.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:05:44.326135287Z | 84 | PC: 14d6f | Get verify flag |
| 2018-12-17T22:05:44.32854352Z | 84 | PC: 14d75 | Get verify flag |
| 2018-12-17T22:05:44.329770991Z | 44 | PC: 14d95 | Get time 0x14d95: lea ax, word ptr [bx + si + 0x18bc] 0x14d99: loopne 0x14d99 0x14d9b: add bh, al 0x14d9d: xchg ah, al 0x14d9f: mov ah, 0 0x14da1: int 0x13 0x14da3: cmp dh, bh 0x14da5: lea dx, word ptr [bx + si + 0x40b8] 0x14da9: sbb si, ax 0x14dab: xor bl, al 0x14dad: sar ax, cl 0x14daf: adc cl, al 0x14db1: adc bh, al 0x14db3: shl si, 1 0x14db5: mov ah, 0xf 0x14db7: int 0x10 0x14db9: add dh, 0x66 0x14dbc: adc ax, word ptr [0xe6e3] 0x14dc0: rol dh, cl 0x14dc2: cmc |
| 2018-12-17T22:05:44.331850755Z | 42 | PC: 14dc7 | Get date 0x14dc7: sub si, -0x80 0x14dca: mov ah, 0x2c 0x14dcc: int 0x21 0x14dce: cmc 0x14dcf: sub ax, si 0x14dd1: cmc 0x14dd2: dec al |
| 2018-12-17T22:05:44.334122523Z | 44 | PC: 14dce | Get time 0x14dce: cmc 0x14dcf: sub ax, si 0x14dd1: cmc 0x14dd2: dec al |
| 2018-12-17T22:05:44.335602064Z | 11 | PC: 14de0 | Get input status |
| 2018-12-17T22:05:44.337585935Z | 44 | PC: 14de4 | Get time 0x14de4: cmc 0x14de5: mov ax, 0x1a94 0x14de8: sub si, -0x3c 0x14deb: cmc 0x14dec: or si, 0x80e6 0x14df0: xchg dh, bh 0x14df2: add cl, al 0x14df4: rcr bl, cl 0x14df6: inc si 0x14df7: sub dx, -0x40 0x14dfa: push dx 0x14dfb: sub bl, byte ptr es:[0xe300] 0x14e00: push di 0x14e01: pop dx 0x14e02: cld 0x14e03: sub dh, byte ptr es:[0xe6c4] 0x14e08: pop dx 0x14e09: sahf 0x14e0a: mov si, word ptr [0xb080] 0x14e0e: cmp bl, al |
| 2018-12-17T22:05:44.349840452Z | 11 | PC: 152af | Get input status |
| 2018-12-17T22:05:44.352123375Z | 99 | PC: 153ad | Get DBCS lead byte table pointer |
| 2018-12-17T22:05:44.35316279Z | 47 | PC: 1544d | Get disk transfer address |
| 2018-12-17T22:05:44.354462557Z | 26 | PC: 15457 | Set disk transfer address |
| 2018-12-17T22:05:44.355365944Z | 78 | PC: 15488 | Find first file |
| 2018-12-17T22:05:44.359047161Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:44.361040264Z | 78 | PC: 15488 | Find first file |
| 2018-12-17T22:05:44.367159562Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:44.370961872Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\KEYB.COM') |
| 2018-12-17T22:05:44.378964142Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:44.380337833Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:44.391104054Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:44.393474846Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:44.395129185Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:44.743026057Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\KEYB.COM') |
| 2018-12-17T22:05:44.751537105Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:44.77575007Z | 48 | PC: 9ccef | Get DOS version |
| 2018-12-17T22:05:44.777349994Z | 51 | PC: 9cd0b | Get or set Ctrl-Break |
| 2018-12-17T22:05:44.778775796Z | 51 | PC: 9cd12 | Get or set Ctrl-Break |
| 2018-12-17T22:05:44.779651602Z | 42 | PC: 9cd19 | Get date 0x9cd19: push ax 0x9cd1a: shl bx, cl 0x9cd1c: shl ax, cl 0x9cd1e: mov di, word ptr [0xc883] 0x9cd22: or cl, byte ptr es:[bx + si] 0x9cd25: add si, 0x5d5f 0x9cd29: pop ax 0x9cd2a: shl di, cl 0x9cd2c: aam 0x9cd2e: shl cx, cl 0x9cd30: jae 0x9cd49 0x9cd32: sti 0x9cd33: lodsb al, byte ptr [si] 0x9cd35: lea ax, word ptr [bx + si] 0x9cd37: mov ah, 3 0x9cd39: int 0x10 0x9cd3b: sbb ah, ch 0x9cd3d: adc bx, si 0x9cd3f: mov ah, 0xb 0x9cd41: int 0x21 |
| 2018-12-17T22:05:44.7819274Z | 13 | PC: 9cd60 | Disk reset |
| 2018-12-17T22:05:44.78384127Z | 48 | PC: 9cdb8 | Get DOS version |
| 2018-12-17T22:05:44.785655281Z | 84 | PC: 9cddf | Get verify flag |
| 2018-12-17T22:05:44.787486315Z | 11 | PC: 9ce70 | Get input status |
| 2018-12-17T22:05:44.790608923Z | 13 | PC: 9ceb3 | Disk reset |
| 2018-12-17T22:05:44.792606244Z | 11 | PC: 9cedf | Get input status |
| 2018-12-17T22:05:44.795181786Z | 11 | PC: 9cf04 | Get input status |
| 2018-12-17T22:05:44.798477588Z | 11 | PC: 9cf29 | Get input status |
| 2018-12-17T22:05:44.801344147Z | 51 | PC: 9cf4a | Get or set Ctrl-Break |
| 2018-12-17T22:05:44.802290255Z | 25 | PC: 9cf55 | Get default drive |
| 2018-12-17T22:05:44.803515853Z | 11 | PC: 9cf63 | Get input status |
| 2018-12-17T22:05:44.806765719Z | 42 | PC: 9cf93 | Get date 0x9cf93: and al, 4 0x9cf96: mov ah, 0xb 0x9cf98: int 0x21 0x9cf9a: xchg dx, dx 0x9cf9c: rol bp, 1 0x9cf9e: sar dx, cl 0x9cfa0: sub ax, -0x77 0x9cfa3: sub cx, -0x75 0x9cfa6: cmp cl, byte ptr [0xe6] 0x9cfaa: push ds 0x9cfab: pop cx 0x9cfac: shr cl, 1 0x9cfae: mov ah, 0xb 0x9cfb0: int 0x21 0x9cfb2: jcxz 0x9cfc8 0x9cfb4: sbb al, byte ptr [bx + si] 0x9cfb6: rcr al, cl 0x9cfb8: add ch, byte ptr cs:[0x89f0] 0x9cfbd: sub cx, 0 0x9cfc1: shr cl, cl |
| 2018-12-17T22:05:44.809349919Z | 11 | PC: 9cf9a | Get input status |
| 2018-12-17T22:05:44.812447453Z | 11 | PC: 9cfb2 | Get input status |
| 2018-12-17T22:05:44.815752019Z | 13 | PC: 9cfd0 | Disk reset |
| 2018-12-17T22:05:44.817974103Z | 11 | PC: 9cfd4 | Get input status |
| 2018-12-17T22:05:44.820445734Z | 44 | PC: 9cfe3 | Get time 0x9cfe3: lea bp, word ptr [bx + si] 0x9cfe5: das 0x9cfe6: mov ah, 0x54 0x9cfe8: int 0x21 0x9cfea: shr al, 1 0x9cfec: add ah, byte ptr cs:[1] 0x9cff1: shl cx, cl 0x9cff3: dec cx 0x9cff4: add dl, al 0x9cff6: or ah, 0 0x9cff9: jne 0x9d005 0x9cffb: aad 0x9cffd: test si, 0x8953 0x9d001: mov cx, ax 0x9d003: aam 0x9d005: cmp word ptr [0x89c6], cx 0x9d009: xchg dh, ch 0x9d00b: sub cx, 0 0x9d00e: test byte ptr [0x110], bl 0x9d012: jne 0x9d024 |
| 2018-12-17T22:05:44.82269108Z | 84 | PC: 9cfea | Get verify flag |
| 2018-12-17T22:05:44.991697495Z | 13 | PC: 9d59c | Disk reset |
