Windows 8.1 files cannot be opened issue fix!

Fix “These Files can’t be opened” Error in Windows

Windows is the most popular OS across the world and the current version of Windows 8 does have some great features. There are many types of error which you can encounter when working with Windows. Not all these errors are due to issues or bugs in Windows and most of them might be third party errors or issues.

Today we will discuss about an issue in Windows when opening some types of exe files. When you open exe files downloaded from some untrusted URL or source, you get this message- “These files can’t be opened error”. The description of the error is “Your Internet security settings prevented one or more files from being opened”. This is because of the default security settings in Windows which does not allow opening of certain exe files.

blocked files

So how to fix this error. There are two ways to fix this issue, first is the simplest one. Just right click on the file and select properties from the context menu. Now under the general settings tab, you can see option “Unblock” under the security.

unblock it

It mentions that this file came from another computer and might be blocked to protect this computer. So you can click the Unblock button and run the exe file. Make sure you know the source of the file or else it might infect your PC with viruses.

This will remove the error and you can run the file on the PC. Second way is to open Internet Explorer and then select Internet options from the Tools menu. Now select the Security tab and click on the Restricted sites option. Now click the button Custom level.

Under Launching applications and unsafe files, select the option Enable and click Apply and close the dialog box.


This is yet another solution to this problem.

Here is a video demo of the solution.

Manually Remove Exchange 2013 from a server

This guide will get this thing off of your server should it just refuse to go!

The most common reasons are listed below:

  • The deinstallation didn’t finish properly and left attributes or entries in Active Directory
  • The Exchange server is permanent offline and Exchange should be removed
  • An Exchange installation didn’t finish properly and the attributes and entries should be removed

To remove the server open ADSI-Edit and go to configuration

Navigate to this path:

CN=Microsoft Exchange
CN=Microsoft Exchange Autodiscover

CN=Default naming context,DC=DOMAIN,DC=LOCAL
CN=Microsoft Exchange Security Groups
CN=Microsoft Exchange Security Objects

Additional steps:

Hard Disk:
On the server’s hard disk you’ve to DELETE the Exchange Server installation folder.
Usually it’s C:\Program Files\Microsoft\Exchange Server

DELETE the Exchange Back End and Front End websites with the IIS-Manager

AD Users and Computers:
DELETE the following users in the “Users” container:

DiscoverySearch Mailbox{GUID}
Exchange Online-ApplicationAccount

DELETE the key “ExchangeServer” under:

DELETE the keys “MSExchange*” under:

Working in Isolation – PocketCloud or Splashtop Desktop for Tablets

Well before we can compare these two apps there is something to solidly clarify, Android or Ipad.

Android is only going to be a victim as Microsoft was once, where if you allow OEMs to create devices and add bloatware then those of lesser knowledge will certainly blame the tablet as ” I have an android and its crap”

So this applies to premium Android tablets only, that being said, Sony Vaio Z tablet or similar. That model being a tablet i have had and was probably one of my favourite ones. Interestingly a few Atom CPU quad core tablets are throwing Android commands around quite smoothly also.

Any way back too the subject at hand, I own Splashtop Desktop and Pocket Cloud. Both have excellent write ups on most blogs.
Both offer an overlay set of commands and features, making both worth considering over the standard Remote Desktop and port forward to your desired machine.

Splashtop to me seems like the application that has a lot of potential but mostly is pushing enhanced video as its Universal Selling point. Its good application but Pocket Cloud is a solid Enterprise tool. for the Mobile Professional and enterprise teams.

You can connect directly with a port forward but i recommend having the client installed on your target machines.
Then also have a direct port forward to one machine at least in that site.

A good tool for this even though pocket cloud will do this is Microsofts Remote Desktop finally released some months ago on both platforms.

Enable Data Deduplication in Windows 8!


This feature is only available on the Windows 2012 server operating system.  However what you need to do is copy the files needed for the data dedup feature from Windows Server 2012 to Windows 8.

The actual files for you to search for a re the following :

Depup files

Once you’ve got it down to your local drive, open up powershell and change the path to where you copied the downloaded file to. Go ahead and run the below two commands. .

dism /online /add-package / / / / / /

dism /online /enable-feature /featurename:Dedup-Core /all


If all goes well, you’ll see this from your control panel which is not available before this.



Now, because you’re on Windows 8 and not on Windows Server 2012, you can’t configure it using the Server manager. So your next best friend here is PowerShell.

