.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:40:29.644504713Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:40:29.646224519Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:40:29.647255103Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:40:29.648438918Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:40:29.650198415Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:40:29.651358803Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:40:29.652441295Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:40:29.655684988Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:40:29.656929266Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:40:29.65795307Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:40:29.663144758Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:40:29.664638083Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:40:29.665753976Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:40:29.667344093Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:40:29.668729384Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:40:29.670443122Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:40:29.672548611Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:40:29.673903709Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:40:29.675240371Z | 53 | PC: 13e82 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:40:29.677132552Z | 37 | PC: 13e97 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:40:29.678419603Z | 37 | PC: 13e9f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:40:29.679407135Z | 37 | PC: 13ea7 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:40:29.680908212Z | 37 | PC: 13eaf | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:40:29.683076885Z | 68 | PC: 1421f | I/O control for devices (Set for = '') |
| 2018-12-17T22:40:29.684650471Z | 48 | PC: 14a52 | Get DOS version |
| 2018-12-17T22:40:29.687246918Z | 26 | PC: 13c0f | Set disk transfer address |
| 2018-12-17T22:40:29.688694844Z | 78 | PC: 13c1b | Find first file |
| 2018-12-17T22:40:29.694726772Z | 60 | PC: 1489e | Create or truncate file |
| 2018-12-17T22:40:29.712858123Z | 65 | PC: 149e7 | Delete file (Filename = '\�') |
| 2018-12-17T22:40:29.723177757Z | 60 | PC: 1489e | Create or truncate file |
| 2018-12-17T22:40:29.731708702Z | 65 | PC: 149e7 | Delete file (Filename = 'A:\�') |
| 2018-12-17T22:40:29.738945411Z | 48 | PC: 14a52 | Get DOS version |
| 2018-12-17T22:40:29.740293865Z | 61 | PC: 1489e | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:40:29.744874572Z | 63 | PC: 14971 | Read file or device (Read 6528 bytes on handle 7) |
| 2018-12-17T22:40:29.754638061Z | 62 | PC: 148ee | Close file |
| 2018-12-17T22:40:29.757433695Z | 26 | PC: 13c0f | Set disk transfer address |
| 2018-12-17T22:40:29.758918013Z | 78 | PC: 13c1b | Find first file |
| 2018-12-17T22:40:29.766275136Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.767834484Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.771525626Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.777283917Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.780470155Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.781497091Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.785347163Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.786487384Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.789679131Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.790979876Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.794278606Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.795318518Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.798534616Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.79988933Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.802780147Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.803676963Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.807077081Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.808054159Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.811251431Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.812346377Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.815268276Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.816224968Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.819583917Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.82057502Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.823636576Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.824994702Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.828053417Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.828922255Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.833326725Z | 67 | PC: 13b98 | Get or set file attributes |
| 2018-12-17T22:40:29.843449988Z | 61 | PC: 1489e | Open file (Filename = '\TEST.EXE') |
| 2018-12-17T22:40:29.854976735Z | 63 | PC: 14971 | Read file or device (Read 6528 bytes on handle 7) |
| 2018-12-17T22:40:29.862839022Z | 66 | PC: 149d0 | Move file pointer |
| 2018-12-17T22:40:29.86412116Z | 64 | PC: 14971 | Write file or device (Write 6528 bytes on handle 7) |
| 2018-12-17T22:40:29.872437445Z | 66 | PC: 149d0 | Move file pointer |
| 2018-12-17T22:40:29.874180934Z | 64 | PC: 14971 | Write file or device (Write 6528 bytes on handle 7) |
| 2018-12-17T22:40:29.884175329Z | 67 | PC: 13b98 | Get or set file attributes |
| 2018-12-17T22:40:29.895702276Z | 62 | PC: 148ee | Close file |
| 2018-12-17T22:40:29.905633393Z | 61 | PC: 1489e | Open file (Filename = '\TEST.EXE') |
| 2018-12-17T22:40:29.916607632Z | 87 | PC: 13bdf | Get or set file date and time |
| 2018-12-17T22:40:29.918341557Z | 62 | PC: 148ee | Close file |
| 2018-12-17T22:40:29.928243249Z | 26 | PC: 13c0f | Set disk transfer address |
| 2018-12-17T22:40:29.929338118Z | 78 | PC: 13c1b | Find first file |
| 2018-12-17T22:40:29.939863954Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.941900408Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.944947594Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.94621793Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.949073716Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.949982841Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.952172816Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.954279086Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.956254765Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.957149948Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.960262115Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.961149238Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.963023696Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.964384753Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.966541086Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.967411334Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.969966068Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.971069384Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.973082249Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.974418051Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.9762859Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.977136378Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.979650932Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.980444823Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.982345236Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:29.983888869Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:29.999907244Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:30.000809423Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:30.004520727Z | 26 | PC: 13c33 | Set disk transfer address |
