1.    27 Jun 2017 #1
    Join Date : Aug 2015
    Posts : 47
    Windows 10

    How can I view all of the API calls in real time?


    I'm trying to see a sort of footprint of every action taken by a user on my computer. I've looked into audit policies but I'm not sure if this is what I need.

    Take this example: let's say that I move the cursor from point A to point B. At point B, I click on something (doesn't matter what). In the background, the computer is registering state 1, which is no movement, then state 2, which is the mouse's position being changed, then state 3, which is no movement, then state 4, which is the mouse click. How can I view the API calls used to create these states?
      My ComputerSystem Spec
  2.    27 Jun 2017 #2
    Join Date : May 2015
    Central IL
    Posts : 4,254
    Mac OS Sierra

    You would end up seeing millions of lines of calls. If you are trying to track mouse clicks, there are ways to watch the movements through simple VB.
      My ComputerSystem Spec
  3.    27 Jun 2017 #3
    Join Date : Jul 2015
    Posts : 185
    win 10 home

    At the consumer-level, one could use Sysinternal's ProcessMonitor to explore CPU activity, superficially. Of course, a minute of activity can produce tens of thousands of lines.

    One may have to enter the mythical Dark Net to, perhaps, acquire a mythical tool that can break the process further into API calls.
      My ComputerSystem Spec
  4.    27 Jun 2017 #4
    Join Date : Aug 2015
    Posts : 47
    Windows 10
    Thread Starter

    Quote Originally Posted by bro67 View Post
    You would end up seeing millions of lines of calls. If you are trying to track mouse clicks, there are ways to watch the movements through simple VB.
    Wait, although that sounds horrible, that's the base level of what I need. I can make a program to group these calls into things I care about and things I don't care about. I just need help getting starting on actually retrieving all those calls.

    But as a side-note, could you explain how I could view these movements using VB?
      My ComputerSystem Spec
  5.    27 Jun 2017 #5
    Join Date : May 2015
    Central IL
    Posts : 4,254
    Mac OS Sierra

    Plenty of examples out there for C/C++ and VB, or like on post #3, you can use the Sysinternal tool. Windows Event Log (Windows) Another tool is APImonitor.
      My ComputerSystem Spec

 


Similar Threads
Thread Forum
How can I view all of the API calls in real time?
I'm trying to see a sort of footprint of every action taken by a user on my computer. I've looked into audit policies but I'm not sure if this is what I need. Take this example: let's say that I move the cursor from point A to point B. At point...
General Support
Disable real-time protection.
I've only had Windows 10 for a few days and it's already annoyed me more than XP and Vista ever have combined. Right now my problem is the damn thing keeps enabling real-time protection for no apparent reason. I'm confused, was this software...
AntiVirus, Firewalls and System Security
Holo Microsoft finally shows the HoloLens' real field of view
Read more: Microsoft finally shows the HoloLens real field of view
Windows 10 News
Amazing real-time wind map (USA)
Click to zoom in on your area. Wind Map
Chillout Room
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 00:50.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums