PDFs keeping you folders locked from editing?

We’ve been suffering from an issue where PDF files will ‘hold’ the folder open and we can’t rename folders when we want to.  In googling up the problem, we aren’t alone.

This appears to be the fix at this time — mind you — we’ve seen this on any version of servers and any version of workstations so it doesn’t appear to be related to any particular SMB version.

Turn this off by going to ORGANIZE > FOLDER AND SEARCH OPTIONS >VIEW (tab) … and then tick “Always show icons, never thumbnails“. Click Apply/OK and you’re done.



Fixing up WSUS on SBS 2011-

If you have Windows 8.1 or server 2012 R2 machines behind a WSUS 3.0 (SBS 2011) you’ll need to do two things to ‘fix’ it up.

Thing one.  Run a SQL script to make the machines not be listed as Windows 6.

The key steps are here:


Launch SQL manager with a run as command.

Enter \\.\pipe\MSSQL$MICROSOFT##SSEE\sql\query to get into the WSUS SQL database.

Now open a SQL query window and cut and paste the following:

UPDATE [SUSDB].[dbo].[tbComputerTargetDetail]
SET [OSDescription] = ‘Windows 8.1′
WHERE [OSMajorVersion] = ‘6’
AND [OSMinorVersion] = ‘3’
AND [OldProductType] = ‘1’
AND ([OSDescription] <> ‘Windows 8.1′ or [OSDescription] IS NULL)

Choose the SUS database and click on execute.  It should say that it worked on 2 rows.

Now do the same for the following commands:

UPDATE [SUSDB].[dbo].[tbComputerTargetDetail]
SET [OSDescription] = ‘Windows Server 2012 R2′
WHERE [OSMajorVersion] = ‘6’
AND [OSMinorVersion] = ‘3’
AND [OldProductType] <> ‘1’
AND ([OSDescription] <> ‘Windows Server 2012 R2′ or [OSDescription] IS NULL)

Next ensure you have the following hotfix installed:


You’ll need to reboot the server.

Now got to the Windows 8.1 and 2012 r2 machines that may be having difficulty checking in with the server and delete the software distribution folder (it’s located under c:\windows).  You may need to reboot the Win8’s or turn off the Windows update service.

Now your 8.1 should list themselves as 8.1’s in the WSUS gui.

Helping out Handy Andy

I keep forgetting to post this, and it’s also a reminder to myself to go get my credit card out and donate.

http://www.gofundme.com/mc64ns I remember the first time I met Handy Andy in person, it was back in Charlotte, North Carolina and he happed to be at the North Carolina Microsoft office for Exchange training.  We happened to know that like a day later he would officially be a SBS MVP so we convinced him to ditch the Exchange training and come with us for SBS training.

Andy is one of those guys that is everywhere and into everything.  He may not be up front in front of the crowd, but he’s in the background organizing everything.

So here’s to beating this thing and helping him beat not only the disease but the financial worry as well.

So I’m going to donate right after I post this, I’ll urge you to do so as well!

Heads up on issue with client backup on Essentials r2


After installing KB3023562 [MS15-010 – the OTHER font update in this month’s kernel update bundle] update on the clients, Essentials R2 fails on restoring a client backup.

Alerting Microsoft/in the process of opening up a support case, but if you are running Essentials or Essentials role on 2012 R2 – be aware with a reported side effect with KB3023562 installed on the clients.  Removing that update from the clients (currently reported on 7 and 8.1) will make the client restore work again.

Remember that the OTHER font update – 3013455 is causing font corruption issues with Vista/Server 2008/Windows 2003 and obviously XP POS systems.  Microsoft knows about that issue and is investigating a better solution for those platforms.

Heads up on two concerns about SharePoint and SBS 2011

First off there is a non security update posted up on MU for SharePoint 2010.  Remember on SBS 2011 you need to run the psconfig command to complete ANY SharePoint update.

Next I’m seeing that I’m being offered two of what appears to be exactly the same update.

SharePoint on SBS 2011 (if my memory banks remember this correctly) is installed in Farm mode on SBS because of it being on a domain controller, yet it has some unique detection in place because of it being on SBS.

So I think the patch detection is faulty.


Bottom line hang loose while I see what’s up about this.



“It is no longer installed in single server mode, but in farm mode. Sharepoint Foundation 2010 running in farm mode is exempt from automatic updating. However, installations installed on SBS 2011 Standard will continue to be updated automatically through WSUS unless explicitly configured otherwise after SBS setup.”

I did remember right.  Hang loose folks and don’t install this update at this time.

iPhone app causes performance issues

Gavin writes ….

Long time reader and SBS Enthusiast! I posted up on reddit recently a problem I came across on one of our clients SBS – http://www.reddit.com/r/sysadmin/comments/2uuwrg/the_security_and_performance_of_the_outlook_app/

The primary point here is it was causing a performance related issue as it was uploading tonnes of mail over their crappy connection. As I’m sure you’re aware the people with SBS tend to be on crappier internet connections than most so where people are seeing this kind of degradation in speed over the past few weeks it may well have an association with this issue. I’m hoping you could pass this on in your own unique way as you have a much bigger base to broadcast to!

Thanks Gavin for the info!!

So just a heads up, if you suddenly notice performance issues, see if someone has installed that app on their iphones and consider blocking it at the firewall.

When a website doesn’t work

Why I hate the CNN redesign, quantified | The Robservatory:

Glad to know that I’m not the only one that feels that CNN’s redo has jumped the shark.  Now granted I’m guessing that on mobile devices the transformation makes more sense and is less jarring, but on a desktop, man is the new format PAINFUL as every photo is larger than a page and just takes too much scrolling.

Of interest is how many devices are now the majority of our computing experience these days.


Resetting the Windows firewall on SBS 2008

Because the attachments were mangled a bit in the migration and because I’ve had several requests for this, I’m reposting the default settings for a SBS 2008 firewall on the server.

FirewallFileszipped up

So instead of this post – http://blogs.msmvps.com/bradley/2009/06/03/the-default-sbs-2008-firewall/

Use that link above

In Memory of



So walking around at CES we found at the Parrot booth (a French technology company) this memorial to the French citizens who lost their lives.

Microsoft pulls the plug on the heads up notification


So today, instead of the normal first Thursday of the month heads up bulletin, the one that says how many security bulletins to expect and what type, they sent out an email saying that they are discontinuing it for everyone but their premier support customers.

So let’s review what actions Microsoft has done since they announced the closure of the Trustworthy computing group:

1. They stopped doing the MSRC monthly webcasts, the only method we have for getting public clarification of security patch questions.

2. They stopped posting the risk index post on the SRD blog.

3. They stopped posting the exploitability grid and recap video on the blog.

4.  They increased the price tag of support cases from $259 per call to $499 a call. Now while I know that support calls for security patch issues are ultimately “comp’d” back, many a customer is not willing to play what I call the credit card game and open a case with the trust that they will get the fee comp’d back.

and now they “got feedback” from customers that we no longer need to have advanced warning of what security updates are to be released on the second Tuesday.

I am really unsure of what customers feel that patches released lately are of a level and quality that merely waiting until the information comes out on Tuesday is good enough to plan our patching schedules around.

If you are like me and feel that enough is enough and I’m a customer of Microsoft that deserves more respect than what I am getting, go social and email  whatever Microsoft representative you have access to, and by all means take to Twitter or any other social site as you see fit to express your opinion on this matter.