| 2018-12-17T22:05:44.993360114Z | 13 | PC: 9d5a1 | Disk reset |
| 2018-12-17T22:05:44.99533255Z | 84 | PC: 9d5ce | Get verify flag |
| 2018-12-17T22:05:44.996850876Z | 48 | PC: 9d5f3 | Get DOS version |
| 2018-12-17T22:05:44.998460429Z | 84 | PC: 9d5fc | Get verify flag |
| 2018-12-17T22:05:45.000416324Z | 84 | PC: 9d61b | Get verify flag |
| 2018-12-17T22:05:45.001669298Z | 48 | PC: 9d625 | Get DOS version |
| 2018-12-17T22:05:45.003165625Z | 42 | PC: 9d62f | Get date 0x9d62f: das 0x9d630: pop di 0x9d631: adc al, byte ptr [bx + si] 0x9d633: mov ah, 0x19 0x9d635: int 0x21 0x9d637: sub bx, 0x40 0x9d63a: sbb al, byte ptr es:[bp + di] 0x9d63d: mov bh, bh 0x9d63f: push dx 0x9d640: push cs 0x9d641: pop di 0x9d642: pop dx 0x9d643: aas 0x9d644: sbb ax, si 0x9d646: jcxz 0x9d648 0x9d648: jb 0x9d65f 0x9d64a: rcr di, cl 0x9d64c: sbb di, 0x43c6 0x9d650: or si, bx 0x9d652: add cl, 0xf8 |
| 2018-12-17T22:05:45.006362333Z | 25 | PC: 9d637 | Get default drive |
| 2018-12-17T22:05:45.007570719Z | 48 | PC: 9d68a | Get DOS version |
| 2018-12-17T22:05:45.008880085Z | 48 | PC: 9d68e | Get DOS version |
| 2018-12-17T22:05:45.010821708Z | 11 | PC: 9d699 | Get input status |
| 2018-12-17T22:05:45.0133307Z | 84 | PC: 9d69d | Get verify flag |
| 2018-12-17T22:05:45.014342593Z | 48 | PC: 9d6a3 | Get DOS version |
| 2018-12-17T22:05:45.017181357Z | 48 | PC: 9d6a7 | Get DOS version |
| 2018-12-17T22:05:45.018236896Z | 84 | PC: 9d6ca | Get verify flag |
| 2018-12-17T22:05:45.019352195Z | 64 | PC: 9b31b | Write file or device (Write 9412 bytes on handle 5) |
| 2018-12-17T22:05:45.150966071Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.153036388Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:45.159391802Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.162037151Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.170207635Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.181901397Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.19370957Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.201301618Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.208532233Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.216818012Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.224037675Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.230645653Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.237358481Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.243539002Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.248853112Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.255284311Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.260536616Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.266205958Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:45.27009839Z | 78 | PC: 15488 | Find first file |
| 2018-12-17T22:05:45.291810185Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.299350452Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\EDIT.COM') |
| 2018-12-17T22:05:45.307974794Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.310059406Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:45.316324447Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.318632965Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.320853164Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.331620217Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\EDIT.COM') |
| 2018-12-17T22:05:45.340087029Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.348753311Z | 13 | PC: 9ccb6 | Disk reset |
| 2018-12-17T22:05:45.350842809Z | 13 | PC: 9ccbd | Disk reset |
| 2018-12-17T22:05:45.353550882Z | 13 | PC: 9ccc4 | Disk reset |
| 2018-12-17T22:05:45.356035621Z | 13 | PC: 9ccd0 | Disk reset |
| 2018-12-17T22:05:45.360176894Z | 13 | PC: 9ccee | Disk reset |
| 2018-12-17T22:05:45.362430669Z | 11 | PC: 9ccfc | Get input status |
| 2018-12-17T22:05:45.366271833Z | 13 | PC: 9cd01 | Disk reset |
| 2018-12-17T22:05:45.368375826Z | 11 | PC: 9cd08 | Get input status |
| 2018-12-17T22:05:45.372164774Z | 13 | PC: 9cd88 | Disk reset |
| 2018-12-17T22:05:45.375409916Z | 13 | PC: 9cdac | Disk reset |
| 2018-12-17T22:05:45.403046241Z | 42 | PC: 9cf4b | Get date 0x9cf4b: sti 0x9cf4c: sbb bp, word ptr [0x2c74] 0x9cf50: mov ah, 3 0x9cf52: int 0x10 0x9cf54: cmp bh, 0xe9 0x9cf57: rcl al, cl 0x9cf59: mov ah, 0xd 0x9cf5b: int 0x21 0x9cf5d: cmp cx, 0x75 0x9cf60: mov ah, 0x2c 0x9cf62: int 0x21 0x9cf64: mov ah, 3 0x9cf66: int 0x10 0x9cf68: rol bx, cl 0x9cf6a: sti 0x9cf6b: mov ah, 1 0x9cf6d: int 0x13 0x9cf6f: repe scasb al, byte ptr es:[di] 0x9cf71: sti 0x9cf72: or bp, 0xfffd |
| 2018-12-17T22:05:45.405944387Z | 13 | PC: 9cf5d | Disk reset |
| 2018-12-17T22:05:45.409259893Z | 44 | PC: 9cf64 | Get time 0x9cf64: mov ah, 3 0x9cf66: int 0x10 0x9cf68: rol bx, cl 0x9cf6a: sti 0x9cf6b: mov ah, 1 0x9cf6d: int 0x13 0x9cf6f: repe scasb al, byte ptr es:[di] 0x9cf71: sti 0x9cf72: or bp, 0xfffd 0x9cf76: shl bp, 1 0x9cf78: and dh, byte ptr [bp + di] 0x9cf7a: rol cx, 1 0x9cf7c: adc bx, bx 0x9cf7e: mov ah, 3 0x9cf80: int 0x10 0x9cf82: rol bx, 1 0x9cf84: and dh, byte ptr [bx] 0x9cf86: xor ax, ax 0x9cf88: mov ah, 0xd 0x9cf8a: int 0x21 |
| 2018-12-17T22:05:45.412635763Z | 13 | PC: 9cf8c | Disk reset |
| 2018-12-17T22:05:45.414963707Z | 51 | PC: 9cfb3 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.417457564Z | 64 | PC: 9b31b | Write file or device (Write 7592 bytes on handle 5) |
