Free Installer InstallAware for Windows Installer Header Image Windows Installer without Rocket Science

  InstallAware Blog


Microsoft Security Update KB2962872 Breaks InstallShield; InstallAware 18 Offers Flexible and Secure Upgrade Path.

July 13th, 2014

Microsoft’s Security Update KB2962872 is crashing multiple versions of InstallShield as described at … tallshield, rendering a very expensive product inoperative. While InstallShield is currently researching the nature of the problem as described at, InstallAware offers a very flexible upgrade path to all developers and administrators affected by the issue.

InstallShield have made great strides in recent years catching up with the flexibility offered by InstallAware. InstallShield 2014 released this year natively implemented some very popular InstallAware features, some of which had been available in InstallAware for as long as a decade:

1) High-DPI Installs (since 2004)
2) Multiple Instance Installs (since 2005)
3) Setup Always Installs Latest Available Version Online (since 2012)

Companies such as Embarcadero migrated away from InstallShield as early as 2008, recognizing the more flexible nature of InstallAware early on, as described in the migration case study available at In 2008, a vulnerability was discovered in the InstallShield Update Service Agent, as documented at Arbitrary code could be executed, compromising any system with InstallShield-installed products on them.

InstallAware in its decade of operation has never been affected negatively by Microsoft Security Updates, or compromised end-user systems where InstallAware setups have been run, under any circumstance. InstallAware‘s emergence after the invention of Microsoft’s Windows Installer standard has made it a stable, well-designed product from the ground-up; whereas legacy installation vendors have had to scramble to retrofit their ageing technology dating to the early 90′s.

In addition to the unsurpassed flexibility and stability offered by InstallAware for Windows software developers and Windows system administrators, licensing is also effortless on the InstallAware platform. InstallAware‘s licensing just-works – without needing to install dedicated product license servers, or without even requiring an Internet connection to activate or use products on an ongoing basis. This is a boon to computing environments which must remain disconnected from the Internet for security reasons.

Upgrade to flexible and secure InstallAware 18 Studio this week, and enjoy these benefits:

1) A nearly 50% discount on all our product editions.
2) If you’re purchasing from the Schengen Zone (most of Europe), we’ve also cancelled our increased EURO pricing – so you get to enjoy the same USD prices available in the rest of the world.
3) The most flexible installer, stable and secure, available for a fraction of the cost of InstallShield.
4) An additional 34% instant competitive upgrade discount – so you get to enjoy competitive upgrade pricing this week, even if you don’t already own an old version of InstallShield.

Prices start at only $989.34 when you click the URL below:

List of Bug Fixes in InstallAware 18.08

November 9th, 2013

From 18.07:

The new SQL Server 2014 RTM runtime now replaces the old SQL Server 2014 CTP2 beta.

Code signing for the actual MSI payload is now operational.

Visual C++ 11 runtimes with ATL, MFC, C++ AMP, and OpenMP are now available.

From 18.06:

SSD detection on RAID arrays and virtual machines failed.

From 18.05:

Some controls misinterpreted arrow key navigation as tablet pen flicks.

Some older AMD and Intel CPUs occasionally caused failures during the loading of setup dialogs.

Microsoft Surface Pro and Surface Pro 2 hardware were being misreported as virtual hardware.

From 18.04:

The MaskEdit control, when a mask was specified, would immediately skip to the next dialog.

From 18.03:

Additional intermittent out of memory errors during compression have been fixed.

The SQL Server 2012 RTM (Denali) runtime had been accidentally removed from the distribution.

Sophisticated IIS 7 configurations gave rise to occasional issues.

IIS 7 configurations now support Unicode.

Tablet pen flicks were unsupported in both the IDE and the setup engine. Now you may flick your way through setup wizard screens.

The IDE visual Registry designer displayed the correct 64 bit registry keys/values but failed to add the correct 64 bit registry keys/values, instead adding the 32 bit counterparts.

The IDE visual Registry designer failed to edit existing registry keys/values in a project due to the expanded parameters of the Write Registry command in InstallAware 18, supporting remote computers for the first time.

