386_12_1.bin (C0000 to DFFFF) change offset to 0 (8086 0 to 7f are reserved interrupt and reset) data from 0 to 347 ASCII begins at 0:348 to 0:390 data from 391 to 4B4 data 00 from 4B5 to DC5 data from DC6 to F18 ASCII f19 to f30 data from F31 to 150d ascii 150e to 152f data from 1530 to 1570 data 00 from 1572 to 18f3 word data from 18f4 to 1A6B ASCII from 1A6C to 1B41 data from 1B42 to 1D3F data 00 from 1D40 to 2143 ASCII from 2144 to 2811 data from 2812 to 2836 word data from 2837 to 307F data 00 from 3080 to 30e7 data from 30e8 to 37e8 data 00 from 37e9 to 3a75 ascii from 3a76 to 3B45 data from 3B46 to 3B6D data 00 from 3B6E to 3D81 ascii from 3D82 to 3EbC data from 3EBD to 3Ec1 data 00 from 3Ec2 to 3F11 Ascii from 3F12 to 4722 data 00 from 4723 to 491F ascii from 4920 to 493F data from 4940 to 4949 data 00 from 494A to 4B5C ascii and data 00 from there. data FF from 7F5F to 908D CODE from 908E to ....stopped looking here 386_12_2.bin (E0000 to FFFFF) ;probably data from 0000 to 00D5... 00D6 db "Error, GDT full",0d,0a,00 00e8 db 01,14 00ea db "IN PROTECTED MODE ",00 db 00,00,00,0d,0a db "INTERRUPT at : " db "ECODE=, CPU HALTED",0d,0a,00 .... 0171 db "HALTED",0d,0a,00 0000:017a 55 push bp 0000:017b 8b ec mov bp,sp 0000:017d c7 06 0e 00 08 00 mov word [000e],0008 0000:0183 c7 06 10 00 10 00 mov word [0010],0010 0000:0189 b0 00 mov al,00 0000:018b 88 06 33 00 mov [0033],al 0000:018f b4 00 mov ah,00 0000:0191 89 06 06 00 mov [0006],ax 0000:0195 8b 06 06 00 mov ax,[0006] 0000:0199 81 f8 1f 00 cmp ax,001f 0000:019d 76 03 jbe 01a2 0000:019f e9 5c 00 jmp 01fe 0000:01a2 8b c8 mov cx,ax 0000:01a4 8b 06 02 00 mov ax,[0002] 0000:01a8 f7 e1 mul cx 0000:01aa 03 06 00 00 add ax,[0000] 0000:01ae 87 c1 xchg ax,cx 0000:01b0 51 push cx 0000:01b1 b9 08 00 mov cx,0008 ;....more code and data 0000:18dd 14 0e adc al,0e 0000:18df 50 push ax 0000:18e0 b8 00 00 mov ax,0000 0000:18e3 8b d0 mov dx,ax 0000:18e5 52 push dx 0000:18e6 50 push ax 0000:18e7 e8 8d ec call 0577 0000:18ea c4 5e 04 les bx,ss:[04+bp] 0000:18ed 26 c6 07 00 mov byte es:[bx],00 0000:18f1 b8 02 13 mov ax,1302 0000:18f4 0e push cs 0000:18f5 50 push ax 0000:18f6 b8 62 00 mov ax,0062 0000:18f9 1e push ds 0000:18fa 50 push ax 0000:18fb e8 79 ec call 0577 0000:18fe 5d pop bp 0000:18ff c2 06 00 ret 0006 ;all FF's, no code/data until: 0000:f000 b0 11 mov al,11 0000:f002 e6 c4 out c4,al 0000:f004 b0 50 mov al,50 0000:f006 e6 c6 out c6,al 0000:f008 b0 05 mov al,05 0000:f00a e6 c6 out c6,al 0000:f00c b0 19 mov al,19 0000:f00e e6 c6 out c6,al 0000:f010 b0 ff mov al,ff 0000:f012 e6 c6 out c6,al 0000:f014 b0 11 mov al,11 0000:f016 e6 c0 out c0,al 0000:f018 b0 20 mov al,20 0000:f01a e6 c2 out c2,al 0000:f01c b0 20 mov al,20 0000:f01e e6 c2 out c2,al 0000:f020 b0 1d mov al,1d 0000:f022 e6 c2 out c2,al 0000:f024 b0 ff mov al,ff 0000:f026 e6 c2 out c2,al 0000:f028 b0 82 mov al,82 ..... .... 