Old 18th January 2019, 04:48   #1
Junior Member
Join Date: Jan 2019
Posts: 1
NSIS Installer Identification

I've scrounged around the internet trying to find a solution to this problem without much luck. I want to be able to identify whether an uninstaller is compiled using NSIS. A perfect example is Firefox. Is there a common offset associated with NSIS uninstallers that identifies the file as being a NSIS compiled exe?
Smorgan is offline   Reply With Quote
Old 18th January 2019, 08:24   #2
Major Dude
JasonFriday13's Avatar
Join Date: May 2005
Location: New Zealand
Posts: 882
If you have a look at the code in Source\exehead\fileform.c (lines 196 to 219), there is a magic code that the installer\uninstaller looks for when it's run.

"Only a MouseHelmet will save you from a MouseTrap" -Jason Ross (Me)
Wiki Profile
JasonFriday13 is offline   Reply With Quote
Old 18th January 2019, 11:30   #3
Anders's Avatar
Join Date: Jun 2002
Location: ${NSISDIR}
Posts: 5,192
Use Resource Hacker. A standard NSIS file will probably say something about Nullsoft or NSIS.ExeHead in the manifest. You could also look at the dialog resources. Compare them with a known NSIS installer and it should be easy to spot if they match.

But as Jason says, looking for the magic data with a hex editor is the most reliable way.

7-Zip might also be able to tell you by looking at the archive properties.

IntOp $PostCount $PostCount + 1
Anders is offline   Reply With Quote
Go Back   Winamp & Shoutcast Forums > Developer Center > NSIS Discussion

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump