J
Jack
I found a file called'gdiplus.dll' in my pc today.Is there something
wrong?Can I delete it?Thanks!
wrong?Can I delete it?Thanks!
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
P
Peter Foldes
Guess what. If you have that many gdiplus.dll"s in that many locations then I would suggest that you do a complete scan for malware
J
Joe Morris
Jack said:I found a file called'gdiplus.dll' in my pc today.Is there something
wrong?Can I delete it?Thanks!
GDIPLUS.DLL was updated by Security Bulletin MS08-052. The file itself can
be installed by applications both from Microsoft and from third-party
suppliers; if you find the file in an application's directory (or can
determine that a copy in the Windows folder tree was installed by a
particular application) you should contact the vendor and ask whether their
product's installation and use of the file represents a security
vulnerability. From the FAQ for MS08-052:
No, this security update replaces and re-registers the affected componentIf third-party applications use or install the affected gdiplus.dll
component, could I still be vulnerable even after I have installed all
required Microsoft security updates?
provided with the operating system. If third party applications follow the
recommended best practices for using a shared component as a side-by-side
assembly then they are also not affected. Customers are potentially at risk
if third party applications do not follow the recommended best practices and
instead redistribute an old version of gdiplus.dll with their application.
Customers who wish to manually check for the registered affected files can
compare applications installed on their systems against those listed in
Microsoft Knowledge Base Article 954593. Customers are encouraged to contact
their third party solutions developer for additional information.
If you've installed MS08-052 you'll probably see several copies of the file
in folders below C:\WINDOWS\WINSXS.
Looking at my XP system (I don't have a Vista system immediately at hand) I
found thirteen copies, including ones in folders belonging to MSOFFICE,
Dreamweaver, Symantec Endpoint Protection, Acrobat, and Illustrator.
Links:
Security bulletin MS08-052:
http://www.microsoft.com/technet/security/bulletin/ms08-052.mspx
KB954593: http://support.microsoft.com/kb/954593
Joe Morris
J
Jack
Your answer is perfect.Thank you for your help.
Joe Morris said:GDIPLUS.DLL was updated by Security Bulletin MS08-052. The file itself
can be installed by applications both from Microsoft and from third-party
suppliers; if you find the file in an application's directory (or can
determine that a copy in the Windows folder tree was installed by a
particular application) you should contact the vendor and ask whether
their product's installation and use of the file represents a security
vulnerability. From the FAQ for MS08-052:
No, this security update replaces and re-registers the affected component
provided with the operating system. If third party applications follow the
recommended best practices for using a shared component as a side-by-side
assembly then they are also not affected. Customers are potentially at
risk if third party applications do not follow the recommended best
practices and instead redistribute an old version of gdiplus.dll with
their application. Customers who wish to manually check for the registered
affected files can compare applications installed on their systems against
those listed in Microsoft Knowledge Base Article 954593. Customers are
encouraged to contact their third party solutions developer for additional
information.
If you've installed MS08-052 you'll probably see several copies of the
file in folders below C:\WINDOWS\WINSXS.
Looking at my XP system (I don't have a Vista system immediately at hand)
I found thirteen copies, including ones in folders belonging to MSOFFICE,
Dreamweaver, Symantec Endpoint Protection, Acrobat, and Illustrator.
Links:
Security bulletin MS08-052:
http://www.microsoft.com/technet/security/bulletin/ms08-052.mspx
KB954593: http://support.microsoft.com/kb/954593
Joe Morris
J
Jack
Your answer is helpful.Thank you for your help!
Theory of Everything said:no... you are wrong.
They are legit.