I see. I never knew @PID used paths. It makes sense that windows won't give you WM_READ for a system process.
It's funny, though, that ProcessExplorer, which doesn't require elevation, will show you the fully-qualified name in a balloon if you hover on an exe name or if you look at the properties of such a process. I wonder how it's done.