©ASUSTEK COMPUTER INC. ALL RIGHTS RESERVED.

rtfmoz · ‎09-19-2025

The hd.sys driver used in GameFirst is now being flagged as insecure by Microsoft.

This is NOT a false positive. The driver uses ring 0 kernel access which is no longer considered secure. Microsoft issued warnings to developers a year ago to update their drivers as this will be flagged as insecure in future updates. This time has come. Microsoft defender is now flagging this driver as two separate vulnerabilities shown below. It is time for ASUS to release Game First updates to either remove this is driver or update it to use correct low level system access.

https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=Trojan%3AWin32%2F...
http://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=VulnerableDriver%3...

In order to continue to continue to use this driver users have to lower the security posture of Windows 11 by whitelisting these threats on the entire device and not just the driver.

ASUS, please address this issue as a matter of priority. People who use your software should not have to reduce their security to do so.

kurokin1052 · ‎09-28-2025

Me too, I can't use Game First IV from 2 days ago, please revolve it, thanks.

SinOjos · 4 weeks ago

Shows how incompetent & uncaring ASUS really is. We spend tens of thousands of dollars, over decades. Yet, they do not care. No customer loyalty at all.

rtfmoz · 4 weeks ago

I am now getting constant reminders of these threats from Microsoft Defender. I have had to remove the Gamefirst VI software from my system now to stop getting these security vulnerability alerts. Even if you tell it to allow on device they continue to come back as ASUS software appears to be playing whack a mole with defender and redeploying the problematic hd.sys driver.

So ASUS what is the plan for this? What are you going to do about it? Are we going to hear anything from anyone on this?

GameFirst VI v6.1.30.x Driver Vulnerabilities