The SANS Institute has scanner for the MS GDI vulnerability here. They created one because the MS update site is pretty much useless on this one. MS scans your PC and then gives you advice that doesn't help you to identify exactly where the vulnerable files are. The SANS scanner does. Thanks for the great work, SANS.