|This article needs additional citations for verification. (March 2010)|
|Developer(s)||FireDaemon Technologies Limited|
|Stable release||v3.7 (Build 2660) / March 2014|
|Operating system||Microsoft Windows XP, Vista, 2003, 2008, 7, 2008 R2, 8, 2012, 8.1, 2012 R2|
|Type||Operating system service management|
"'FireDaemon Pro'" is an operating system service management application. FireDaemon Pro allows you to install and run most standard Windows applications as a service. These include regular standard Windows executables as well as applications written in scripting or pcode languages such as Perl, Java, Python and Ruby. FireDaemon is popular amongst the online gaming community for running dedicated servers such as Half-Life, Call Of Duty and Battlefield.
It is possible to add services to Windows without FireDaemon or use other free tools found in the Windows Resource Kits. However, setting up services manually can be complicated and error prone as the Windows registry needs to be edited directly. Windows services by default will generally be restarted after a minimum of 1 minute has passed. However, FireDaemon proactively monitors the application and ensures a restart in under 5 seconds. This can be critical when using server based applications such as web servers, ftp servers, etc.
FireDaemon Pro is available in .msi or .exe a package. The installation packages don't contain any malware or spyware but may try to reconnect to the FireDaemon website to download additional components (e.g. Visual C++ Runtime) to ensure it works correctly.
FireDaemon is currently released as licensed software. In the past there was a free "Lite" version that was limited to a single service, but it has since been officially discontinued. It can be sourced by searching for "FireDaemon Lite".
FireDaemon is sometime unable to close all error popup windows for applications such as Source Dedicated Server. This is because FireDaemon only intercepts popups of type WS_POPUP and the window class is #32770. Workarounds include leaving the computer logged in rather than logged out or writing custom GUI automation scripts with tools such as AutoIT to automatically close popups. Windows Error Reporting can also interfere with the correct function FireDaemon and should generally be disabled.
FireDaemon has been used in numerous trojans and worms (e.g. Symantec: W32.Tkbot. Worm, Backdoor. Vmz, NAI: Generic Dropper.h, BAT/Mumu.worm.c) that exploit various security holes in Windows. Typically, an older or cracked version of FireDaemon will be included in the trojan/worm payload and is used to run tools that facilitate the establishment of botnets (e.g. IRC, FTP servers). The use of FireDaemon in botnets is well documented across several security forums as well as written about in several books on botnets and internet security (e.g. Hacking Exposed). Probably the best known botnet that includes FireDaemon is XDCC. Consequently, many anti-virus and anti-trojan products sometimes misidentify recent legitimate versions of FireDaemon as being a potential threat by performing "trojan like behaviour". Exclusion of the FireDaemon installation directories and binaries usually mitigates the issue.