Windows 10: How can I view all of the API calls in real time?

  1.    27 Jun 2017 #1

    How can I view all of the API calls in real time?


    I'm trying to see a sort of footprint of every action taken by a user on my computer. I've looked into audit policies but I'm not sure if this is what I need.

    Take this example: let's say that I move the cursor from point A to point B. At point B, I click on something (doesn't matter what). In the background, the computer is registering state 1, which is no movement, then state 2, which is the mouse's position being changed, then state 3, which is no movement, then state 4, which is the mouse click. How can I view the API calls used to create these states?
      My ComputerSystem Spec

  2. bro67's Avatar
    Posts : 4,889
    Mac OS High Sierra 10.13.5
       27 Jun 2017 #2

    You would end up seeing millions of lines of calls. If you are trying to track mouse clicks, there are ways to watch the movements through simple VB.
      My ComputerSystem Spec

  3.    27 Jun 2017 #3

    At the consumer-level, one could use Sysinternal's ProcessMonitor to explore CPU activity, superficially. Of course, a minute of activity can produce tens of thousands of lines.

    One may have to enter the mythical Dark Net to, perhaps, acquire a mythical tool that can break the process further into API calls.
      My ComputerSystem Spec

  4.    27 Jun 2017 #4

    bro67 said: View Post
    You would end up seeing millions of lines of calls. If you are trying to track mouse clicks, there are ways to watch the movements through simple VB.
    Wait, although that sounds horrible, that's the base level of what I need. I can make a program to group these calls into things I care about and things I don't care about. I just need help getting starting on actually retrieving all those calls.

    But as a side-note, could you explain how I could view these movements using VB?
      My ComputerSystem Spec

  5. bro67's Avatar
    Posts : 4,889
    Mac OS High Sierra 10.13.5
       27 Jun 2017 #5

    Plenty of examples out there for C/C++ and VB, or like on post #3, you can use the Sysinternal tool. Windows Event Log (Windows) Another tool is APImonitor.
      My ComputerSystem Spec


 

Related Threads
I'm trying to see a sort of footprint of every action taken by a user on my computer. I've looked into audit policies but I'm not sure if this is what I need. Take this example: let's say that I move the cursor from point A to point B. At point...
Disable real-time protection. in AntiVirus, Firewalls and System Security
I've only had Windows 10 for a few days and it's already annoyed me more than XP and Vista ever have combined. Right now my problem is the damn thing keeps enabling real-time protection for no apparent reason. I'm confused, was this software...
Read more: Microsoft finally shows the HoloLens real field of view
Click to zoom in on your area. Wind Map
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 04:50.
Find Us