Are you only looking or only want the path for all processes or just ones which actually have windows associated with them? I ask because the ones with windows are fairly easy to get then check the code given below. Also, will your app be compiled as 32-bit, 64-bit, or AnyCPU? This matters if you plan to run it as a 32-bit app on a 64-bit system...which prevents you from getting some process information.
Code:
#region Dependencies
using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Text;
#endregion
namespace TestApp
{
public static class AppMonitor
{
#region Interop
[DllImport("psapi.dll")]
private static extern uint GetModuleFileNameEx(IntPtr hProcess, IntPtr hModule, StringBuilder lpFilename, uint nSize);
[DllImport("psapi.dll")]
private static extern uint GetProcessImageFileName(IntPtr hProcess, StringBuilder lpImageFileName, uint nSize);
[DllImport("kernel32.dll")]
private static extern IntPtr OpenProcess(ProcessAccessFlags dwDesiredAccess, bool bInheritHandle, uint dwProcessId);
[DllImport("kernel32.dll")]
private static extern bool QueryFullProcessImageName(IntPtr hProcess, uint dwFlags, StringBuilder lpExeName, ref uint lpdwSize);
[DllImport("kernel32.dll")]
private static extern uint QueryDosDevice(string lpDeviceName, StringBuilder lpTargetPath, uint uuchMax);
[DllImport("kernel32.dll")]
private static extern IntPtr GetModuleHandle(string lpModuleName);
[DllImport("user32.dll")]
private static extern uint GetWindowThreadProcessId(IntPtr hWnd, out uint lpdwProcessId);
[DllImport("kernel32.dll")]
private static extern bool CloseHandle(IntPtr hObject);
[Flags]
private enum ProcessAccessFlags : uint
{
Read = 0x10, // PROCESS_VM_READ
QueryInformation = 0x400 // PROCESS_QUERY_INFORMATION
}
#endregion
private const uint PathBufferSize = 512; // plenty big enough
private readonly static StringBuilder _PathBuffer = new StringBuilder((int)PathBufferSize);
private static string GetExecutablePath(IntPtr hwnd)
{
if (hwnd == IntPtr.Zero) { return string.Empty; } // not a valid window handle
// Get the process id
uint processid;
GetWindowThreadProcessId(hwnd, out processid);
// Try the GetModuleFileName method first since it's the fastest.
// May return ACCESS_DENIED (due to VM_READ flag) if the process is not owned by the current user.
// Will fail if we are compiled as x86 and we're trying to open a 64 bit process...not allowed.
IntPtr hprocess = OpenProcess(ProcessAccessFlags.QueryInformation | ProcessAccessFlags.Read, false, processid);
if (hprocess != IntPtr.Zero)
{
try
{
if (GetModuleFileNameEx(hprocess, IntPtr.Zero, _PathBuffer, PathBufferSize) > 0)
{
return _PathBuffer.ToString();
}
}
finally
{
CloseHandle(hprocess);
}
}
hprocess = OpenProcess(ProcessAccessFlags.QueryInformation, false, processid);
if (hprocess != IntPtr.Zero)
{
try
{
// Try this method for Vista or higher operating systems
uint size = PathBufferSize;
if ((Environment.OSVersion.Version.Major >= 6) &&
(QueryFullProcessImageName(hprocess, 0, _PathBuffer, ref size) && (size > 0)))
{
return _PathBuffer.ToString();
}
// Try the GetProcessImageFileName method
if (GetProcessImageFileName(hprocess, _PathBuffer, PathBufferSize) > 0)
{
string dospath = _PathBuffer.ToString();
foreach (string drive in Environment.GetLogicalDrives())
{
if (QueryDosDevice(drive.TrimEnd('\\'), _PathBuffer, PathBufferSize) > 0)
{
if (dospath.StartsWith(_PathBuffer.ToString()))
{
return drive + dospath.Remove(0, _PathBuffer.Length);
}
}
}
}
}
finally
{
CloseHandle(hprocess);
}
}
return string.Empty;
}
public static string[] GetProcesses()
{
List<string> results = new List<string>();
Process[] procArr = Process.GetProcesses();
string tmp;
foreach (Process CurProc in procArr)
{
tmp = GetExecutablePath(CurProc.MainWindowHandle);
if (tmp != string.Empty)
{
results.Add(GetExecutablePath(CurProc.MainWindowHandle));
}
}
return results.ToArray();
}
}
}
Windows Accessing Log
Reply With Quote
Bookmarks