By default, the Windows operating system adds special metadata to all files you download from the Internet to an NTFS drive, which it considers as attachments. Later, when you try to open or execute the downloaded file, Windows 10 prevents you from opening it directly and shows you a security warning that the file originated from somewhere else and can be insecure. Let's change this behavior to get rid of this warning.
The metadata which is added to the downloaded file is called "zone information". It is an invisible file stored as an alternate data stream in the same downloaded file to indicate that the file came from a network. Every time File Explorer opens the file, it reads the attached zone info and checks if it came from "outside". In that case, Windows Smart screen warning appears:
THe use have to unblock the downloaded file as mentioned here: How to unblock files downloaded from Internet in Windows 10.
If you want to completely prevent Windows from adding the zone information in the file's alternate data stream so you don't even need to unblock such files, follow these steps:
- Open Group Policy Editor by typing gpedit.msc into the Start Menu.
- Go to User Configuration -> Administrative Templates -> Windows Components -> Attachment Manager.
- Double click the policy setting "Do not preserve zone information in file attachments". Enable it and click OK.
If your Windows 10 edition comes without the Group Policy app, you can apply a simple Registry tweak instead:
- Open Registry editor.
- Go to the following Registry key:
If you don't have such a key, then just create it. Tip: See how to open the desired registry key with one click.
- There, create a new DWORD value named "SaveZoneInformation" and set its value to 1.
Thereafter, any files downloaded using browsers (or download managers) which respect this setting will no longer add this to executable files so you don't even need to unblock such files.
There is an alternative way to prevent Windows 10 from blocking certain file types after you download them from the Internet. It involves modifying the file extensions which Windows considers as potentially harmful attachments. Read the following article: How to disable the “Publisher couldn’t be verified” message in Windows 10.
That's it. If you have a tip, question or want to leave feedback, feel free to write it in the comments.
Winaero greatly relies on your support. You can help the site keep bringing you interesting and useful content and software by using these options:
If you like this article, please share it using the buttons below. It won't take a lot from you, but it will help us grow. Thanks for your support!