From 18.02:

InstallAware required .NET 2.x-3.x on Windows 8.0-8.1 to obtain assembly information and build MSI databases using the Install Assembly command.

From 18.01:

Flash controls on dialogs with Aero Glass enabled were inoperative.

Visual Studio Add-In generated projects, including all projects built using the Free Edition of InstallAware, showed dialogs for license and readme files, even when these files were not included with setup.

The setup resource packing process included a duplicate copy of each plug-in runtime DLL, potentially exponentially increasing the size of the setup resource binary when multiple calls to plug-ins were made in the setup script (even for identical plug-ins).

The default IDE window position did not fit on small resolution displays.

From 18.00:

Windows 8.1 and Server 2012 R2 detection fixed.

The setup self-extractor now correctly displays error messages such as running out of disk space.

The Glass component can now be successfully deleted from a form.

Occasional out of memory errors during compression have been fixed.

List of Bug Fixes in InstallAware 17.06 (23)

August 5th, 2013

From 17.05:

The setup engine had lost compatibility with operating systems older than Windows XP Service Pack 2.

The Dialog Designer was unable to display or edit (past the point of saving and reloading forms) any hidden or invisible dialog controls.

The Dialog Designer was unable to retain the Aero Glass control when saving forms, or add the control to new forms.

Localizations were corrupted for the Chinese (Taiwan) language.

From 17.04:

Environment variables which had empty contents after an un-installation were not being entirely removed by the Native Code Setup Engine.

(De)compression tasks left the file download subsystem in an unstable state under rare combinations of operating system language and locales.

Running built setups or exploring build folders outside of the IDE failed when the target file or folder contained compiler variables.

Under very rare combinations of Unicode user accounts and different locales for non-Unicode software, when MSI files were being built in non-Unicode mode, the setup engine could not properly acquire installation properties.

From 17.03:

The PasswordChar property of an Edit control could not be set as part of dialog rules.

The Set Access Control command failed to set rights on true 64 bit file system objects.

The notification bell overlaid on the setup Taskbar button would be lost when setup was minimized to the system tray.

The IDE Power Tweaks designer treated LOADOLDDATA as a setup script variable, and not as the compiler variable that it is.

The Native Engine rolled setup back even if at least one Apply Install was called and setup was subsequently cancelled.

From 17.02:

The App-V 5 Compiler occasionally experienced infinite recursion when processing Create File Type commands.

The setup binary has been optimized for size.

From 17.01:

The default compression strength in template projects was inoperative.

From 17.00:

The Apply Patch statement failed under rare circumstances on Windows XP.

Dropping a new command on the MSIcode editor scrollbar caused a frivolous error message.

The built-in InstallAware custom action called ACTAWE failed under rare circumstances due to a memory overwrite bug.

The App-V 5 Converter did not support Unicode file names.

From 16.07:

The MSI_ALL setting was not reflected in the Power Tweaks designer.

The Project Options dialog did not accurately portray the state of all compiler variables in visual check-boxes.

The IDE hint for the Web Media Blocks designer was missing.

An Iranian Saint: Elham Asghari

July 6th, 2013

As a swimmer myself, I am deeply touched by the story of Elham Asghari:

By way of the Internet, I would like to share my thoughts with Elham:

Your courage and willingness in the face of insurmountable odds clearly demonstrates that you are on the fast track to enlightenment. Your love and service to those who would choose to oppress you is illustrated by your choice of birth in this lifetime. Congratulations on your accomplishment of incalculable merit in a single incarnation!

From this humble swimmer, heartfelt congratulations to Elham on setting a 20 kilometer world record! You are the personification of the human spirit in its finest form.

List of Bug Fixes in InstallAware 16.07 (28)

June 26th, 2013

From 16.06:

Importing registry files (.REG) was broken.

Scanning dynamic dependencies for files (.EXE) did not preserve the correct bitness of 32 and 64 bit folder locations.

Custom PNG logos for the setup splash screen were broken.

From 16.05:

The Schedule Task command was occasionally failing, especially as used from the scheduled mode web updates script.