| 2018-12-17T22:05:45.427814404Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.429652317Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:45.436655304Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.439125334Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.447362465Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.459308377Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.468391224Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.475482407Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.48262955Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.488934388Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.495037594Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.502541936Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.508046691Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.513582524Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.520100155Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.525557002Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.530928573Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.536884138Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:45.540710772Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.546701775Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\FORMAT.COM') |
| 2018-12-17T22:05:45.554118692Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.555839573Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:45.561318856Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.563753837Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.56576646Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.5762077Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\FORMAT.COM') |
| 2018-12-17T22:05:45.583908923Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.594247596Z | 51 | PC: 9cca5 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.59699689Z | 51 | PC: 9ccd9 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.598758959Z | 42 | PC: 9cd07 | Get date 0x9cd07: sub ax, si |
| 2018-12-17T22:05:45.601383124Z | 42 | PC: 9cd18 | Get date 0x9cd18: sbb ax, si |
| 2018-12-17T22:05:45.603735189Z | 13 | PC: 9cd21 | Disk reset |
| 2018-12-17T22:05:45.605769129Z | 42 | PC: 9cd25 | Get date 0x9cd25: loop 0x9cd25 0x9cd27: mov ah, 0x2a 0x9cd29: int 0x21 0x9cd2b: cmp ax, si |
| 2018-12-17T22:05:45.60807183Z | 42 | PC: 9cd2b | Get date 0x9cd2b: cmp ax, si |
| 2018-12-17T22:05:45.610565473Z | 42 | PC: 9cd40 | Get date 0x9cd40: adc di, 0x8566 0x9cd44: not si 0x9cd46: jcxz 0x9cd60 0x9cd48: rol ch, cl 0x9cd4a: cmc 0x9cd4b: sub ah, byte ptr [0xe24] 0x9cd4f: loopne 0x9cd4f 0x9cd51: sbb bh, byte ptr [bp + di] 0x9cd53: mov ah, 0xf 0x9cd55: int 0x10 0x9cd57: sbb ax, dx 0x9cd59: cmp byte ptr es:[bx], dh 0x9cd5c: sub cx, si 0x9cd5e: rcl si, cl 0x9cd60: cli 0x9cd61: adc si, -0x3f 0x9cd64: mov ah, 1 0x9cd66: int 0x13 0x9cd68: shl al, cl 0x9cd6a: mov ah, 0x2a |
| 2018-12-17T22:05:45.614894034Z | 42 | PC: 9cd6e | Get date 0x9cd6e: test word ptr [0x8004], ax 0x9cd72: rcl ax, cl 0x9cd74: rcl di, cl 0x9cd76: stc 0x9cd77: test bp, ax 0x9cd79: push cs 0x9cd7a: pop bx 0x9cd7b: shr cx, cl 0x9cd7d: sub di, bx 0x9cd7f: or dh, 0 0x9cd82: adc bh, 0x8b 0x9cd85: sub ax, ax 0x9cd87: adc si, bx 0x9cd89: and cl, 0xca 0x9cd8c: mov ah, 0x2c 0x9cd8e: int 0x21 0x9cd90: adc si, bx 0x9cd92: lodsb al, byte ptr [si] 0x9cd93: mov ah, 0x2a 0x9cd95: int 0x21 |
| 2018-12-17T22:05:45.61712252Z | 44 | PC: 9cd90 | Get time 0x9cd90: adc si, bx 0x9cd92: lodsb al, byte ptr [si] 0x9cd93: mov ah, 0x2a 0x9cd95: int 0x21 0x9cd97: jb 0x9cdaf 0x9cd99: mov ah, 0x54 0x9cd9b: int 0x21 0x9cd9d: shr dh, cl 0x9cd9f: mov ah, 0x19 0x9cda1: int 0x21 0x9cda3: sub al, byte ptr es:[0xbb66] 0x9cda8: loopne 0x9cda8 0x9cdaa: sbb dh, byte ptr [bx] 0x9cdac: test ah, 0 0x9cdaf: jbe 0x9cdb3 0x9cdb1: not ax 0x9cdb3: test ah, 0x74 0x9cdb6: sbb dx, 0x44 0x9cdb9: shr bh, 1 0x9cdbb: adc ah, 0x12 |
| 2018-12-17T22:05:45.61926928Z | 42 | PC: 9cd97 | Get date 0x9cd97: jb 0x9cdaf 0x9cd99: mov ah, 0x54 0x9cd9b: int 0x21 0x9cd9d: shr dh, cl 0x9cd9f: mov ah, 0x19 0x9cda1: int 0x21 0x9cda3: sub al, byte ptr es:[0xbb66] 0x9cda8: loopne 0x9cda8 0x9cdaa: sbb dh, byte ptr [bx] 0x9cdac: test ah, 0 0x9cdaf: jbe 0x9cdb3 0x9cdb1: not ax 0x9cdb3: test ah, 0x74 0x9cdb6: sbb dx, 0x44 0x9cdb9: shr bh, 1 0x9cdbb: adc ah, 0x12 0x9cdbe: mov ah, 0x2a 0x9cdc0: int 0x21 0x9cdc2: aas 0x9cdc3: mov ah, 0x19 |
| 2018-12-17T22:05:45.621993637Z | 84 | PC: 9cd9d | Get verify flag |
| 2018-12-17T22:05:45.623209882Z | 25 | PC: 9cda3 | Get default drive |
| 2018-12-17T22:05:45.624346691Z | 42 | PC: 9cdc2 | Get date 0x9cdc2: aas 0x9cdc3: mov ah, 0x19 0x9cdc5: int 0x21 0x9cdc7: aas 0x9cdc8: sbb ch, byte ptr [si] 0x9cdca: shr dh, cl 0x9cdcc: mov bx, 0x5c6 0x9cdcf: test si, 0xabe8 0x9cdd3: adc di, si 0x9cdd5: test bp, 0x8e0f 0x9cdd9: sbb dx, 0x4c 0x9cddc: test byte ptr [bx], dh 0x9cdde: sar ah, 1 0x9cde0: jbe 0x9cdea 0x9cde2: add dh, dh 0x9cde4: adc dh, 0x5d 0x9cde7: add dh, 0x57 0x9cdea: inc si 0x9cdeb: or si, 0xff89 0x9cdee: sbb ax, -0x36 |
| 2018-12-17T22:05:45.626731515Z | 25 | PC: 9cdc7 | Get default drive |
| 2018-12-17T22:05:45.627759065Z | 51 | PC: 9cdfc | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.628780811Z | 51 | PC: 9ce07 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.630151561Z | 84 | PC: 9ce1c | Get verify flag |
| 2018-12-17T22:05:45.632349373Z | 25 | PC: 9ce30 | Get default drive |
| 2018-12-17T22:05:45.633703531Z | 51 | PC: 9ce3c | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.635389352Z | 51 | PC: 9ce4c | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.638826004Z | 25 | PC: 9cea2 | Get default drive |
| 2018-12-17T22:05:45.644590432Z | 25 | PC: 9cf1d | Get default drive |
| 2018-12-17T22:05:45.646359134Z | 84 | PC: 9cf26 | Get verify flag |
| 2018-12-17T22:05:45.647403682Z | 25 | PC: 9cf5c | Get default drive |
| 2018-12-17T22:05:45.677191641Z | 42 | PC: 9d242 | Get date 0x9d242: cmp byte ptr [bp + si], dl 0x9d244: or dl, byte ptr [0xa226] 0x9d248: test dh, 0xc2 0x9d24b: mov ah, 0x2a 0x9d24d: int 0x21 0x9d24f: sbb dh, dl 0x9d251: mov ah, 0x2a 0x9d253: int 0x21 0x9d255: test word ptr [0x58e8], si 0x9d259: test ax, 0xe866 0x9d25d: cdq 0x9d25e: sbb cl, byte ptr [bx + di] 0x9d260: mov ax, 0x3300 0x9d263: int 0x21 0x9d265: retf 0x9d266: add ax, 0xc626 0x9d269: jp 0x9d27d 0x9d26b: sub ch, byte ptr [bp + si] 0x9d26d: call 0x9fc9b 0x9d270: and al, 0xb1 |
| 2018-12-17T22:05:45.680437677Z | 42 | PC: 9d24f | Get date 0x9d24f: sbb dh, dl 0x9d251: mov ah, 0x2a 0x9d253: int 0x21 0x9d255: test word ptr [0x58e8], si 0x9d259: test ax, 0xe866 0x9d25d: cdq 0x9d25e: sbb cl, byte ptr [bx + di] 0x9d260: mov ax, 0x3300 0x9d263: int 0x21 0x9d265: retf 0x9d266: add ax, 0xc626 0x9d269: jp 0x9d27d 0x9d26b: sub ch, byte ptr [bp + si] 0x9d26d: call 0x9fc9b 0x9d270: and al, 0xb1 0x9d272: push ds 0x9d273: xlatb 0x9d274: mov cl, 0x10 0x9d276: and ax, 0x3657 0x9d279: sub si, word ptr [di + 0x5812] |
| 2018-12-17T22:05:45.682477948Z | 42 | PC: 9d255 | Get date 0x9d255: test word ptr [0x58e8], si 0x9d259: test ax, 0xe866 0x9d25d: cdq 0x9d25e: sbb cl, byte ptr [bx + di] 0x9d260: mov ax, 0x3300 0x9d263: int 0x21 0x9d265: retf 0x9d266: add ax, 0xc626 0x9d269: jp 0x9d27d 0x9d26b: sub ch, byte ptr [bp + si] 0x9d26d: call 0x9fc9b 0x9d270: and al, 0xb1 0x9d272: push ds 0x9d273: xlatb 0x9d274: mov cl, 0x10 0x9d276: and ax, 0x3657 0x9d279: sub si, word ptr [di + 0x5812] 0x9d27d: stosb byte ptr es:[di], al 0x9d27e: call 0xa1827 0x9d281: sub bl, byte ptr [bx + si - 0x10] |
| 2018-12-17T22:05:45.684674178Z | 51 | PC: 9d265 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.68661898Z | 64 | PC: 9b31b | Write file or device (Write 8282 bytes on handle 5) |
| 2018-12-17T22:05:45.696946061Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.698645546Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:45.705235908Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.706927421Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.722309664Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.734522865Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.743742581Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.750810372Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.75897081Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.765752248Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.773460602Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.780856574Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.786198238Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.791489311Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.797364262Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.802916304Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.808468332Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.814940656Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:45.818790036Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.82533882Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\KEYB.COM') |
| 2018-12-17T22:05:45.833977539Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.835628303Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:45.842131586Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.844397505Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:45.848207361Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.854699741Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\SYS.COM') |
| 2018-12-17T22:05:45.862587881Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.86427345Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:45.870289763Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.871673095Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.873381786Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.88291818Z | 61 | PC: 9b31b | Open file (Filename = 'C:\DOS\SYS.COM') |
| 2018-12-17T22:05:45.889941234Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.898274696Z | 84 | PC: 9ccc3 | Get verify flag |
| 2018-12-17T22:05:45.900194869Z | 42 | PC: 9ccc8 | Get date 0x9ccc8: das 0x9ccc9: mov ah, 0xd 0x9cccb: int 0x21 0x9cccd: aad 0x9cccf: xor cx, word ptr [0xe8d2] 0x9ccd3: aad 0x9ccd5: clc 0x9ccd6: cmp byte ptr [0xd74], al 0x9ccda: sub di, 0xe800 0x9ccde: mov ah, 0x30 0x9cce0: int 0x21 0x9cce2: clc 0x9cce3: das 0x9cce4: cmp dl, byte ptr es:[bx + di] 0x9cce7: sar al, cl 0x9cce9: rol di, 1 0x9cceb: jmp 0x9ccee |
| 2018-12-17T22:05:45.902420976Z | 13 | PC: 9cccd | Disk reset |
| 2018-12-17T22:05:45.903910194Z | 48 | PC: 9cce2 | Get DOS version |
| 2018-12-17T22:05:45.906317195Z | 84 | PC: 9ccfe | Get verify flag |
| 2018-12-17T22:05:45.907921003Z | 51 | PC: 9cd07 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.909090738Z | 42 | PC: 9cd15 | Get date 0x9cd15: lahf 0x9cd16: clc 0x9cd17: sar bl, cl 0x9cd19: add ax, 0 0x9cd1c: sar bl, cl 0x9cd1e: cdq 0x9cd1f: jmp 0x9cd22 0x9cd21: fdivr st(6) 0x9cd23: les di, ptr [bp + si] 0x9cd25: ret 0x9cd27: push bx 0x9cd28: sar bl, cl 0x9cd2a: mov ah, 0x2a 0x9cd2c: int 0x21 0x9cd2e: mov ah, 0 0x9cd30: int 0x13 0x9cd32: mov ax, di 0x9cd34: add bx, 0x57 0x9cd37: push es 0x9cd38: pop ax |
| 2018-12-17T22:05:45.912195062Z | 42 | PC: 9cd2e | Get date 0x9cd2e: mov ah, 0 0x9cd30: int 0x13 0x9cd32: mov ax, di 0x9cd34: add bx, 0x57 0x9cd37: push es 0x9cd38: pop ax 0x9cd39: cmp byte ptr ds:[0x55fc], bh 0x9cd3e: and dh, byte ptr [bp + di] 0x9cd40: cmp byte ptr es:[0x8900], al 0x9cd45: rol di, 1 0x9cd47: clc 0x9cd48: aas 0x9cd49: add si, 0x3c 0x9cd4c: sbb ax, 0x77 0x9cd4f: mov cx, 0x840f 0x9cd52: cmp ax, word ptr es:[0x840f] 0x9cd57: ror ax, 1 0x9cd59: or al, 0xf 0x9cd5c: ror ax, cl 0x9cd5e: mov ax, 0x3300 |
| 2018-12-17T22:05:45.914777609Z | 51 | PC: 9cd63 | Get or set Ctrl-Break |
| 2018-12-17T22:05:45.91570285Z | 48 | PC: 9cd73 | Get DOS version |