0000:f538 58 pop ax 0000:f539 a3 58 02 mov [0258],ax 0000:f53c 58 pop ax 0000:f53d a3 56 02 mov [0256],ax 0000:f540 58 pop ax 0000:f541 a3 54 02 mov [0254],ax 0000:f544 8c d0 mov ax,ss 0000:f546 a3 5a 02 mov [025a],ax 0000:f549 8b c4 mov ax,sp 0000:f54b a3 5c 02 mov [025c],ax 0000:f54e 0f 20 c0 mov eax,cr0 0000:f551 66 a3 50 02 mov [0250],eax 0000:f555 c7 06 5e 02 40 00 mov word [025e],0040 0000:f55b 2e ff 9e 4a 00 call far cs:[004a+bp] ;all FF until... 0000:10000 dw 6605 dw 06BC ;all FF until... 0000:10010 dw 0180 dw 0280 dw 0000 dw FFFA 0000:10018 fa cli ;from reset jump 0000:10019 2e 8e 1e 00 00 mov ds,cs:[0000] 0000:1001e 2e 8e 16 02 00 mov ss,cs:[0002] 0000:10023 bc fe 07 mov sp,07fe 0000:10026 b8 5d f7 mov ax,f75d 0000:10029 8e c0 mov es,ax 0000:1002b bb 00 00 mov bx,0000 0000:1002e 26 8b 47 02 mov ax,es:[02+bx] 0000:10032 3d 00 00 cmp ax,0000 0000:10035 74 19 jz 0050 0000:10037 26 ff 2f jmp far es:[bx] 0000:1003a fa cli 0000:1003b 2e 8e 1e 00 00 mov ds,cs:[0000] 0000:10040 2e 8e 16 02 00 mov ss,cs:[0002] 0000:10045 bc fe 07 mov sp,07fe 0000:10048 b8 5d f7 mov ax,f75d 0000:1004b 8e c0 mov es,ax 0000:1004d bb 00 00 mov bx,0000 0000:10050 26 8b 47 06 mov ax,es:[06+bx] 0000:10054 3d 00 00 cmp ax,0000 0000:10057 74 23 jz 007c 0000:10059 26 ff 6f 04 jmp far es:[04+bx] 0000:1005d fa cli 0000:1005e a8 01 test al,01 0000:10060 74 05 jz 0067 0000:10062 2e ff 2e 04 00 jmp far cs:[0004] 0000:10067 2e 8e 1e 00 00 mov ds,cs:[0000] 0000:1006c 2e 8e 16 02 00 mov ss,cs:[0002] 0000:10071 bc fe 07 mov sp,07fe 0000:10074 bb 5d f7 mov bx,f75d 0000:10077 8e c3 mov es,bx 0000:10079 bb 00 00 mov bx,0000 0000:1007c fc cld 0000:1007d b8 80 00 mov ax,0080 0000:10080 8e c0 mov es,ax 0000:10082 33 ff xor di,di 0000:10084 b8 5a a5 mov ax,a55a 0000:10087 8b d8 mov bx,ax 0000:10089 f7 d3 not bx 0000:1008b 26 89 05 mov es:[di],ax 0000:1008e 26 39 05 cmp es:[di],ax 0000:10091 75 4d jnz 00e0 ;.... ..... :and more code... ; 0000:1af2b ff 16 b3 01 call [01b3] 0000:1af2f c3 ret 0000:1af30 55 push bp ;<---JUMP entry point 0000:1af31 8b ec mov bp,sp 0000:1af33 9c pushf 0000:1af34 fa cli 0000:1af35 1e push ds 0000:1af36 e8 02 2f call