The Get System Settings and Get OS or SP Level functions were failing to accurately report Windows version information for Server editions of Windows.

The Dialog Editor failed to set the PasswordChar property of Edit controls.

From 16.04:

The MSIcode script editor Search & Replace failed when the new string contained the old string.

The MSIcode script editor Search & Replace was not undoable.

From 16.03:

The File Bag plug-in did not generate a collision-proof folder layout when being used inside the same web media block with identically named source file names during multiple invocations.

The Dialog Editor did not support editing lists of strings.

From 16.02:

The IDE profiles were installed incorrectly due to a bug in the setup script. The correct profiles are now installed. Please note that the license generator binaries have not been affected in this fix.

From 16.01:

The Get System Settings command caused memory corruption when obtaining user account information.

Forms were not scaled properly on very large font screens (>120%, ex: Windows 8 Surface Pro’s default of 150%).

Setup source caching failed for very long paths, affecting various application runtime installations such as .NET 4.5.

The MS SQL Server plug-in often failed to connect at runtime.

Marquee mode progress bars were inoperative.

Default InstallAware plug-ins had a risk of memory corruption.

The Create Virtual Folder command failed to bind the requested ASP.NET version under IIS7.

MDAC runtime installation commands were failing at runtime.

The Transform Instance command was among those affected by intermittent failure of persistent data stream caching.

Progress monitoring and safe aborts on a limited subset of actions were offline.

From 16.00:

The Register Assembly command was inoperative under the Native Code Setup Engine.

The Download File plug-in could not be loaded at runtime.

The ODBC commands caused random MSIcode compilation errors.

From 15.51:

The file exclusion masks in the Install Files command did not support all logical patterns.

Code signing failures with very large files occasionally resulted in built binary corruption.

The Delete Registry command did not succeed with all keys and values.

The file and product version information fields occasionally had insufficient storage for their full version number.

InstallAware Wins SD Times 100 Again!

June 8th, 2013

InstallAware has won the SD Times 100 award for the second year in a row!

Thank you all for your support – we couldn’t have done this without you!

InstallAware Wins Third ComponentSource Award

March 4th, 2013

For the third year in a row, InstallAware has won ComponentSource’s Best-Selling Publisher Award. Thank you for your support – we couldn’t have done this without you!

What’s the secret to our success?

o The Bleeding Edge: Tired of waiting for weeks, months, and sometimes even years for updates from your installation technology vendor? InstallAware has built a track record of being the first to support new releases of Windows, .NET, and SQL Server – within 48 hours, if not less!

o Broadest Platform Support: Losing business to ever stranger installer errors reported by your frustrated customers trying to deploy your product? The same InstallAware setup binary runs out-of-the-box on Windows 95 Gold through Windows Server 2012, guaranteeing bullet-proof installations every time.

o Embrace and Extend Windows Installer: Feeling confined to a straitjacket by the limitations of Windows Installer? Transcend all limitations using InstallAware‘s Native Engine, even switching at runtime between the Windows Installer and the Native Engine with a single line of code.

o Code-Generating IDE: Does your setup project give you a sense of what trying to build a Concorde with a sledgehammer feels like? InstallAware‘s IDE generates code in the background, letting you drop-down to the exact area of your setup script you need to customize with precision targeting.

o Web Integration: Do your efforts in web-enabling your setups and publishing web updates induce strong headaches? InstallAware‘s Partial Web Deployment and Triple-Mode Web Updates are so well-designed, you’ll be wondering how you ever managed to live without them!

Celebrate InstallAware‘s success with us – and enjoy a double discount on all our products and editions when you order direct from InstallAware this week:

Stack our 34% competitive upgrade discount, even if you don’t have a qualifying competitive upgrade serial number; together with an extra 20% discount:

Ordering URL:

Competitive Upgrade Old Serial Number for 34% Off: 1N5T4LL5H13LD

Stacked Discount Coupon for 20% Off: TOPPUBLISHER

All orders must be received by close of business on Friday, March 8th, 2013.

Discover InstallAware and the beauty of simplicity – InstallAware is built by developers for developers, and it shows. We’re confident you’ll agree.

