Samker's Computer Forum - SCforum.info

Software & Hardware Mix: => Windows / PC => Topic started by: devnullius on 23. December 2013., 12:59:12

Title: Bypass Windows 8 Security warning for downloaded files and warez
Post by: devnullius on 23. December 2013., 12:59:12

Well I never!  :down:

After multiple extractions my 3GB archive, downloaded from box.com, became a new executable: a wrapper that, after a password, will present me with a nice menu to point-and-click extract different "evaluation" softwares. Done it before, no problem!

Right?

No! I found the "default" solution (e.g. http://social.technet.microsoft.com/Forums/windows/en-us/e3008c75-48b4-4a6c-bc14-5a20ce72cd7f/disable-open-file-security-warning?forum=itproxpsp&prof=required) not working. And the "Unlock" option is ONLY for network-accessed files... UNC and stuff.

And it will generate a nasty warning in the system tray.

And it does not solve the problem; when I try to run the downloaded program file, all I get is:

Windows Security: These files can't be opened. Your internet security settings prevented one or more files from being opened.
Show details | Close

I do not use IE, I use chrome.

What is this strange behaviour?? :(

I found this link with detailed but not-working steps for Windows 8 x64, including screenshots: http://www.c-sharpcorner.com/UploadFile/e83792/how-to-disable-the-open-file-security-warning-in-windows-8/

Finally I found a solution here: http://superuser.com/questions/38476/this-file-came-from-another-computer-how-can-i-unblock-all-the-files-in-a

Re-edited Copy Paste from Caliban's user comment (http://superuser.com/a/38483):

It's quite simple, NTFS attached a data stream (that IDs "unsafe files") to the file when it is just downloaded from the Internet.

Do recursively remove this stream for all files, follow these steps :

Download the Streams CLI executable from Microsoft http://technet.microsoft.com/en-us/sysinternals/bb897440.aspx .

Put the streams.exe executable in your Windows directory (or anywhere that the system can find it)

Run this line in the command line :

streams -s -d directory

It will then remove all of the data streams from all files recursively in the directory - you have now successfully unblocked all files.

You won't see anything happen, that is good. If you do see something, your path is probably wrong ;p Try the full path name, in double quotes "FQFN"

DO TAKE NOTICE! Some other user comments on this solution...
- Might be dangerous. Windows also uses streams for other purposes. –  harrymc Sep 9 '09 at 15:41
- Very rare - data streams are hardly used for anything since it's an undocumented feature. It will be safe if as schnapple has said - he just wants to unblock files in a certain directory that are known to be documents received over the internet. At no point in time am I recommending him to do _streams -s -d C:_ :) –  caliban Sep 9 '09 at 15:46
- just checked (since Streams is an undocumented feature it's hard to verify though) with some people, and they believe that once a document is transferred over the Internet or go through anything other than NTFS, it loses all stream data. As a result, when you first download something from the Internet, the only data stream you will have is that "Unsafe File" data stream. –  caliban Sep 9 '09 at 15:54
- Why do you think they're not documented? (msdn.microsoft.com/en-us/library/aa364404(VS.85).aspx) –  Reuben Sep 9 '09 at 16:12
- Don't blindly delete all alternate data streams, unless you have backup copies of those NTFS encrypted files. –  Ian Boyd Dec 15 '09 at 20:51


.. Karma!

Devvie

~~~ notemail@facebook.com ~~~

Conare nullius momenti videri fortasse missilibus careant
——
All spelling mistakes are my own and may only be distributed under the GNU General Public License! – (© 95-1 by Coredump; 2-013 by DevNullius)
Karma!!

Title: Re: (GUI) Bypass Windows 8 Security warning for downloaded files and warez
Post by: devnullius on 23. December 2013., 13:16:40

Very unconvenient, typing folder names... So a better solution that does not involve typing (and mistakes!), the next comment was very interesting too!

http://superuser.com/a/38494/225479

AlternateStreamView can list all alternate NTFS streams for files in a directory (and sub-directories if desired).

Delete all streams marked ":Zone.Identifier:$DATA" for the selected files to get rid of the security blocks.

This leads to good ol' Nirsoft: http://www.nirsoft.net/utils/alternate_data_streams.html

Karma!*

devnullius


*except for Windows ;p