I have to point out that Windows Installer (.msi) files aren't safer than executable installers. Windows installer files can define custom actions. These custom actions allow executing executable files or loading dynamic libraries to execute code. Currently, the safest Windows installation technology is the appx/msix packaging stuff because this doesn't allow custom actions.

The best profit of this standardization comes from the fact, that MSI installers (especially in minimal/quiet mode) are physically unable to show ads or in any other way annoy me during the installation (or even worse, during the uninstallation). Just msiexec /q and done; such a relief!

Many exe insatallers are just the Msi wrapped in an exe that extracts the msi and runs windows installer. This is largely a holdover from old versions of Windows, the exe wrapper will install an updated version of the Windows Installer if needed before installing the msi. Modern versions of Windows already have the latest installer version (kept updated by Windows update) so they don't need manual updates. In these cases the msi is a better choice cause it is typically a smaller download (in the age of dialup this was a big advantage). Exe installers are most likely offered these days just for people unsure about MSI files even though they have been around for more than 20 years

msi files are amazing when you’re deploying to a fleet of computers + installation flags are there as well

The "Person Break Computer" video was top notch. Loved it while ThioJoe was explaining in a reasonable way his stuff.

This channel has come such a long way-I remember his early videos being computer prank videos, and here he is explaining different installer properties 😂 we’ve matured together ThioJoe

One application that is a very good example of having a difference in the exe and the msi is Zoom. The exe only installs for the currently logged on user, while the msi installs the application for all users. So if you are going install zoom on a computer that has several user or are connected to a domain you will have use the msi, otherwise only the one installing the program will be able to use it.

I love seeing an MSI as a setup file, since it basically guarantees that I won't have to worry about any clunky custom-made non-native UIs that usually lag and aren't able to be dragged around n stuff. MSI files always install in one uniform way that feels comfortable because it fits in with the rest of the OS. Edit: Read the replies for more info, pretty cool stuff

This guys fire at turning an answer to a simple question, into an EXACTLY 10 minute video, lol.

Two more points: MSI is managed, I have had cases where trying to start a program actually starts repairs; then finally starts it (Seen somewhere in the XP - 7 era) MSI have some install "on demand" feature, but I have not looked more into it.

Another advantage for regular users AND enterprises is that MSIs are ALWAYS consistent with windows ui and ux. EXEs might contain crap GUIs

MSI files also allow for the use of MST (Microsoft Transform) files. MST files allow for configuration of different deployments of of the MSI. Examples include specifying different installation directories, adding files to be included/copied in the install, and specifying installation information required at installation, such as User Name, Organization Name, and/or software key.

Sometimes you can get a choice between EXE, MSI, or ZIP, which you have extract it yourself to a folder of your own choice (Self-install), safest option, you not executing anything, until you run the actual program of course, and hopefully you obtained that program data through a trusted source. Always use a sandbox when in doubt also.

Didn't even know about this, interesting topic, I'll be choosing MSI when given the choice, thanks!

The msi installer doesn't necessarily create an uninstall script. Most of the time a copy of the msi installer is copied in the system often sucking space (think about 500MB for vmware workstation and a few hundreds MB for assorted drivers and utilities). If you delete those, you will not be able to uninstall or even upgrade a piece of software as windows will look for a previous installer.

I feel that .msi instead of standing for "Microsoft (MS) Installer (I)" it should be "Microsoft (M) Software (S) Installer (I)" because it makes more sense.

Thanks for educating me! If possible, I prefer standalone executables most. They are selfcontained and don't need any installation directory. Makes it easy to move programs around different hard drives or computers.

after browsing through so many channels. Yours is by far the best. The explaining thod is so great and detailed even complex stuff is

9:35 I can tell you that as someone who thought they were pretty well caught up on their tech... you humbled the hell out of me. This is actually really incredible info to know for those outside of it. Best part is you had me thinking from the title to the end.

The problem with msi installer is often, that you *need* that specific msi file to uninstall (even for upgrading) the program. One of the best examples is LibreOffice - If you don't want the huge installer file always sitting there, you can't uninstall or even upgrade the program! (And there are multiple examples as malware in a msi)

Your videos are really informative, thank you!

My PC is made by msi 💀💀

The "downloader installers?" Despise them with a passion! Now, I get that they are making sure that every time the installer is run the latest version of the software is installed. However, when I download software, I expect to download software! It's like buying a car and only getting the body! The rest of it comes later! What if I did not want the latest version? What if I'm trying to resurrect an antique, that the latest will not run on? I also despise the self-deleting installers, as well.

