static inline QString imageName(DWORD processId)
{
QString rc;
HANDLE handle = OpenProcess(PROCESS_QUERY_INFORMATION , FALSE, processId);
if (handle == INVALID_HANDLE_VALUE)
return rc;
WCHAR buffer[MAX_PATH];
DWORD bufSize = MAX_PATH;
if (queryFullProcessImageName(handle, 0, buffer, &bufSize))
rc = QString::fromUtf16(reinterpret_cast<const ushort*>(buffer));
CloseHandle(handle);
return rc;
}
static inline ProcessInfo processInfo(DWORD processId)
{
ProcessInfo pi;
HANDLE handle = OpenProcess(PROCESS_QUERY_INFORMATION, TOKEN_READ, processId);
if (handle == INVALID_HANDLE_VALUE)
return pi;
WCHAR buffer[MAX_PATH];
DWORD bufSize = MAX_PATH;
if (queryFullProcessImageName(handle, 0, buffer, &bufSize))
pi.imageName = QString::fromUtf16(reinterpret_cast<const ushort *>(buffer));
HANDLE processTokenHandle = NULL;
if (!OpenProcessToken(handle, TOKEN_READ, &processTokenHandle) || !processTokenHandle)
return pi;
DWORD size = 0;
GetTokenInformation(processTokenHandle, TokenUser, NULL, 0, &size);
if (GetLastError() == ERROR_INSUFFICIENT_BUFFER) {
QByteArray buf;
buf.resize(size);
PTOKEN_USER userToken = reinterpret_cast<PTOKEN_USER>(buf.data());
if (userToken
&& GetTokenInformation(processTokenHandle, TokenUser, userToken, size, &size)) {
SID_NAME_USE sidNameUse;
TCHAR user[MAX_PATH] = { 0 };
DWORD userNameLength = MAX_PATH;
TCHAR domain[MAX_PATH] = { 0 };
DWORD domainNameLength = MAX_PATH;
if (LookupAccountSid(NULL,
userToken->User.Sid,
user,
&userNameLength,
domain,
&domainNameLength,
&sidNameUse))
pi.processOwner = QString::fromUtf16(reinterpret_cast<const ushort *>(user));
}
}
CloseHandle(processTokenHandle);
CloseHandle(handle);
return pi;
}