| 2018-12-17T22:05:45.93784658Z | 64 | PC: 9b31b | Write file or device (Write 7615 bytes on handle 5) |
| 2018-12-17T22:05:45.947290516Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:45.948615978Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:45.955114503Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:45.957025658Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:45.966011127Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.977362251Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.986088797Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:45.993043807Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:45.999989799Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.006541772Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.012798293Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.020448869Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.025634309Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.031647634Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.037884107Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.044044966Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.049471891Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.05655222Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:46.059793479Z | 78 | PC: 15488 | Find first file |
| 2018-12-17T22:05:46.090069437Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.096801371Z | 61 | PC: 9b31b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:05:46.10347779Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.105088943Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:46.112814271Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.11454077Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:46.116567703Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.134565049Z | 61 | PC: 9b31b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:05:46.141451771Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.21751712Z | 64 | PC: 9b31b | Write file or device (Write 8306 bytes on handle 5) |
| 2018-12-17T22:05:46.224820518Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.226392494Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:46.231880159Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.233997604Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:46.242533488Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.254087239Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.259798209Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.265817783Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.278064533Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.284500252Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.290294769Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.296428845Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.302510458Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.308310032Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.315974578Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.322292337Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.328603515Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.335542389Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:46.339108771Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.345587644Z | 61 | PC: 9b31b | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:05:46.35317769Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.355193065Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:46.375873803Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.378019471Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:46.379772769Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.38952629Z | 61 | PC: 9b31b | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:05:46.397151941Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.405707516Z | 84 | PC: 9ccc3 | Get verify flag |
| 2018-12-17T22:05:46.40723308Z | 42 | PC: 9ccc8 | Get date 0x9ccc8: das 0x9ccc9: mov ah, 0xd 0x9cccb: int 0x21 0x9cccd: aad 0x9cccf: xor cx, word ptr [0xe8d2] 0x9ccd3: aad 0x9ccd5: clc 0x9ccd6: cmp byte ptr [0xd74], al 0x9ccda: sub di, 0xe800 0x9ccde: mov ah, 0x30 0x9cce0: int 0x21 0x9cce2: clc 0x9cce3: das 0x9cce4: cmp dl, byte ptr es:[bx + di] 0x9cce7: sar al, cl 0x9cce9: rol di, 1 0x9cceb: jmp 0x9ccee |
| 2018-12-17T22:05:46.410450884Z | 13 | PC: 9cccd | Disk reset |
| 2018-12-17T22:05:46.41238835Z | 48 | PC: 9cce2 | Get DOS version |
| 2018-12-17T22:05:46.414054365Z | 84 | PC: 9ccfe | Get verify flag |
| 2018-12-17T22:05:46.41621012Z | 51 | PC: 9cd07 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.417468083Z | 42 | PC: 9cd15 | Get date 0x9cd15: lahf 0x9cd16: clc 0x9cd17: sar bl, cl 0x9cd19: add ax, 0 0x9cd1c: sar bl, cl 0x9cd1e: cdq 0x9cd1f: jmp 0x9cd22 0x9cd21: fdivr st(6) 0x9cd23: les di, ptr [bp + si] 0x9cd25: ret 0x9cd27: push bx 0x9cd28: sar bl, cl 0x9cd2a: mov ah, 0x2a 0x9cd2c: int 0x21 0x9cd2e: mov ah, 0 0x9cd30: int 0x13 0x9cd32: mov ax, di 0x9cd34: add bx, 0x57 0x9cd37: push es 0x9cd38: pop ax |
| 2018-12-17T22:05:46.42126555Z | 42 | PC: 9cd2e | Get date 0x9cd2e: mov ah, 0 0x9cd30: int 0x13 0x9cd32: mov ax, di 0x9cd34: add bx, 0x57 0x9cd37: push es 0x9cd38: pop ax 0x9cd39: cmp byte ptr ds:[0x55fc], bh 0x9cd3e: and dh, byte ptr [bp + di] 0x9cd40: cmp byte ptr es:[0x8900], al 0x9cd45: rol di, 1 0x9cd47: clc 0x9cd48: aas 0x9cd49: add si, 0x3c 0x9cd4c: sbb ax, 0x77 0x9cd4f: mov cx, 0x840f 0x9cd52: cmp ax, word ptr es:[0x840f] 0x9cd57: ror ax, 1 0x9cd59: or al, 0xf 0x9cd5c: ror ax, cl 0x9cd5e: mov ax, 0x3300 |
| 2018-12-17T22:05:46.424609185Z | 51 | PC: 9cd63 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.42596576Z | 48 | PC: 9cd73 | Get DOS version |