List of Bug Fixes in InstallAware 15.51 (57)

January 1st, 2013

The setup engine failed to correctly persist the 32 bit/64 bit state of the installation when persistent variables were used.

The Install Service command editor window, in the Service Groups tab, incorrectly suggested that variables were disallowed.

The setup engine failed to initialize on Windows 2000 (Windows NT 5.0).

Under rare combinations of SD card reader hardware and drivers, the setup engine occasionally displayed initialization errors that could be safely dismissed.

Uncompressed Native Engine setups running from read-only media such as CDs, DVDs, HD-DVDs, and Blu-Ray discs failed to clear the read-only attribute on files copied to destination folders.

The Get Folder Location command Folder setting was displayed incorrectly for three locations in the command editor and the MSIcode script.

The pre-defined variable SFXPATH was occasionally being incorrectly initialized to the wrong folder, together with its co-dependent variables.

The WordWrap property of the CheckBox and RadioButton controls were forcibly being set to FALSE at runtime.

The Get Folder Location command Folder setting was displayed incorrectly for the majority of selections in the command editor and the MSIcode script.

Command line builds could not override the value of the NOEXE compiler variable if it was defined at the project level settings.

A Native Engine installation would miss current version Native Engine per-user installations if previously uninstalled per-machine installations were present on the target system.

Registry self-registration data import failed when new lines were found in registry data.

The Register Assembly command failed to locate .NET 4.x assemblies in the GAC.

Pinning shortcuts created duplicate pins if they were previously pinned.

Visual designer code generation did not check if code was commented out before emitting new statements in standard code regions.

Visual designer code generation occasionally emitted multiple redundant sections of code.

The assemblies design view occasionally displayed incorrect check-box states when check-boxes were in a disabled state.

MSIcode command editor windows did not provide alphabetical sorting to variables, component names, and other similar sortable elements.

The InstallAware setup loader dialog had visual artifacts at corners of the setup loader progress bar when running under the Aero Basic theme.

The InstallAware IDE did not save the minimization state of the ribbon toolbar.

Calling Apply Install twice with pinned shortcuts occasionally caused duplicate pins for the same shortcuts.

Automatic elimination of double-backslashes was not applied to Write Registry commands when running under the Native Engine.

A Native Engine installation would miss older version Native Engine per-user installations if previously uninstalled per-machine installations were present on the target system.

A memory leak in the automation interface caused Visual Studio 2003, Visual Studio 2005, and Visual Studio 2008 Add-Ins to fail.

The Native Code Setup Engine failed to update system files when it was not possible to obtain original file permissions successfully.

PackageAware failed to scan protected system files when it was not possible to obtain original file permissions successfully.

Microsoft SQL Server database connections occasionally returned incorrect error codes when the server could not be reached.

Delete Files Recursive did not delete files that were protected by the system.

.NET 4.x support was not available in the .NET Plug-In Bridge.

Complex passwords rarely caused setup script corruption.

The .NET 4.5 runtime installation was erroneously triggered based on .NET 4.0 availability.

The .NET 4.5 runtimes failed to extract on 64 bit operating systems with web builds.

The .NET 4.5 runtimes failed to install with single file builds.

The InstallAware version compiler variable was misreported as 14.00.

The InstallAware self-extractor failed to extract files which transcended the MAX_PATH file length limitation.

The Web Media Block extraction mechanism failed to extract files which transcended the MAX_PATH file length limitation.

PackageAware did not pick up changes made to the file system and registry in protected areas.

PackageAware snapshot comparisons were too slow.

Adding Web Updates to a project did not automatically add built-in web update dialogs.

Progress bars flickered on Vista and newer Windows operating systems.

Set Access Control did not apply permissions to 64 bit registry hives.

The Dialog Editor did not prompt to save an open document when the control tab order or control properties were changed.

The IDE did not import 64 bit COM Server self-registration data.

Scheduled Web Updates did not work with the Native Code Setup Engine.

.NET 3 runtimes did not install on Windows 8.

.NET 2 runtimes did not offer to retry failed downloads on Windows 8.

