Sergey,

I agree on the uselessness of that detection tool. I've fully patched my system per the Windows update and Office update sites and curently my system has 10 instances of 5 different versions of the GDIPlus file. And I had already deleted two copies that were laying out under the MySetups folder from two dink VFP8 exe setups I'd created.

5.1.3097.0    C:\I386\ASMS\1000\MSFT\WINDOWS\GDIPLUS\GDIPLUS.DLL
5.1.3097.0    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.0.0_x-ww_8d353f13\GdiPlus.dll
5.1.3097.0    C:\Program Files\Microsoft Broadband Networking\gdiplus.dll
5.1.3101.0    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.10.0_x-ww_712befd8\GdiPlus.dll
5.1.3102.1355 C:\temp\VFP9BETA_CD\program files\common files\microsoft shared\vfp\gdiplus.dll
5.1.3102.1355 C:\temp\VFP9BETA_CD\program files\microsoft visual foxpro 9\gdiplus.dll
5.1.3102.1355 C:\Program Files\Common Files\Microsoft Shared\VFP\gdiplus.dll
5.1.3102.2180 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\GdiPlus.dll
6.0.3264.0    C:\Program Files\Microsoft Office\OFFICE11\GDIPLUS.DLL
6.0.3264.0    C:\Program Files\Microsoft Office\Visio2003\OFFICE11\GDIPLUS.DLL

and none of them are the version listed in the bulletin:

http://www.microsoft.com/technet/security/bulletin/MS04-028.mspx


>>
>>And doesn't warn on every occurence of the old version.
>>I've 2 machines here where now bothe variants of the .dll are and
>>the tool doesn't complain...
>
>The MS GDI detection tool is not only useless but also dangerous becase it gives users false sense of security.