| 2018-12-17T22:05:46.44992415Z | 64 | PC: 9b31b | Write file or device (Write 7615 bytes on handle 5) |
| 2018-12-17T22:05:46.466104283Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.467550838Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:46.475894193Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.477839862Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:46.486142267Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.496815215Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.502685372Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.508770767Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.520267903Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.531195312Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.537729214Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.551288918Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.557217695Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.563262779Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.57034115Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.576394904Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.582496015Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.589638248Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:46.592915693Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.600286194Z | 61 | PC: 9b31b | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:05:46.607365683Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.609058278Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:46.616505928Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.618593283Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:46.620665643Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.631672903Z | 61 | PC: 9b31b | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:05:46.638866858Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.65830556Z | 51 | PC: 9ccc4 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.660956842Z | 84 | PC: 9ccd4 | Get verify flag |
| 2018-12-17T22:05:46.663581295Z | 51 | PC: 9ccf4 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.664864319Z | 42 | PC: 9cd35 | Get date 0x9cd35: sahf 0x9cd36: neg bx 0x9cd38: or dh, 0 0x9cd3b: xor bh, byte ptr [0x2ff] 0x9cd3f: xor al, byte ptr [0x300] 0x9cd43: rcl bl, cl 0x9cd45: or ax, 0x200 0x9cd49: rcl ah, cl 0x9cd4b: add al, dh |
| 2018-12-17T22:05:46.668235781Z | 13 | PC: 9cd65 | Disk reset |
| 2018-12-17T22:05:46.670525008Z | 42 | PC: 9cd72 | Get date 0x9cd72: sub bh, byte ptr [bx] 0x9cd74: cmc 0x9cd75: sahf 0x9cd76: xor bl, dh 0x9cd78: adc ax, ax 0x9cd7a: sub cx, -0x80 0x9cd7d: jmp 0x9cd80 0x9cd7f: fistp qword ptr [bx + si + 0x3300] 0x9cd83: int 0x21 0x9cd85: lea cx, word ptr [bx + si] 0x9cd88: jmp 0x9cd8b |
| 2018-12-17T22:05:46.672992739Z | 51 | PC: 9cd85 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.675670784Z | 25 | PC: 9ce0a | Get default drive |
| 2018-12-17T22:05:46.678069035Z | 51 | PC: 9ce5c | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.679298765Z | 42 | PC: 9ce7d | Get date 0x9ce7d: mov ax, 0x3300 0x9ce80: int 0x21 0x9ce82: sbb di, di 0x9ce84: add si, bp 0x9ce86: jmp 0x9ce8b |
| 2018-12-17T22:05:46.682630105Z | 51 | PC: 9ce82 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.683747008Z | 84 | PC: 9ce8f | Get verify flag |
| 2018-12-17T22:05:46.685506903Z | 25 | PC: 9cecd | Get default drive |
| 2018-12-17T22:05:46.686988064Z | 51 | PC: 9cee5 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.687917029Z | 44 | PC: 9cef6 | Get time 0x9cef6: rol cx, 1 0x9cef8: sub cx, 0x42 0x9cefb: xor al, 0x28 0x9cefe: add dl, bl 0x9cf00: rol dh, cl 0x9cf02: add cl, dl 0x9cf04: and cl, ch 0x9cf06: dec dl 0x9cf08: add dl, al 0x9cf0a: lahf 0x9cf0b: sub cx, si 0x9cf0d: rol ax, cl 0x9cf0f: rol ah, cl 0x9cf11: sub dh, 0x61 0x9cf14: inc ch 0x9cf16: sahf 0x9cf17: adc ax, word ptr es:[0x7461] 0x9cf1c: add dl, ch 0x9cf1e: test word ptr [0x4100], dx 0x9cf22: add ax, 0x74 |
| 2018-12-17T22:05:46.690797251Z | 13 | PC: 9cf8c | Disk reset |
| 2018-12-17T22:05:46.692436404Z | 25 | PC: 9cf98 | Get default drive |
| 2018-12-17T22:05:46.693494484Z | 51 | PC: 9cf9d | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.695081691Z | 13 | PC: 9cfaf | Disk reset |
| 2018-12-17T22:05:46.831336729Z | 42 | PC: 9d593 | Get date 0x9d593: xor ch, ch 0x9d595: rol si, cl 0x9d597: shl bl, cl 0x9d599: rol dx, cl 0x9d59b: rol bp, cl 0x9d59d: or bp, dx 0x9d59f: xlatb 0x9d5a0: sbb dh, bl 0x9d5a2: xchg ax, cx 0x9d5a3: add bh, 0x6e 0x9d5a6: and al, byte ptr [bx] 0x9d5a8: neg ch 0x9d5aa: and bx, bp 0x9d5ac: xlatb 0x9d5ad: xor dl, 0x6f 0x9d5b0: xor bl, byte ptr [0x3a00] 0x9d5b4: cmc 0x9d5b5: rcl al, 1 0x9d5b7: xor al, 0x75 0x9d5ba: xchg ax, bp |
| 2018-12-17T22:05:46.833827085Z | 51 | PC: 9d5c3 | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.83598624Z | 25 | PC: 9d5ef | Get default drive |
| 2018-12-17T22:05:46.837394657Z | 51 | PC: 9d62f | Get or set Ctrl-Break |
| 2018-12-17T22:05:46.839052883Z | 64 | PC: 9b31b | Write file or device (Write 9254 bytes on handle 5) |