Paths were not automatically converted to use global system variables after COM Server self-registration data captures.

In rare instances, the built-in Web Update script faulted with division by zero errors.

The help documentation was out of date for non-scheduled web update modes.

The Native Code Setup Engine did not properly restore original system permissions when attempting to update files and registry keys.

The Native Code Setup Engine failed to update file system and registry areas with protected system permissions.

The setup engine failed under odd combinations of user accounts with Unicode names and various system locales for non-Unicode programs.

The InstallAware setup did not offer to download .NET 2.x runtimes again on Windows 8 upon failure due to poor network conditions.

The Native Code Setup Engine failed to write to the system32 folder when running in 64 bit mode on 64 bit operating systems starting with Windows Vista.

The Create Virtual Folder command failed to bind the requested version of ASP.NET when running on a 64 bit version of Windows Server 2003.

The File Bag plug-in failed to copy files when doing builds with file system paths exceeding 256 characters.

The Group Policy Wizard generated MSI files failed to run under all odd combinations of Unicode user account names and system locales for non-Unicode programs.

Share-It: A Decade of Racism

December 28th, 2012

Continuing the subject of racism…


As racist as some governments can be, so are some companies.


Share-It, a payment services provider based out of Europe, have been engaged in racism for well over a decade.


How do I know?


Any time I place an order from a Turkish IP, Share-It declines the order with the generic reason “Unfortunately, we were unable to charge your credit card for your order.” This has been happening for well over a decade.


Need I mention that the credit cards in question have never had an issue with their credit limit? In fact, the very same order would succeed when placed on a non-Turkish IP (even with the same credit card).


That’s 10 years of racism, brought to you by the ecommerce company Share-It.


This despicable and wanton act of racism has not gotten better – it has only gotten worse over the years.


For instance, in previous years, Share-It representatives would actually get on the phone to verify orders that their fraud protection system deemed suspicious. This had helped me clear orders, albeit, with additional hassles introduced – such as requests for copies of the back and front of the credit card used while placing the orders, as well as an official government ID.


Now, even calling someone at Share-It does not result in a resolution.


Share-It was a German company that was later acquired by Digital River, a US company. Unfortunately, Digital River did nothing to stop the racism at Share-It after their acquisition.


Surely, there are many European companies that are not racist.


Our own ecommerce provider Cleverbridge is one such company, with whom I have not had negative experiences of racism. They were actually founded by some former Share-It people, and they are a German company as well. Clearly, some companies are making better choices than others and declining racism.


Racism tends to breed racism in return, so one cannot be too careful in consciously attempting to prevent any further instances of racism.


If you are using Share-It as your payment provider, I would strongly urge you to use another payment provider. There’s no telling how many legitimate orders you are missing!

The Anatomy of a Price Increase

December 15th, 2012

InstallAware increased prices for customers in the Schengen Visa zone (most of Europe) by 30% on Monday, 17th of December 2012.


“Apple do it, so I am doing it too…”


My friend Harry Kelly (ComponentSource) cautioned me strongly against increasing prices in Europe. His thinking was that, unless there is some specific value-add for the European region, the increase cannot be justified. He provided credible rationale that companies who did charge higher prices indeed provided localized services or some other value-adds which justify the increase in cost.


Apple’s Cow Manure


Of course, no matter what the rationale, we all feel it’s basically greed. For example, Apple sells their tablets in Europe, at US prices –clearly these are as localized as their phones are. The phones they sell at a heavy markup. So why not the tablets? Apple faced stiff competition in the tablet space, so they just couldn’t jack up the prices. It’s all about the competition.


InstallAware’s Facts


What’s InstallAware’s rationale then? Is it some justification of greed? No, it is not. Our rationale for the recent price increase is that our costs of doing business in Europe are getting exponentially higher. How/why? Take a hint from the opening line of this blog.