| 2018-12-17T22:40:30.005575014Z | 79 | PC: 13c38 | Find next file |
| 2018-12-17T22:40:30.017626238Z | 44 | PC: 13b2d | Get time 0x13b2d: xor ah, ah 0x13b2f: mov al, dl 0x13b31: les di, ptr [bp + 6] 0x13b34: stosw word ptr es:[di], ax 0x13b35: mov al, dh 0x13b37: les di, ptr [bp + 0xa] 0x13b3a: stosw word ptr es:[di], ax 0x13b3b: mov al, cl 0x13b3d: les di, ptr [bp + 0xe] 0x13b40: stosw word ptr es:[di], ax 0x13b41: mov al, ch 0x13b43: les di, ptr [bp + 0x12] 0x13b46: stosw word ptr es:[di], ax 0x13b47: pop bp 0x13b48: retf 0x10 0x13b4b: push bp 0x13b4c: mov bp, sp 0x13b4e: mov ch, byte ptr [bp + 0xc] 0x13b51: mov cl, byte ptr [bp + 0xa] 0x13b54: mov dh, byte ptr [bp + 8] |
| 2018-12-17T22:40:30.020521304Z | 42 | PC: 13af7 | Get date 0x13af7: xor ah, ah 0x13af9: les di, ptr [bp + 6] 0x13afc: stosw word ptr es:[di], ax 0x13afd: mov al, dl 0x13aff: les di, ptr [bp + 0xa] 0x13b02: stosw word ptr es:[di], ax 0x13b03: mov al, dh 0x13b05: les di, ptr [bp + 0xe] 0x13b08: stosw word ptr es:[di], ax 0x13b09: xchg ax, cx 0x13b0a: les di, ptr [bp + 0x12] 0x13b0d: stosw word ptr es:[di], ax 0x13b0e: pop bp 0x13b0f: retf 0x10 0x13b12: push bp 0x13b13: mov bp, sp 0x13b15: mov cx, word ptr [bp + 0xa] 0x13b18: mov dh, byte ptr [bp + 8] 0x13b1b: mov dl, byte ptr [bp + 6] 0x13b1e: mov ah, 0x2b |
| 2018-12-17T22:40:30.023248448Z | 48 | PC: 14a52 | Get DOS version |
| 2018-12-17T22:40:30.024461532Z | 26 | PC: 13c0f | Set disk transfer address |
| 2018-12-17T22:40:30.02627191Z | 78 | PC: 13c1b | Find first file |
| 2018-12-17T22:40:30.034405058Z | 48 | PC: 14a52 | Get DOS version |
| 2018-12-17T22:40:30.050706621Z | 67 | PC: 13b98 | Get or set file attributes |
| 2018-12-17T22:40:30.061805242Z | 61 | PC: 1489e | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:40:30.070465032Z | 66 | PC: 149d0 | Move file pointer |
| 2018-12-17T22:40:30.072833691Z | 63 | PC: 14971 | Read file or device (Read 6528 bytes on handle 7) |
| 2018-12-17T22:40:30.08324549Z | 66 | PC: 149d0 | Move file pointer |
| 2018-12-17T22:40:30.085652035Z | 64 | PC: 148cf | Write file or device (Write 0 bytes on handle 7) |
| 2018-12-17T22:40:30.095127367Z | 66 | PC: 149d0 | Move file pointer |
| 2018-12-17T22:40:30.098062346Z | 64 | PC: 14971 | Write file or device (Write 6528 bytes on handle 7) |
| 2018-12-17T22:40:30.1122053Z | 87 | PC: 13bdf | Get or set file date and time |
| 2018-12-17T22:40:30.114118167Z | 67 | PC: 13b98 | Get or set file attributes |
| 2018-12-17T22:40:30.125079427Z | 62 | PC: 148ee | Close file |
| 2018-12-17T22:40:30.132640081Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:40:30.13419318Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:40:30.135885943Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:40:30.138317115Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:40:30.139797748Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:40:30.141507913Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:40:30.143907665Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:40:30.145404671Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:40:30.146878837Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:40:30.149435838Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:40:30.150888336Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:40:30.15238903Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:40:30.154889247Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:40:30.156342724Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:40:30.157804341Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:40:30.160406619Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:40:30.161859819Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:40:30.163370637Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:40:30.165408039Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:40:30.166858713Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:40:30.168317529Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:40:30.170211257Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:40:30.171667479Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:40:30.173183224Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:40:30.174910797Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:40:30.176046282Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:40:30.177450804Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:40:30.178862462Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:40:30.179943931Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:40:30.181980993Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:40:30.183161573Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:40:30.184254204Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:40:30.186590713Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:40:30.188070503Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:40:30.18943651Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:40:30.190862196Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:40:30.192527108Z | 53 | PC: 13cf2 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:40:30.194189816Z | 37 | PC: 13cfb | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:40:30.197388672Z | 41 | PC: 13d7b | Parse filename |
| 2018-12-17T22:40:30.199304457Z | 41 | PC: 13d89 | Parse filename |
| 2018-12-17T22:40:30.200665424Z | 75 | PC: 13d94 | Execute program |
| 2018-12-17T22:40:30.224181958Z | 80 | PC: 1df99 | Set current PSP |
| 2018-12-17T22:40:30.225399763Z | 48 | PC: 1df9e | Get DOS version |
| 2018-12-17T22:40:30.227251302Z | 99 | PC: 24780 | Get DBCS lead byte table pointer |
| 2018-12-17T22:40:30.230917565Z | 101 | PC: 1e024 | Get extended country info |
| 2018-12-17T22:40:30.232911352Z | 99 | PC: 1e02a | Get DBCS lead byte table pointer |
| 2018-12-17T22:40:30.234512904Z | 74 | PC: 1e08c | Reallocate memory |
| 2018-12-17T22:40:30.236988235Z | 25 | PC: 1e0c3 | Get default drive |
| 2018-12-17T22:40:30.238771942Z | 37 | PC: 1db83 | Set interrupt vector (Interrupt = '34' AKA 'Random write') |
| 2018-12-17T22:40:30.240206095Z | 37 | PC: 1db8a | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:40:30.242388759Z | 37 | PC: 1db91 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:40:30.247956363Z | 74 | PC: 1cd2c | Reallocate memory |
| 2018-12-17T22:40:30.249630568Z | 72 | PC: 1cd6d | Allocate memory |
| 2018-12-17T22:40:30.252194063Z | 72 | PC: 1cda5 | Allocate memory |
| 2018-12-17T22:40:30.254447555Z | 72 | PC: 1cdad | Allocate memory |