| 2018-12-17T22:05:46.850509169Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:46.851918767Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:46.858766506Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.860566612Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:46.868614057Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.879047224Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.884995093Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.890684633Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.901433754Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.912304411Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.917775264Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.924150939Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.929853486Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.935855402Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.947175913Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.958493985Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.969706677Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:46.976787025Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:46.978930348Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:46.983027701Z | 61 | PC: 9b31b | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:05:46.99015017Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:46.991822246Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:46.999269592Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:47.001173229Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:47.003232007Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.015557252Z | 61 | PC: 9b31b | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:05:47.022111106Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:47.031150706Z | 44 | PC: 9cca4 | Get time 0x9cca4: adc bh, ah 0x9cca6: neg al 0x9cca8: or di, 0 0x9ccab: jcxz 0x9ccbb 0x9ccad: and cx, 0x1d 0x9ccb0: sub ax, word ptr [0x12eb] 0x9ccb4: add al, 1 0x9ccb7: test byte ptr [0x100], al 0x9ccbb: and ch, 0x63 0x9ccbe: and di, 0xff83 0x9ccc1: scasb al, byte ptr es:[di] 0x9ccc2: rol ax, cl 0x9ccc4: cmp word ptr ds:[0xf], bp 0x9ccc9: mov bh, cl 0x9cccb: mov ah, 0x2a 0x9cccd: int 0x21 0x9cccf: or di, 5 0x9ccd2: sar bh, 1 0x9ccd4: jb 0x9ccf2 0x9ccd6: and bp, 0xffc0 |
| 2018-12-17T22:05:47.034205919Z | 42 | PC: 9cccf | Get date 0x9cccf: or di, 5 0x9ccd2: sar bh, 1 0x9ccd4: jb 0x9ccf2 0x9ccd6: and bp, 0xffc0 0x9ccd9: sub bx, word ptr cs:[0xcde8] 0x9ccde: test byte ptr [bx + si], bh 0x9cce0: ror di, cl 0x9cce2: shr bl, 1 0x9cce4: adc ax, ax 0x9cce6: and bh, 0xff 0x9cce9: ror bp, cl 0x9cceb: rol ax, cl 0x9cced: shr di, 1 0x9ccef: and al, 0xd0 0x9ccf2: test word ptr [0xb8a3], ax 0x9ccf6: add al, bl 0x9ccf8: test word ptr [0xfa17], cx 0x9ccfc: and ax, 0x38 0x9ccff: ror ax, cl 0x9cd01: test word ptr [0xf], bp |
| 2018-12-17T22:05:47.037278441Z | 84 | PC: 9cd11 | Get verify flag |
| 2018-12-17T22:05:47.038559821Z | 48 | PC: 9cd15 | Get DOS version |
| 2018-12-17T22:05:47.040655339Z | 13 | PC: 9cde5 | Disk reset |
| 2018-12-17T22:05:47.042452277Z | 25 | PC: 9cdeb | Get default drive |
| 2018-12-17T22:05:47.043932245Z | 13 | PC: 9ce0d | Disk reset |
| 2018-12-17T22:05:47.04646198Z | 13 | PC: 9ce29 | Disk reset |
| 2018-12-17T22:05:47.048311489Z | 25 | PC: 9ce7d | Get default drive |
| 2018-12-17T22:05:47.050452246Z | 25 | PC: 9ce8c | Get default drive |
| 2018-12-17T22:05:47.057759831Z | 48 | PC: 9cf3e | Get DOS version |
| 2018-12-17T22:05:47.0595047Z | 84 | PC: 9cf64 | Get verify flag |
| 2018-12-17T22:05:47.061901298Z | 13 | PC: 9cf77 | Disk reset |
| 2018-12-17T22:05:47.063522833Z | 84 | PC: 9cf7c | Get verify flag |
| 2018-12-17T22:05:47.06529011Z | 25 | PC: 9cfa9 | Get default drive |
| 2018-12-17T22:05:47.067584792Z | 64 | PC: 9b31b | Write file or device (Write 7596 bytes on handle 5) |
| 2018-12-17T22:05:47.074510811Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:47.075576609Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:47.082766209Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:47.084457357Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:47.093504408Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.104145322Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.110537978Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.117204257Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.123606703Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.12992Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.136800204Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.143043418Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.148759689Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.155167193Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.160759307Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.166746942Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.173725034Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.17961405Z | 79 | PC: 15488 | Find next file |
| 2018-12-17T22:05:47.182498847Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.188699107Z | 61 | PC: 9b31b | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:05:47.195328997Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:47.196762728Z | 63 | PC: 9b31b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:05:47.203318555Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:47.204751087Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:47.207022821Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.216937304Z | 61 | PC: 9b31b | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:05:47.223355166Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:47.231004934Z | 11 | PC: 9ccf0 | Get input status |
| 2018-12-17T22:05:47.233042488Z | 44 | PC: 9cd48 | Get time 0x9cd48: cld 0x9cd49: or al, byte ptr cs:[bx] 0x9cd4c: cmp ah, ah 0x9cd4e: mov dh, 0 0x9cd50: or dh, ah 0x9cd52: sar di, cl 0x9cd54: das 0x9cd55: aas 0x9cd56: and cl, byte ptr [si] 0x9cd58: sar si, cl 0x9cd5a: aad 0x9cd5c: neg cl 0x9cd5e: ror di, 1 0x9cd60: xor di, si 0x9cd62: cld 0x9cd63: mov bx, si 0x9cd65: mov ah, 0xb 0x9cd67: int 0x21 0x9cd69: sub cx, 0x8e2 0x9cd6d: cli |
| 2018-12-17T22:05:47.234688807Z | 11 | PC: 9cd69 | Get input status |