Package deployment is art.. EXE,MSI,APPX,MSIX 100% depend if you can manage and fullfill this install silently. I tend to prefert msi for apps that support patches (msp) and tranforms (msp), so there is less downtime during maintenances. As enduser msi is fine since since you will probably upgrade the app often. As enterprise, depend of the app and insall features needed per app. I have seen broken installers as .exe and also broken .msi and trust me msi ones are hard to troubleshoot.

MSI has technically been replaced by appx/msix now, but those block some actions making the install safer but not as flexible as an MSI is. MSI is not safer than an executable as it does allow arbitraty code to run in the instalation.

Thank you for this. Im in a program that briefly talked about MSI and EXE but I was a bit lost as I felt they were not covering a lot. this helped me better understand it. thanks!

Just an FYI, often times an EXE installer is just a wrapper, called a boot strapper, containing the MSI. Often times the benefit to doing this is to install pre-requisite installations (like a specific .NET version) that the MSI format doesn't directly allow for. SOURCE: a guy who has to make these installers from time-to-time.

1:28 Wrong/misleading/requires correction. One can still execute code using so-called Custom Actions. They call a .dll file that the developer embeds, which contains an entry point to their code and passes parameters about the installation. This can be necessary for manipulating .config files based on install flags and parameters. Source: I use it at work.

It's also very common for .exe files to actually just contain the .msi itself along with extra stuff and it is just a self extracting installer.

🎯 Key Takeaways for quick navigation: 00:00 📦 Windows software installations can use either .exe or .msi files. 00:50 🧩 .exe files are executables, while .msi files are Microsoft installers with standardized installation instructions. 02:41 🏡 For personal use, .exe or .msi doesn't make a significant difference, but .msi is recommended for enterprise or IT administrators. 04:33 🔄 .msi files automatically create uninstall scripts for easier program removal. 05:54 🦠 .msi files are less likely to contain viruses compared to .exe files. 07:17 🔄 If given the choice, it's advisable to use .msi files for installation, especially for enterprise purposes. 09:40 📥 Finding .msi versions might require specific searches or visiting enterprise-focused pages for certain software. Made with HARPA AI

For the record, Metasploit has an option to wrap a payload into a MSI file so that it is executed as "postinstall script" when the MSI is installed. This helps bypass some security products that look closely at EXE files but only loosely at MSI files. So while most viruses nowadays are not distributed as MSI (and lot of them not as EXE either), they do exist.

It’s so grate actually getting useful tech knowledge from KZbin. I’m tired of all that super interesting stuff that I’ll never get to use in the real world.

thought it stood for "micro-star international" for a second

5:34 It is actually possible to run an exe from an msi as part of the installation process. I used this once to automatically uninstall an old version of a software, that wasn't compatible with the new installer system. So if someone wants to distribute a virus via a msi, this is possible.

Exe has one giant advantage tho. On the same computer, only 1 msi can install at a time. However, you can install as many exes as you want at the same time.

great video! im super amazed of this quality of videos being your first one, keep going and youll make it far! :D

should i install a virus in .exe or .msi?

5:35 Thiojoe: MSI Malware is very rare Meanwhile, Magniber, STRRAT, Adwind, Ghostrat, Younglotus, and Farfli Rat: It's our time to shine.

I’m assuming some people use .msi files for malware purposes since when you try to run a .msi file Windows (or maybe Firefox, I haven’t tried on any other browser) will give you a warning about the possibility of it containing a virus. No matter where you download it from

Always wondered, now I know! Thanks for the great explanation and video

You should totally install master sonic install (MSI) because its so much faster than excrement everlasting (EXE) installation

MSI files are basically just glorified CAB files, they're basically just ZIP files with some built-in instructions on where to extract the files, add some stuff to the registry, install services, make shortcuts, and such. The biggest benefit to MSI over EXE is that you can extract the contents of the installer and run it like a "portable" program a lot easier with an MSI than an with EXE. With an MSI, you can either directly extract it, or can do a "network install" with the /A switch which merely extracts the contents but doesn't add registry entries or services, make shortcuts, etc. With an EXE file, it might be possible to extract it if it's a ZIP, RAR, 7Z SFX (self-extracting executable), or you might need a tool or 7-zip plugin if it's a Wise, Inno, Installshield, NSIS, etc. file. (Note, in either case, simply extracting the contents instead of installing does work for most programs, but some do _require_ being installed because they need services or registry-entries or whatever in order to run, they _can't_ be run portable.)

.MSI files don't uninstall programs, rather they _de_-install them.

I always wondered the difference and then always put it behind me. Tha k you for looking into this!

I'm glad that my motherboard is an MSI, not EXE.

Man, I've always wanted to know this and forgot to investigate. Thank you! 💪

MSI files can contain what is called a "custom action", which is likely an executable. So either way, there is a risk of viruses. Best to check the Digital Signature of both. Right click.. properties.. digital signature.