My First Schengen Visa


I must have gotten my first Schengen visa in 2003. I was unemployed (erm, an entrepreneur) back then. I had no work history and no assets. I was trying to get to Cologne to attend my first European shareware conference. I suffered countless long waits in line, many an early morning, in front of the German embassy in Ankara. To say these waits were undignified would be an understatement. Having received college education in the US, I had grown accustomed to a basic semblance of human rights. All of these were being unilaterally violated by the treatment of visa applicants at the German embassy in Ankara.


I did eventually get my visa issued. It was valid for one week only! This visa was certainly the shortest I have ever been issued. Talk of freedom of travel!


My Subsequent Schengen Visa’s


My first morning in line outside the German embassy, I’d had a very unnerving encounter. A stranger had shown up right next to me and started volunteering information on how to get visas for travel to Germany. Usually I get suspicious when information is being volunteered in this manner…


… so while my mind was spinning around about the implications of what I was hearing from this strange volunteer of information, I was completely unprepared for the eventuality that his predictions would turn out to be entirely accurate. He said that I’d get my first visa for a week. And then the next one would be issued for two weeks. Then the next one for a month, assuming I never overstayed my visa. And then two months or three months, after which, six months – or a full year if I was lucky.


Now at this point, I already had a ten year US visa on my passport. So it all was a bit too  much to take in. I was in denial about what I was being told.


In fact, the visas that I would be eventually issued over the years followed this exact same pattern. So much so, that it would be in 2011 when I was finally issued a full year’s visa.


By which point, of course, I was no longer unemployed – or penniless. So it did not come as a surprise to me, and when I applied for my latest Schengen visa recently, just weeks ago, I was expecting a 2 year, or dare I say, 5 year visa!


European Racism


My latest Schengen visa, which was issued less than a month ago, is valid for three weeks, and it is a single entry visa. And the maximum stay allowed is a total of ten days!


This visa is utterly non-usable. This visa grounds me and restricts my freedom of travel in Europe completely. How come I’ve ended up being a persona-non-grata in Europe?


I cannot come up with any other rationale for it other than European racism. Sure, in 2003, Germany had plenty of reasons to be concerned about an unemployed visitor. But in 2012, Holland has absolutely no reasons to be concerned about my visit. If anything, they should be trying to encourage me to stay longer, so I can spend my money in their nice country.


We did appeal to the Dutch embassy in Ankara. Our appeal was rejected. The utter rape of the anonymous information volunteer’s pattern was final!


InstallAware R&D is Based in Turkey


Ever since our founding in 2003, InstallAware R&D has been based out of Ankara, Turkey.


If the founder of InstallAware has trouble getting Schengen visas, imagine what InstallAware employees must go through trying to get Schengen visas?


The “fiat” cost of a visa is absolutely negligible compared to the opportunity cost and especially the loss of time with a special emphasis on the indignities laid on the applicant.


Our accountants have worked this cost out to be about 30% of our net costs. Which aligns, rather nicely, with InstallAware’s switch to EUR based pricing in Europe.


You May Appeal!


Unhappy that you have to pay an extra 30% just because you’re based in Europe? Somehow am I not surprised by your reaction!


Because we’re not racist, we’ll issue you a 30% discount coupon if you:


1)      Call or fax the Dutch embassy in Ankara, and let them know you are calling in connection with the subject matter of this blog.




2)      Call or fax your EU representative, asking them to terminate their racist practice of limiting Turkish freedom of travel in Europe.




Let them know that a global company with R&D headquartered in Turkey has been forced to pass on Schengen visa costs to you, their customer in Europe.


For your convenience, the phone and fax numbers of the visa department of the Dutch embassy in Ankara are provided below:


Voice: +90 312 409 17 50 (GMT+2 13.30- 16.30 hours only)

Fax: +90 312 409 18 91


Provide us with a recording of the phone conversation or a copy of the fax (including the transmission sent confirmation) and we will provide you with a 30% discount, offsetting the effects of our EUR based pricing in your region.


InstallAware will honor this discount on direct orders as well as reseller orders.


Thank you for helping us make the world a better place!


PS: Please do not be tempted to circumvent our pricing through proxies etc. InstallAware has to decline orders from companies/individuals based in the Schengen visa zone that have circumvented our geo-IP targeting.