Should I block it?

No, this file is 100% safe to run.

Additional versions

23, 0, 0, 14	37.50%
23, 0, 0, 9	62.50%

Relationships

Parent process

services.exe (Services and Controller app by Microsoft)

Related files

rsp2pclient.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
fwlibldr.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
fwvirlib.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
fwfs.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
fwcomp.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
fwfish.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
rfwlog.dll (Rising Antivirus 2011 by Beijing Rising Information Technology Corporation Limited)
scandeep.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
extmail.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
scansct.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
urutils.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
extcomp.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
extarch.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
extole.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
scanstub.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
scanbt.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)
scanravt.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited)

ravmond.exe

Rising AntiVirus 2011 by Beijing Rising Information Technology Corporation Limited (Signed)

Remove ravmond.exe

Version:	23, 0, 0, 9
MD5:	99490f146ff04911da9c7f9457e2ad5a
SHA1:	2956055a5cd435f06f6c469d80f532e18c54d183
SHA256:	3817b6196af2cc9d27a07306d19547ec4c9e141675876b8544a57ec49213eff5

What is ravmond.exe?

Belongs to Rising Antivirus by Rising, a Chinese software antivirus software company. Rising AV has real-time file monitor scanning as well as dynamic behavior analysis and web browser protection.

About ravmond.exe (from Beijing Rising Information Technology Corporation Limited)

“Rising Antivirus protects your computers against all types of viruses, Trojans, Worms, Rootkits and other malicious programs. Ease of use, Active Defense technology, Patented Unknown Virus Scan&Clean ”

Details

File name:	ravmond.exe
Publisher:	Beijing Rising Information Technology Co., Ltd.
Product name:	Rising AntiVirus 2011
Description:	ravmond
Typical file path:	C:\Program Files\rising\rav\ravmond.exe
File version:	23, 0, 0, 9
Product version:	23.00
Size:	258.25 KB (264,448 bytes)
Certificate
Issued to:	Beijing Rising Information Technology Corporation Limited
Authority (CA):	VeriSign
Expiration date:	Sunday, July 22, 2012
Digital DNA
PE subsystem:	Windows GUI
File packed:	No
.NET CLR:	No

More details

Programs

The following programs will install this file

Rising Personal Firewall

Beijing Rising Information Technology, Inc.

27% remove

Rising Antivirus

Beijing Rising Information Technology, Inc.

18% remove

“RISING Antivirus Free Edition protects your computers against all types of viruses, Trojans, Worms, Rootkits and other malicious programs. Easy to use, Active Defense technology, Patented Unknown Virus Scan and Clean technology and Patented Smartupdate technology make RISING Antivirus install and forget product and entitles you to focus on your own jobs with your computer. Zero-Day Computer Security Protection with Rising Cloud Secu...”

Behaviors

Services

Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)

'RsRavMon' (Rav Service)
RsRavMon

Network connections

[TCP] 211.103.159.74:80

Resource utilization

(Note: statistics below are averages based on a minimum sample size of 200 unique participants)

Averages

CPU
Total CPU:	0.06798703%	0.028634%
Kernel CPU:	0.03725336%	0.013761%
User CPU:	0.03073366%	0.014873%
Kernel CPU time:	132,774 ms/min	100,923,805ms/min
Context switches:	107/sec	284/sec
Memory
Private memory:	65.75 MB	21.59 MB
Private (maximum):	35.61 MB
Private (minimum):	7.88 MB
Non-paged memory:	65.75 MB	21.59 MB
Virtual memory:	328.03 MB	140.96 MB
Virtual memory (peak):	362.98 MB	169.69 MB
Working set:	17.81 MB	18.61 MB
Working set (peak):	77.81 MB	37.95 MB
Resource allocations
Threads:	47	12
Handles:	698	600

Process properties

Integrety level:	System
Platform:	32-bit
Command line:	"C:\Program Files\rising\rav\ravmond.exe"
Owner:	SYSTEM
Windows Service
Service name:	RsRavMon
Display name:	Rav Service
Type:	Win32OwnProcess, InteractiveProcess
Parent process:	services.exe (Services and Controller app by Microsoft)

Threads

Averages

bacore.dll (Rising MBA by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.94948390%	0.272967%
Kernel CPU:	0.66722493%	0.107585%
User CPU:	0.28225897%	0.165382%
CPU cycles:	20,375,306/sec	5,741,424/sec
Context switches:	6/sec	79/sec
Memory:	604 KB	1.16 MB
monbase.dll (Rising AntiVirus 2010 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.55572113%
Kernel CPU:	0.22719111%
User CPU:	0.32853001%
CPU cycles:	12,743,420/sec
Context switches:	6/sec
Memory:	112 KB
ntdll.dll
Total CPU:	0.17255393%
Kernel CPU:	0.08853815%
User CPU:	0.08401578%
CPU cycles:	2,051,482/sec
Memory:	1.23 MB
sechost.dll
Total CPU:	0.09570883%
Kernel CPU:	0.04873385%
User CPU:	0.04697498%
CPU cycles:	3,170,272/sec
Context switches:	1/sec
Memory:	100 KB
rsindent.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.00852974%
Kernel CPU:	0.00635337%
User CPU:	0.00217638%
CPU cycles:	652,533/sec
Context switches:	5/sec
Memory:	528 KB
WINMM.dll
Total CPU:	0.00605514%
Kernel CPU:	0.00561362%
User CPU:	0.00044152%
CPU cycles:	227,853/sec
Memory:	200 KB
filemon.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.00581246%
Kernel CPU:	0.00378924%
User CPU:	0.00202322%
CPU cycles:	137,791/sec
Memory:	160 KB
rstask.dll (Rising Antivirus 2011 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.00094612%
Kernel CPU:	0.00081997%
User CPU:	0.00012615%
CPU cycles:	89,146/sec
Memory:	168 KB
rscommx2.dll (Rising AntiVirus 2008 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.00088400%
Kernel CPU:	0.00072632%
User CPU:	0.00015768%
CPU cycles:	370,854/sec
Context switches:	4/sec
Memory:	144 KB
cnt09.dll (Rising AntiVirus 2010 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.00081983%
Kernel CPU:	0.00044144%
User CPU:	0.00037838%
CPU cycles:	159,606/sec
Memory:	536 KB
RavMonD.exe (main module)
Total CPU:	0.00075762%
Kernel CPU:	0.00041034%
User CPU:	0.00034728%
CPU cycles:	10,910/sec
Memory:	272 KB
combase.dll (Rising AntiVirus 2011 by Beijing Rising Information Technology Co., Ltd)
Total CPU:	0.00069800%
Kernel CPU:	0.00000000%
User CPU:	0.00069800%
CPU cycles:	451/sec
Memory:	228 KB

Common loaded modules

These are modules that are typiclaly loaded within the context of this process.

Distribution by Windows OS

OS version	distribution
Microsoft Windows XP	37.50%
Windows 7 Ultimate N	37.50%
Windows 7 Ultimate	25.00%

Distribution by country

United States installs about 37.50% of Rising AntiVirus 2011.

Distribution by PC manufacturer

PC Manufacturer	distribution
Hewlett-Packard	100.00%

Remove Adware and Spyware Programs, FREE Download!