de3b 0000:1af39 ff 16 b7 01 call [01b7] 0000:1af3d 24 7f and al,7f 0000:1af3f 3c 03 cmp al,03 0000:1af41 74 24 jz af67 0000:1af43 3c 13 cmp al,13 0000:1af45 75 0a jnz af51 0000:1af47 ff 16 b5 01 call [01b5] 0000:1af4b 24 7f and al,7f 0000:1af4d 3c 11 cmp al,11 0000:1af4f 75 f6 jnz af47 0000:1af51 8a 46 06 mov al,ss:[06+bp] 0000:1af54 ff 16 b3 01 call [01b3] 0000:1af58 f6 06 2d 00 01 test byte [002d],01 0000:1af5d 74 0b jz af6a 0000:1af5f ff 16 b5 01 call [01b5] 0000:1af63 3c 03 cmp al,03 0000:1af65 75 03 jnz af6a 0000:1af67 e8 52 00 call afbc 0000:1af6a 1f pop ds 0000:1af6b 9d popf 0000:1af6c 5d pop bp 0000:1af6d ca 02 00 retf 0002 0000:1af70 9c pushf ;<---JUMP entry 0000:1af71 fa cli 0000:1af72 1e push ds 0000:1af73 e8 c5 2e call de3b 0000:1af76 f6 06 2d 00 01 test byte [002d],01 0000:1af7b 74 06 jz af83 0000:1af7d b0 c9 mov al,c9 0000:1af7f ff 16 b3 01 call [01b3] 0000:1af83 ff 16 b5 01 call [01b5] 0000:1af87 24 7f and al,7f 0000:1af89 3c 03 cmp al,03 0000:1af8b 75 03 jnz af90 0000:1af8d e8 2c 00 call afbc 0000:1af90 1f pop ds 0000:1af91 9d popf 0000:1af92 cb retf 0000:1af93 9c pushf ;<----JUMP entry point 0000:1af94 fa cli 0000:1af95 1e push ds 0000:1af96 e8 a2 2e call de3b 0000:1af99 f6 06 2d 00 01 test byte [002d],01 0000:1af9e 74 0c jz afac 0000:1afa0 b0 c3 mov al,c3 0000:1afa2 ff 16 b3 01 call [01b3] 0000:1afa6 ff 16 b5 01 call [01b5] 0000:1afaa eb 04 jmp afb0 0000:1afac ff 16 b7 01 call [01b7] 0000:1afb0 24 7f and al,7f 0000:1afb2 3c 03 cmp al,03 0000:1afb4 75 03 jnz afb9 0000:1afb6 e8 03 00 call afbc 0000:1afb9 1f pop ds 0000:1afba 9d popf 0000:1afbb cb retf 0000:1afbc c6 06 49 02 04 mov byte [0249],04 0000:1afc1 cc int 3 0000:1afc2 c3 ret 0000:1afc3 ff 16 b5 01 call [01b5] 0000:1afc7 50 push ax 0000:1afc8 b0 5c mov al,5c 0000:1afca ff 16 b3 01 call [01b3] 0000:1afce 58 pop ax 0000:1afcf c3 ret 0000:1afd0 1e push ds ;<---JUMP entry point 0000:1afd1 e8 67 2e call de3b 0000:1afd4 b8 08 00 mov ax,0008 0000:1afd7 f6 06 2d 00 01 test byte [002d],01 0000:1afdc 74 03 jz afe1 0000:1afde 0d 01 00 or ax,0001 0000:1afe1 1f pop ds 0000:1afe2 cb retf ;.... ; more code ; 0000:1d649 5d pop bp 0000:1d64a 06 push es 0000:1d64b 8b fc mov di,sp 0000:1d64d 83 c7 04 add di,04 0000:1d650 16 push ss 0000:1d651 07 pop es 0000:1d652 d1 e9 shr cx,1 0000:1d654 fc cld 0000:1d655 f3 repz 0000:1d656 a5 movs 0000:1d657 8e da mov ds,dx 0000:1d659 8b d8 mov bx,ax 0000:1d65b d1 e3 shl bx,1 0000:1d65d 2e ff a7 80 53 jmp cs:[5380+bx] 0000:1d662 8c db mov bx,ds ;<---JUMP entry point 0000:1d664 