasuite via the aquasuite -> service tab. The corresponding driver will then no longer be loaded. System data can still be transferred to the aquasuite via HWiNFO or AIDA64 if required.

- - - Update - - -

At the moment it seems that with the signature update KB2267602 (Version 1.423.350.0) Windows Defender no longer flags this driver as a threat. This may be a reaction to the fact that many programs were affected by this classification.