HOWTO: Use I_QueryTagInformation
Process Explorer 12 includes a new feature whereby you can view service names associated with threads. To find out how this works, read this article by Alex Ion...
Month: March 2010
Get the image file name of any process from any user on Vista and above
On Vista and above there is an information class for NtQuerySystemInformation which I call SystemProcessImageNameInformation (88). (Note that I reverse-engineer...