Author: Adam Fowler

Outlook Cannot Send This Item

Posted on December 1, 2015September 30, 2016 by Adam Fowler

Microsoft Outlook has a reasonably common, yet very generic error:

No Outlook, it was not helpful.

There are a bunch of reasons that can cause this error. Often, the ‘solution’ is to change the email from HTML to Rich Text or Plain Text, and move on. Or, copy/paste the entire email into a new email and move on. Neither of these are workarounds of course.

Dig a bit deeper on the web, and you’ll find some wackier reasons – the size of the logo in your signature for example. There was also a version of Exchange 2010 that caused the issue, but that was resolved.

I was running into this problem on a regular basis, and spent many hours trying to come up with a reason for the issue, and why only certain users had the issue, and on certain emails. I couldn’t reproduce on my own PC with the exact same emails, yet it was 100% reproducible on theirs. Also, if I removed the image from the user’s signature it fixed it – and it didn’t matter what image I put back in, it was always broken.

It wasn’t until I cried out for help on Twitter, and Christopher Kusek came to the rescue. After looking at a few other ideas, he pointed me towards hotfix KB3042197 with the lengthy title “ Graphics file attachment grows larger in the recipient’s email message after you change to a high DPI setting”

After reading this, I did some testing. Amazingly, the problem only occurred when the PC’s DPI setting was above 100%. Amazingly, when DPI is 125%, 150%, 200% etc, Word from inside Outlook resizes images in the HTML code based on your DPI setting. Some combination of HTML emails back and forth, and this resizing would cause the ‘Cannot send this item’ message.

Setting the DPI to 100% wasn’t enough either, as it would make the contents of the screen too small for some users. The registry setting mentioned on the KB article ‘DontUseScreenDpiOnOpen’ and setting the value to 1 (true) actually fixed it!

After some more testing, this single registry setting which you’d think would be on by default was rolled out, and the ‘Cannot send this item’ messages were no longer appearing. At least not for this particular problem!

TLDR: If Windows is set to > 100% DPI, the MS Word editor inside Outlook 2010 and Outlook 2013 will resize images by default and this can cause weird stuff to happen.

Testing Twitter Influence – Part Three

Posted on November 26, 2015 by Adam Fowler

Read parts One and Two

As mentioned in Part Two, I wanted to test how well paying $5 for a bunch of clicks to your site went. I paid another US$5 for someone selling ‘I will do social media marketing campaign within my 9M Facebook and Twitter fans’ – sounds rather dubious.

I gave them a URL on my website: http://www.adamfowlerit.com/dirty/ which contains a cute picture of a rabbit, and waited to see what happened.

I can’t find any records of this link being shared in social media, but they somehow managed to generate a bunch of hits, over a 4 day period. Funnily enough, after this there is absolutely zero hits:

Traffic to the specific URL

The seller also created a pretty graph via Google Analytics apparently showing where the clicks came from, passing it through a shortened URL:

Google Analytics of URL traffic

I’m reasonably confident all this traffic was faked, along with the sources, browsers, countries etc. None of that is overly difficult to fake.

Thirdly, here’s the overall traffic to my website with the ‘marketing campaign’ hits rather obviously in the middle:

Overall Site Hits

Traffic after the campaign ended went back to normal. As a side note, it’s interesting to see the dips on my site over the weekend, versus the buildup during the week to Wednesday. This cycle is consistent unless I publish a popular article, or gets picked up by a news site or reddit (it occasionally happens!).

Two major points I take away from this – it’s easy and cheap to generate ‘traffic’ which appears real and varied, and don’t believe any claim in traffic or hits, even if you see the end results.