| 2018-12-17T22:05:47.244056912Z | 48 | PC: 9cdd9 | Get DOS version |
| 2018-12-17T22:05:47.261908167Z | 44 | PC: 9d1b8 | Get time 0x9d1b8: cmpsb byte ptr [si], byte ptr es:[di] 0x9d1b9: sbb di, di 0x9d1bb: sbb si, dx 0x9d1bd: mov ah, ah 0x9d1bf: mov ah, 0xb 0x9d1c1: int 0x21 0x9d1c3: mov ax, 0x3300 0x9d1c6: int 0x21 0x9d1c8: push ax 0x9d1c9: pop ax 0x9d1ca: neg dh 0x9d1cc: or dh, bh 0x9d1ce: push dx 0x9d1cf: pop bx 0x9d1d0: cmp byte ptr ds:[8], ah 0x9d1d5: sbb bl, byte ptr [0xc] 0x9d1d9: jmp 0x9d1e1 0x9d1db: mov ax, bx 0x9d1dd: add esp, 0x24 0x9d1e1: mov ah, 0x2a |
| 2018-12-17T22:05:47.263994527Z | 11 | PC: 9d1c3 | Get input status |
| 2018-12-17T22:05:47.266399039Z | 51 | PC: 9d1c8 | Get or set Ctrl-Break |
| 2018-12-17T22:05:47.267172704Z | 42 | PC: 9d1e5 | Get date 0x9d1e5: mov ah, 0x2c 0x9d1e7: int 0x21 0x9d1e9: mov ah, 0x2c 0x9d1eb: int 0x21 0x9d1ed: mov ah, 0x2a 0x9d1ef: int 0x21 0x9d1f1: sbb bl, dh 0x9d1f3: or al, 0 0x9d1f6: jmp 0x9d1fe 0x9d1f8: ret 0xa026 0x9d1fb: add byte ptr ds:[bp + 0xdb4], cl 0x9d200: int 0x21 0x9d202: sub di, si 0x9d204: aaa 0x9d205: or bl, al 0x9d207: jmp 0x9d20f 0x9d209: ret 0x9d20a: mov al, byte ptr es:[0x40] 0x9d20e: test dl, dl 0x9d210: rol byte ptr [bp + si - 0x2438], 0xeb |
| 2018-12-17T22:05:47.269243644Z | 44 | PC: 9d1e9 | Get time 0x9d1e9: mov ah, 0x2c 0x9d1eb: int 0x21 0x9d1ed: mov ah, 0x2a 0x9d1ef: int 0x21 0x9d1f1: sbb bl, dh 0x9d1f3: or al, 0 0x9d1f6: jmp 0x9d1fe 0x9d1f8: ret 0xa026 0x9d1fb: add byte ptr ds:[bp + 0xdb4], cl 0x9d200: int 0x21 0x9d202: sub di, si 0x9d204: aaa 0x9d205: or bl, al 0x9d207: jmp 0x9d20f 0x9d209: ret 0x9d20a: mov al, byte ptr es:[0x40] 0x9d20e: test dl, dl 0x9d210: rol byte ptr [bp + si - 0x2438], 0xeb 0x9d215: push es 0x9d216: mov ax, 0xcc |
| 2018-12-17T22:05:47.270829225Z | 44 | PC: 9d1ed | Get time 0x9d1ed: mov ah, 0x2a 0x9d1ef: int 0x21 0x9d1f1: sbb bl, dh 0x9d1f3: or al, 0 0x9d1f6: jmp 0x9d1fe 0x9d1f8: ret 0xa026 0x9d1fb: add byte ptr ds:[bp + 0xdb4], cl 0x9d200: int 0x21 0x9d202: sub di, si 0x9d204: aaa 0x9d205: or bl, al 0x9d207: jmp 0x9d20f 0x9d209: ret 0x9d20a: mov al, byte ptr es:[0x40] 0x9d20e: test dl, dl 0x9d210: rol byte ptr [bp + si - 0x2438], 0xeb 0x9d215: push es 0x9d216: mov ax, 0xcc 0x9d219: add byte ptr [bx + si], al 0x9d21b: cld |
| 2018-12-17T22:05:47.272453949Z | 42 | PC: 9d1f1 | Get date 0x9d1f1: sbb bl, dh 0x9d1f3: or al, 0 0x9d1f6: jmp 0x9d1fe 0x9d1f8: ret 0xa026 0x9d1fb: add byte ptr ds:[bp + 0xdb4], cl 0x9d200: int 0x21 0x9d202: sub di, si 0x9d204: aaa 0x9d205: or bl, al 0x9d207: jmp 0x9d20f 0x9d209: ret 0x9d20a: mov al, byte ptr es:[0x40] 0x9d20e: test dl, dl 0x9d210: rol byte ptr [bp + si - 0x2438], 0xeb 0x9d215: push es 0x9d216: mov ax, 0xcc 0x9d219: add byte ptr [bx + si], al 0x9d21b: cld 0x9d21d: nop 0x9d21e: mov ah, 0x2c |
| 2018-12-17T22:05:47.275276913Z | 13 | PC: 9d202 | Disk reset |
| 2018-12-17T22:05:47.276839517Z | 44 | PC: 9d222 | Get time 0x9d222: cmp ax, ax 0x9d224: or al, al 0x9d226: jmp 0x9d22b 0x9d228: pop ds 0x9d229: mov es, bx 0x9d22b: sar si, cl 0x9d22d: rol al, cl 0x9d22f: mov si, 0xdae8 0x9d232: cmp bx, word ptr [0x8ec4] 0x9d236: mov bx, ax 0x9d238: cli 0x9d239: aaa 0x9d23a: or cl, al 0x9d23c: mov ah, 0x2a 0x9d23e: int 0x21 0x9d240: sbb cl, dh 0x9d242: and al, 0 0x9d245: jmp 0x9d24d 0x9d247: sal byte ptr [bx + si + 0x2625], 0xa2 0x9d24c: inc ax |
| 2018-12-17T22:05:47.278877437Z | 42 | PC: 9d240 | Get date 0x9d240: sbb cl, dh 0x9d242: and al, 0 0x9d245: jmp 0x9d24d 0x9d247: sal byte ptr [bx + si + 0x2625], 0xa2 0x9d24c: inc ax 0x9d24d: or dl, dl 0x9d24f: or al, dh 0x9d251: rol dh, 1 0x9d253: rcr si, 1 0x9d255: or al, 0xde 0x9d258: jmp 0x9d260 0x9d25a: ret 0xa226 0x9d25d: sal al, 0x66 0x9d260: sub bh, 0xff 0x9d263: mov ah, 0x2c 0x9d265: int 0x21 0x9d267: cmpsb byte ptr [si], byte ptr es:[di] 0x9d268: test bp, 0x2454 0x9d26c: and ax, word ptr cs:[0] 0x9d271: neg cl |
| 2018-12-17T22:05:47.280952257Z | 44 | PC: 9d267 | Get time 0x9d267: cmpsb byte ptr [si], byte ptr es:[di] 0x9d268: test bp, 0x2454 0x9d26c: and ax, word ptr cs:[0] 0x9d271: neg cl 0x9d273: mov ah, 0xf 0x9d275: int 0x10 0x9d277: or dl, dh 0x9d279: mov bp, si 0x9d27b: ror dh, cl 0x9d27d: mov ah, 0xd 0x9d27f: int 0x21 0x9d281: cld 0x9d282: ror cx, cl 0x9d284: jmp 0x9d287 0x9d286: into 0x9d287: mov dh, al 0x9d289: jmp 0x9d291 0x9d28b: lds sp, ptr [0xc0a0] |
| 2018-12-17T22:05:47.282502623Z | 13 | PC: 9d281 | Disk reset |
| 2018-12-17T22:05:47.283755666Z | 64 | PC: 9b31b | Write file or device (Write 8344 bytes on handle 5) |
| 2018-12-17T22:05:47.290507334Z | 66 | PC: 9b31b | Move file pointer |
| 2018-12-17T22:05:47.291656373Z | 64 | PC: 9b31b | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:05:47.295804898Z | 87 | PC: 9b31b | Get or set file date and time |
| 2018-12-17T22:05:47.297470369Z | 62 | PC: 9b31b | Close file |
| 2018-12-17T22:05:47.303767433Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.3102556Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.313907077Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.317479794Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.321400832Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.325603028Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.33325852Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.341120035Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.348813131Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.356532498Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.364385341Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.371458763Z | 67 | PC: 9b31b | Get or set file attributes |
| 2018-12-17T22:05:47.376037607Z | 65 | PC: 9b31b | Delete file |
| 2018-12-17T22:05:47.379854183Z | 26 | PC: 15479 | Set disk transfer address |