Applies To
Windows 11 Windows 10

Summary

Attachment Manager helps protect your device by identifying files that were downloaded from the internet or received from other potentially unsafe locations. Windows uses security information, sometimes called Mark of the Web (MOTW), to determine whether a file should display a security warning before it’s opened.

Files downloaded from websites, email messages, or messaging apps might display warnings when you try to open them. This behavior helps protect your device from unsafe files.

How Attachment Manager works

When you download a file, Windows adds information about where the file came from. This information may include whether the file originated from:

  • The internet

  • Another computer

  • A restricted or untrusted location

When you open the file, Windows checks this information and may:

  • Display a warning before opening the file

  • Block the file from opening automatically

  • Apply additional protection in apps such as Microsoft Office or Microsoft Edge

Check whether a file is blocked

If Windows identifies a file as potentially unsafe, you may see a message such as:

“This file came from another computer and might be blocked to help protect this computer.”

To check whether a file is blocked:

  1. Open File Explorer.

  2. Locate the file.

  3. Right-click the file and select Properties.

  4. On the General tab, look for a security message near the bottom of the window.

  5. If the file is blocked, select Unblock.

  6. Select Apply > OK.

Only unblock files from trusted sources.

Open a blocked file safely

Before opening a downloaded file:

  • Verify where the file came from.

  • Scan the file with Microsoft Defender Antivirus or your antivirus software.

  • Make sure the file type matches what you expected to download.

  • Avoid opening unexpected email attachments or files from unknown senders.

Manage download protection in Microsoft Edge

Microsoft Edge uses Microsoft Defender SmartScreen to help protect against unsafe downloads and websites.

To manage SmartScreen settings:

  1. Open Microsoft Edge.

  2. Select Settings and more (...) > Settings.

  3. Select Privacy, search, and services.

  4. Under Security, turn Microsoft Defender SmartScreen on or off.

Turning off SmartScreen can make your device more vulnerable to malicious files and websites.

Why Office files may open in Protected View

Microsoft Office apps may open downloaded files in Protected View to help prevent malicious content from running automatically.

Files from untrusted locations may:

  • open in read-only mode

  • disable editing

  • disable macros or active content

If you trust the file and need to edit it, select Enable Editing in the Office app.

Troubleshoot warnings for downloaded files

If you continue to receive warnings for trusted files:

  1. Make sure Windows and your apps are up to date.

  2. Verify that the file came from a trusted source.

  3. Re-download the file if it may have been corrupted.

  4. Check whether your organization applies security policies that block downloaded files.

  5. Temporarily disable third-party download managers or security software only for testing purposes.

Advanced steps:

IT administrators can manage Attachment Manager behavior through:

  • Group Policy

  • Microsoft Defender settings

  • SmartScreen policies

  • file attachment handling policies

Changes to these settings can affect how Windows handles downloaded files and internet-based content.

Editing security policies or the registry incorrectly can cause system issues. These changes should only be made by advanced users or IT administrators.

Facebook LinkedIn Email
SUBSCRIBE RSS FEEDS

Need more help?

Want more options?

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Microsoft 365 subscription benefits

Microsoft 365 training

Microsoft security

Accessibility center