Back on the Twitter front, I’ve done absolutely nothing with @AdamFowlerITCom but it’s looking more legitimate to me. I’m getting what appears to be more real followers (or good fake ones) as well as thanks for adding people to a list from an automated method:

Twitter Notifications

I think I’ve set out what I planned to achieve – showing that it’s very easy to build up an appearance of having huge numbers of followers, and unless someone digs deep it will appear to be legitimate after you get real followers on the account too. Also, fake traffic is incredibly cheap to generate – so take everything with a grain of salt.

Rolling back from a bad KB Update

Posted on November 12, 2015November 12, 2015 by Adam Fowler

Microsoft releases buggy patches now and then (more commonly now sadly).

Today’s stuff up is KB3097877 which breaks a bunch of things, including things like causing Outlook to crash when reading HTML emails.

Best practise is to have a target group from WSUS that these patches go to first, before going company wide – but either way, you’ll want to remove the patch from the affected PCs.

How do you do this? This is my recommended safe approach:

Step 1. Disable the patch in WSUS.
Just do this now, before anyone else gets it. You’re not going to break anything by choosing the ‘Decline’ option on a patch in WSUS. Make sure you do it to each OS version or product you manage (e.g. Windows 7 32 bit, Windows 7 64 bit, Windows 8 32 bit etc).

Step 2. Test uninstalling the patch manually
Before you go nuts and try to fix all the things at once, do a quick test or two. If you manually uninstall the patch, does it successfully uninstall? Reboot and make sure the PC seems happy (check event viewer!). Reboots may take a while doing system state backups and rolling back the patch.

Step 3. – Set WSUS to Uninstall the patch.
It’s a bit counter intuitive to approve a patch to then set it to remove, but that’s how WSUS works. Find the patch by searching for the KB, and once you right click ‘Approve’, you’ll get the option to choose ‘Approved for Removal’. Make sure you’re targeting the correct Computer Group. If you can’t use WSUS, work out how to get your PCs to run a command like this: “wusa /uninstall /kb:3097877 /quiet /norestart” – without the /norestart, they’ll restart :)

Step 4 – Test Windows Update uninstall
Test another PC’s ability to use Windows Updates to uninstall the patch. ‘Checking for updates’ either through the Windows Update GUI or the good old ‘wuauclt /detectnow’ command will do the trick. Similar to Step 2, check it uninstalls and reboot. You can also check C:\Windows\WindowsUpdate.log to make sure it’s happy (this doesn’t apply to Windows 10 as that log doesn’t exist).

Step 5 – Trigger your PCs to check for Windows Updates
Depending on your group policies, Windows Updates will check at certain intervals and may auto download or auto patch. Easiest thing to do is trigger all your PCs to check Windows Updates now. There’s an easy PowerShell way of doing this here, but requires WinRM to be enabled – you should have this on if you want to be able to do a bunch of cool stuff to your PCs. Otherwise, try psexec which will have the same result. This can take a long time to do! Optional component – WOL your PCs first.

Step 6 – Reboot
Now that you’re ready to clean up, test reboot a PC or two and make sure the patch goes away. If that happens, then schedule all your PCs to reboot. You should have a way of doing this already – SCCM can do it well, you can create a once off scheduled task and push that out to PCs, or a bunch of other ways.

Step 7 – Report in WSUS
WSUS has some nice client reporting options. Search for the KB again, right click and choose ‘Status Report’. This is usually not too lagged in it’s information, and you can check to make sure none of your PCs have the update any more. If there’s only a few, it may be easier to manually fix the remainder.

Happy cleaning up!

Identifying and Counting Office 365 Cloud vs On Premises Users

Posted on November 9, 2015November 3, 2024 by Adam Fowler

How do you easily identify Cloud and On Premises users in your Office 365/Azure AD instance? With PowerShell of course!

Prerequisite – Windows Azure Active Directory Module

Using the ‘get-msoluser -all’ command, you can find all your users in Office 365/Azure AD. Getting the results of which users are cloud only based, or synced via an on-premises LDAP such as Active Directory may not be easy at first glance.

If you expand out all the details possible from a user, the fields are as follows:

None of these are obvious to indicate where the account is primarily located.

