Hacktool in AquaComputerService.sys

Willock

Newbie

Hacktool in AquaComputerService.sys

Dienstag, 11. März 2025, 10:30

I woke up to this popup this morning:

Wth is this, AquaComputer? I didn't spend £200 on an overpriced reservoir to get a virus!
Edit: Turns out a bunch of software using Winring0 are getting these flagged with the latest Windows Defender update. Including stuff like Fan Control and RGB Software. So potentially nothing to worry about?

Dieser Beitrag wurde bereits 1 mal editiert, zuletzt von »Willock« (11. März 2025, 10:43)

Shoggy

Sven - Admin

Dienstag, 11. März 2025, 12:29

Yes, it is a well known false positive.

You can define the file as an exception or alternatively disable hardware monitoring in the aquasuite. In this case, this driver will not be loaded.

Stephan

Administrator

Mittwoch, 12. März 2025, 11:12

Until now we have a used a open source driver for communication with hardware monitoring chips. It loooks like this dirver has some security issues which needs to be solved.
We are currently working at a new driver but after we have finished this Kernel-Driver it needs to be certified by Microsoft. So this will take some time.

Kernel-Driver have high requirements for security and the process to sign them and certify these drivers with Microsoft takes much more afford than Software. That's why many companys are using drivers that are available and also used this one.

Hacktool in AquaComputerService.sys

Hacktool in AquaComputerService.sys

Ähnliche Themen