In all the years and all the docs...never knew this. Thank you Joe!

A lot of .exe installers have the installation parameters included, and you can either use the favorite search engine, or try with something like installer.exe /? from the command line. Sometimes non-standard switches are included in help. Usually, developers try to keep it similar to MSI packages, so the /q might actually work. Fun (terms and conditions apply) fact: Firefox MSI installer, when distributed through the Endpoint Manager (Intune), is not detected as installed by default, but works flawlessly if you create the .intunewin package (specific package that can consist all the required files, if you need more like the config files or something else) with the same install logic. When you install the .msi application, it gets the unique code, where the information is written about the developer and the version/build, so it's easy to detect the vulnerable outdated version of the application. And is also easy to get rid of the outdated JRE, just push the msiexec /x with the product code followed by /qn - and live happily after. Yeah, for the regular use is indeed better to use .msi if there is a choice. P.S. Kudos to Mark Russinovich for PSTools, what a Man!

A very good explanation there Thio, its just a shame that quite often devlopers and providers of the software do not give the required information of silent install switches or permissions their applications need, often defaulting to oh just have the user be an administrator. That advice is wrong on so many levels these days and from an enterprise perspective. The other worrying trend in particular with .exe files is to get around the administrative permissions in some cases they have started installing the application to %appdata% of the user profile which effectively makes the application unmanageable on shared devices etc.

Using Chocolatey makes all this so much easier 1 command and im up and running with the software installed

the advantage of MSI over and EXE format is that you can scrutinize its content without having to install it. you can check on the database instructions, and even dump the embedded media. on the context of which one is safe, it basically depends on who and how they are crafted. in terms of manageability on the installed components, again this would depend on how the program structure is designed. many software products use EXE installer so they can package multiple MSIs into one package; and many EXE installers basically are just a bootstrap to run msiexec to install the embedded MSI file/s.

funny enough, most software "installing" for Linux opening the file and coping everything into a folder. I never understood why windows had to make this so overly complex. Even Macs are dead simple. Because for some reason Windows wants files in diffrent places from a software install, rather than just all in one location.

I rarely see MSI, only seen in chrome desktop remote... But it makes more sense to choose MSI if possible...

I'm missing: - MSIX - APPX - APPXBundle

If you can't find an .msi, if you install the .exe, you can usually find the .msi for it in C:\Windows\Installer. Usually if you dig into the details tab of the properties you can figure out what it is. Going off the top of my mind but here's how I usually find it: $msis = Get-ChildItem -Path "C:\Windows\Installer" -include *.msi | Foreach-Object { Get-AppLockerFileInformation $_ } $msis | Where-Object { $_.Publisher -like "*Firefox*" } | Select-Object -ExpandProperty FullName Replace firefox with whatever, may need a tweak or two.

Thats the reason to use iobit uninstaller (install monitor) which tracks down what it installed (exe or msi) and removes it also fully - works like a charm. Also macOS has big problems there in the install world, when you do not install it via store, then you have to remeber that you installed this programm this way and you have to uninstall it with an uninstall script from the program itself. I really don't understand why they do not have a container for each app and so it can be removed without traces (windows s had this approach kind a as it allowed only store apps)

I’ve actually wondered about this recently! Good to know.

Ahh yes the .msi installer and .exe installer. Before I recently upgraded to Windows 11 (my computer did meet more than the minimum requirements for Windows 11, so I waited for my computer to get the upgrade), I had trouble installing programs through MSI files on Windows 10. I would get something like "MSI Server is not responding". I would keep on clicking on retry, and I pretty much have to wait hours for some software to update or install. Now at least on Windows 11, I've seen a ton of improvements in terms of performance. In fact I decided to upgrade to windows 11, because of how slow windows 10 is now. Now it's as fast as my Ubuntu installation (I sometimes get tired of using Windows, so I sometimes boot into Ubuntu whenever I need to do some programming or whenever I just don't want to use Windows for a few days).

You cleared one of my confusion. Thanks🐥😃

this guys eyes are so intense

Uninstalling an app that installed by msi is sooo convenient that it is alone a reason for me to use it. You can directly uninstall it from windows search/start menu but for exe, you have to uninstall it from control panel, and it usually gives the error as the app is still running. Even you thought you killed every process from task manager you still can't uninstall it...

actually I've never heard about msi files 😂

Thank Thio, you make computer information easy to understand.

".MSI file is not going to be a virus"? Then you say it is possible to install a virus through the .msi file. You are basically saying that if you want users to install a virus. bundle it inside an MSI file because you are assuring them that it is safe... That is a reason to put a virus in .msi over .exe. False sense of security. Microsoft Edge is a good example. Its a virus. Just try to get rid of it...

Do note that MSI isn't guaranteed to not be a virus. Apart from the classic "installer" tasks, they can define custom tasks which run bundled executables or scripts. In fact, software like Inno Setup uses this to create MSI packages, which just wrap the actual installer EXE but that allow compatibility like you mentioned. General software rules apply and you should never install software from untrusted sources.

I always thought MSI is an installer I was right XD

one thing i always consider before clicking on one of Thios videos is, "Will this help make my ethernet speeds 10x faster for free?", and the answer is yes. always yes.

Good explanation of exe and msi files, thanks! ... but can you please stop using these stock video clips, which are not really beneficial to your explanations? They're not even funny. One is more ridiculous than the next. Ok, Thanks, have a nice day!

As someone that works in a computer store the .msi are better and faster if you are going to install a program a few times a day. Keep everything on network drive and run a batch to auto install everything. Saving a minute per pc/laptop really ads up in the end of the day.

You are/were not alone! I pray you found what has worked for you!

Useful, I'll keep this in mind. Thanks.

Yaas! that's the topic which I want too, Love My dear Windows.

Transforms are a big advantage to MSI files. You can modify those instructions for install by attaching an mst to the msi for enterprise deployment.

Best soft soft Introduction Ever!!

Your back, great job man

Man, you're rocks! Thank You for your course !!

4:39 I'm using a desktop app that takes care of uninstalling any app that I tell it, as well as any leftover files, Revo Uninstaller Pro

Nice and clear explanation. Thank you.

ThioJoe - great edu!! I learned a lot, and APPRECIATE IT!!

as a linux user it is mandatory for me to inform you that almost all linux apps (packages) can be installed without any sort of risk because they are verified before hand and distributed though an app store (package manager such as pacman) and they downloaded files are once again veriefed on you own computer to make sure you got the prommised file and it didn't get intercepted or moddified

MSI is also great for creating ready to use Windows installation discs, with preinstalled software. but on the regular, i prefer EXE files since you can use the custom UI to setup preferences and many other things rather (for example choose to only install the Antivirus Protection part in a security suite, because the rest are always just bundled crap that slows down the computer)

Other installer technologies like Inno or old Wise have less overhead. MSI usually adds extra bloat to the system directory and the registry. Unfortunately, other vendors, such as InstallShield and Wise, have switched over to the MSI format under the hood. When they run, they extract an MSI and pass control to it. When Microsoft creates something, it is always complex with databases, XML and GUIDs. Often programs just need to have files extracted to a disk. But an MSI might index every single file in the registry. I have one program that is tightly coupled to the MSI. And when it is run without these registry entries, it triggers a "repair" to undo my attempts at debloating it. All installers include a log unless specifically disabled. What uninstallers fail to remove on any platform is entries created by the program later, after the installation has concluded. The uninstaller may include clauses to delete additional items. An Inno or old Wise package can be extracted to examine the contents. But with MSI you often get cabinets inside cabinets and all files named as hexadecimal numbers.

This isn't really a question about "should", as each program is built with different purposes. MSI's are typically for installer programs which then copy the main executable programs to the appropriate places, as selected by the user.

Excellent round up, I wish you made this video 10y ago when I started my career and was so confused about those sh*t x)

thanks dude !

Gonna add that stock video to my stock video collection.

What I always do to download Chrome is add *?standalone=1* to the URL before clicking the download button on the download page, and then I get the standalone EXE installer.

Thank you for all of your effort in your videos! If I may ask, what video editor do you use?

Thio joe is the only KZbin Computer Nerd that I actually find entertaining..... Don't judge me😐

I liked this video. For the normal user one advice: You should show the end fof the files in windows. Only than you can see, if it is really an .exe, .msi or another file-typ. If the file ending hidden in the preferences, it is more dangerous...

6:30 My recommendation for most users would be that torrents are more likely to be safe rather than a random website you found in bing. At least, as long as there are a couple peers sharing the file.

ty cuz ive been having a hard ti getting started.

The manageability of MSI is that on an Active Directory domain you can just drop a .msi into a Group Policy Object and all computers subject to that GPO will auto-install on boot.

Thanks! Informative!

Very good to know, thanks!

good to know, thanks so much!!

Most useful & clearly explained. Thank you.

Usually, the msi is a set of instructions for placing files and registries. However, lets take chrome enterprise msi. It does not have any files in its "file table"*1 . Instead it has custom actions running the installation through an executable "binary table"1*. A fake msi. 1) you need a program to see inside msi such as orca. It is basically a database.

Great to know this, thank you!