After a quick comparison of an on-premises account and a cloud account, I noticed the ‘ImmutableId’ was blank for the cloud users. I found a great blog post about what the value was for here, which proved my guess – the value corresponds to the ‘objectGUID’ of the account, which cloud-only accounts don’t use.

Based on that, the rest is simple. Here’s some example commands:

get-msoluser -all | where immutableid -eq $null
Get a list of all cloud only accounts

get-msoluser -all | where immutableid -eq $null |fl
Get all cloud only accounts with all values

get-msoluser -all | where immutableid -ne $null
Get all synced on-premises accounts (e.g. DirSync, Azure AD Connect, ADFS)

get-msoluser -all | where immutableid -eq $null |measure
Show a count of how many cloud only accounts

get-msoluser -all | where immutableid -eq $null | export-csv cloudusers.csv
Export the list of cloud only accounts to a csv file

Testing Twitter Influence – Part Two

Posted on November 4, 2015 by Adam Fowler

Read Part One Here

It’s been a few weeks since I decided to muck around with Twitter, and it’s been a learning experience to get to the stage I’m at.

I bought 7500 and 8000 followers respectively through fiverr.com – a bad idea to do both at once, since both ‘professionals’ claimed they’d delivered after I got to 7800 followers. I couldn’t prove who did and didn’t do it, or if they’d both half done it… so just bought a third chunk of 7500. I wanted to get over the 10k mark as to me, that appears more impressive than seeing a number like “9,825” followers.

Within the week, I had my 15k followers. The first thing that jumped out at me was that a lot of them were eggs:

Apart from the eggs, there were a lot of non-English style followers. I feel bad because I’m sure these identities have been stolen for fake accounts (as in the photos, I’m sure the names aren’t real). It was at this stage I realised there’d be a bit more work to do, just having 15k followers wasn’t enough.

I checked out IFTTT.com which can automate some Twitter things, but it seems Twitter has blocked a bunch of things I’d hoped to do. First I tried to follow everyone who followed me – I couldn’t find a way to do this at all. There was also no way to automatically follow anyone, nor a way to retweet anything automatically. I was trying to do all of these things to create content and contacts without effort. I dare say the exact reasons I was trying to do this, was the same reasons it’s not allowed.

What I could do, was get IFTTT to search a hastag (e.g. #microsoft) and add that person to a Twitter list. IFTTT will only grab 30 results at a time, so it’s slow – but I figured people like being added to lists, and might follow my account after feeling special enough for being added to a list.

You can see my #Microsoft list here and I did the same for #Windows here. There seems to be a mix of rubbish Twitter accounts along with real ones, so I’d say it’s been semi successful.

I also found a service called roundteam.co that would retweet tweets from lists. I did this for a little while just to get my tweet count higher, but stopped it. Due to only using the free service, there were some rather heavy limitations, along with a daily “I’m using RoundTeam” tweet they kindly made my account do. I was hoping automatic retweets would do the same as adding someone to a list, while making my feed look useful. The problem I found was, I was often retweeting non-English tweets that used #Microsoft or #Windows which made my feed look pretty crappy.

As a final attempt, I followed only a few tech Twitter accounts, added them to a list, and retweeted their tweets occasionally. This cleaned up my feed a bit, but it wasn’t really doing much to get social media influence.

I then turned off all the automation, apart from the lists as I figured that wasn’t doing anything visibly obvious to anyone, apart from accounts added to the list. I managed to get some legitimate followers though, if you see who follows my account, the first few pages look pretty good.

I have a feeling that if I now treated the account properly, created content and interracted with people it would be seen as a legitimate, popular account. What do you think?

My next step is to create a page and see how many hits I can get to it, probably by paying another spammer $5US to promote a tweet. I’m curious to see how many hits I’ll get…

Share this:

Share this:

Share this:

Share this:

Share this: