1.
Windows Operating System
Processes
LAB 3
Nishant Chavan
[email protected]
� Processes
Table of Content
s
1. Processes Tab............................................................................................................... 2
2. Details Tab.................................................................................................................... 2
3. Performance Tab.......................................................................................................... 3
4. Resource Monitor.........................................................................................................3
5. Investigating Process Relationship with Services..........................................................4
6. Users Tab...................................................................................................................... 5
1
�1. Processes Tab
When we interact with Windows it may look like we can open up applications and software
but there plenty of background tasks and more specifically processes that make all of this
work.
In this lab we're going to learn how to view and manage running processes using the task
manager and understand the significance of processes in the operating system.
Right click on Taskbar > Task Manager > Processes
2. Details Tab
Right click on Taskbar > Task Manager > Details
Details tab is great but that's why just the processes tab exists for simple interactions such as
ending a task, we can also right click and end a task such as the task manager itself and it will
terminate the process.
2
�3. Performance Tab
Performance tab is great to get a graphical representation of CPU memory, disk and network
usage of the system this doesn't really break things down by resource usage by process but it
can give us a good visual overall indicator for how the system is performing and the general
usage across our machine and just like how the details tab provides more insight on
processes.
Right click on Taskbar > Task Manager > Performance
4. Resource Monitor
The resource monitor allows us to monitor in real time and it's really good because it actually
provides system resource usage and consumption of running processes.
It’s like having a central hub for processes, details and performance tab all inside of one so
we can get a line-by-line consumption list of what each process are doing with all the total
amount of resources that they require or might be trying to acquire.
3
�5. Investigating Process Relationship with Services
If we would like to identify which service is associated with which process then we can:
Right click on Taskbar > Task Manager > Details > Right click on any process > Go to
service(s)
As we can see there’s no actual service associated with the Task Manager because it only
runs when manually started by a user and it runs as a process when we open it, it doesn’t
operate as Windows service (which runs in the background independent of user login).
4
�Take a look at “IntelAnalyticsService.exe” process, it has “Intel Analytics Service” service
that runs and collects system data and analytics continuously in the background and provides
additional support for “IntelAnalyticsService.exe” process regardless of any user
interaction, so that’s why the process needs a service.
We should know how to identify what are typical or normal processes and what are typical or
normal services associated with the process and by analysing it we can establish a baseline
and if something crosses it we can know that something is wrong, ex: let's say we had
SSHDxy service running for an SSHD2 process that's not normal and that could be very
likely a cyber security problem.
6. Users Tab
In Users tab we can know which user is initiating which process and as we can see user
Nishant which is also the administrator is running the lists of processes as seen in the image
and is consuming 72% of memory.
END