These are the few commands , This is to enable the feature on a particular volume.

PS C:\> Enable-DedupVolume D:

This is to start the optimization manually.

PS C:\> Start-DedupJob –Volume D: –Type Optimization

To look at the progress of the dedup job.

PS C:\> Get-DedupJob


By default, jobs have a pre-defined schedule. Use the Get-DedupSchedule to look at the schedule.



Here’s what I had before dedup.



Example results below



Enforce WSUS Updates only and disable client side windows update

How to disable the “Check online for updates from Microsoft Update” link in the Windows Update icon in Control Panel

So you have ConfigMgr in place or WSUS in your environment. You go through the list of patches released by Microsoft before approving it and deploying it out to your organization. However, there is still a way for your users to check for updates through the control panel. This will mean even unapproved patches can be installed by your users if they really want to. I’m sure you’ll be asking how do I disallow this.


This can be simply done through Group Policy…thank God. :)

Go to your Group Policy management console and navigate to Administrative Templates | System | Internet Communication Management | Internet Communication Settings

Set the “Turn off access to all Windows Update features” to Enabled.


If this policy setting is enabled, all Windows Update features are removed. It blocks access to the Microsoft Update and Windows Update Web sites. The machine will not get automatic updates directly from Windows Update or Microsoft Update, but it can still get updates from a WSUS server.

This might be useful for administrators to implement in their environment. Hope that helped.



Step by Step SITE TO SITE VPN Cisco ASA 5500 Series

Step By Step Guide To Setup Remote Access VPN In Cisco ASA5500 Firewall With Cisco ASDM

1. Check Cisco firewall ASA version

Make sure you have ASA 8.2.2 and up. You cannot connect your Windows clients if you have ASA 8.2.1 because of the Cisco software bug.

2. Start Cisco firewall IPsec VPN Wizard

Login to your Cisco firewall ASA5500 ASDM and go to Wizard > IPsec VPN Wizard … and follow up the screens.

2.1 In “VPN Tunnel Type”, choose “Remote Access”

From the drop-down list, choose “Outside” as the enabled interface for the incoming VPN tunnels. Keep the box checked,”Enable inbound IPSec sessions to bypass interface access lists. Group policy and per-user authorization access lists still apply to the traffic.”

2.2 In Remote Access Client, Check “Microsoft Windows client using L2TP over IPSec”

Check “MS-CHAP-V1” and “MS-CHAP-V2” as PPP authentication protocol.

2.3 Choose “Pre-shared Key” for VPN Client Authentication Method

Pre-shared key must be the same for the firewall and client side.

2.4 Authenticate remote users using local device user database

2.5 Add new user into the user authentication database

You will use this username and password to connect in the client side.

2.6 Add address pool

Create a pool of local addresses to be used for assigning dynamic IP addresses to remote VPN clients. You can use to (may depends on your internal network).

2.7 Leave empty for attributes pushed to the client

2.8 Default for IKE Policy

3DES encryption & SHA authentication and Diffie Hellman Group 2.

2.9 Default for IPSec Settings

Uncheck “Enable split channeling …” and uncheck “Perfect Forwarding Secrecy(PFS)”

2.10 Verify the summary information and click “Finish” button

3. Add Transform Set

Go to Configuration > Remote Access VPN > Network (Client) Access > Advanced > IPSec > Crypto Maps. Edit the IPSec rules and add “TRANS_ESP_3DES_SHA” and click “Ok” button.

Save the running configuration to flash and all done.

Nexus 7 Factory reset preserve your unlock


WARNING: This will wipe your device. Backup all your photos and whatnot.

  • Download the Nexus 7 JRO03D OEM image -> here.
  • Extract the compressed file to the folder where your fastboot.exe lives. Typically this is the platform-tools directory in the SDK.
  • Open a command prompt window where your fastboot.exe lives.
  • Type in the following commands and press enter after each one.
  • fastboot erase boot
  • fastboot erase cache
  • fastboot erase recovery
  • fastboot erase system
  • fastboot erase userdata
  • fastboot flash bootloader nakasi-jro03d/bootloader-grouper-3.34.img
  • fastboot reboot-bootloader
  • fastboot -w update nakasi-jro03d/
  • Wait for the image to flash.
  • Type in
    fastboot reboot-bootloader

    and press enter.

  • If you just wanted to return to stock software and not relock, you are done here. Boot into the device.
  • If you want to relock the device, type in
    fastboot oem lock

    and follow the prompts on the device.

  • Enjoy