e8 d4 07 call de3b 0000:1d667 89 1e 48 03 mov [0348],bx 0000:1d66b eb ec jmp d659 0000:1d66d 50 push ax 0000:1d66e e8 4b d7 call adbc 0000:1d671 58 pop ax 0000:1d672 8a c4 mov al,ah 0000:1d674 e8 45 d7 call adbc 0000:1d677 c3 ret 0000:1d678 32 ed xor ch,ch 0000:1d67a 26 8a 0f mov cl,es:[bx] ; ;more code... ; 0000:1db23 f3 repz 0000:1db24 aa stosb 0000:1db25 c3 ret 0000:1db26 1e push ds ;<---JUMP entry point 0000:1db27 e8 11 03 call de3b 0000:1db2a e8 02 00 call db2f 0000:1db2d 1f pop ds 0000:1db2e cb retf 0000:1db2f d1 e0 shl ax,1 0000:1db31 d1 e0 shl ax,1 0000:1db33 8b f0 mov si,ax 0000:1db35 89 9c 56 03 mov [0356+si],bx 0000:1db39 8c 84 58 03 mov [0358+si],es 0000:1db3d c3 ret 0000:1db3e bb 00 00 mov bx,0000 0000:1db41 eb 08 jmp db4b 0000:1db43 bb 04 00 mov bx,0004 0000:1db46 eb 03 jmp db4b 0000:1db48 bb 08 00 mov bx,0008 0000:1db4b 8b 87 56 03 mov ax,[0356+bx] 0000:1db4f 0b 87 58 03 or ax,[0358+bx] 0000:1db53 75 03 jnz db58 0000:1db55 e9 1d ac jmp 8775 0000:1db58 53 push bx 0000:1db59 e8 e5 d6 call b241 0000:1db5c 5b pop bx 0000:1db5d ff 36 30 00 push [0030] 0000:1db61 06 push es 0000:1db62 33 c0 xor ax,ax 0000:1db64 50 push ax 0000:1db65 ff 9f 56 03 call far [0356+bx] 0000:1db69 c3 ret ; The following may be word data, note repeat of xx59 and xx43.. 0000:1db6a 77 59 ja dbc5 0000:1db6c 8d 59 c0 lea bx,[-40+bx+di] 0000:1db6f 59 pop cx 0000:1db70 52 push dx 0000:1db71 43 inc bx 0000:1db72 c5 43 cc lds ax,ss:[-34+bp+di] 0000:1db75 59 pop cx 0000:1db76 59 pop cx 0000:1db77 43 inc bx 0000:1db78 e3 59 jcxz dbd3 0000:1db7a 3a 5a a0 cmp bl,ss:[-60+bp+si] 0000:1db7d 35 1a 36 xor ax,361a 0000:1db80 46 inc si 0000:1db81 36 42 inc dx 0000:1db83 36 34 36 xor al,36 0000:1db86 53 push bx 0000:1db87 5a pop dx 0000:1db88 7c 5a jl dbe4 0000:1db8a 70 5a jo dbe6 0000:1db8c 23 05 and ax,[di] 0000:1db8e cd 2b int 2b 0000:1db90 43 inc bx 0000:1db91 2c d6 sub al,d6 0000:1db93 40 inc ax 0000:1db94 1c 5b sbb al,5b 0000:1db96 7c 2b jl dbc3 0000:1db98 83 2d ef sub word [di],-11 0000:1db9b 58 pop ax 0000:1db9c ea 59 2a 5a b9 jmp b95a:2a59 ; different disassembly... 0000:1db79 59 pop cx 0000:1db7a 3a 5a a0 cmp bl,ss:[-60+bp+si] 0000:1db7d 35 1a 36 xor ax,361a 0000:1db80 46 inc si 0000:1db81 36 42 inc dx 0000:1db83 36 34 36 xor al,36 0000:1db86 53 push bx 0000:1db87 5a pop dx 0000:1db88 7c 5a jl dbe4 0000:1db8a 70 5a jo dbe6 0000:1db8c 23 05 and ax,[di] 0000:1db8e cd 2b int 2b 0000:1db90 43 inc bx 0000:1db91 2c d6 sub al,d6 0000:1db93 40 inc ax 0000:1db94 1c 5b sbb al,5b 0000:1db96 7c 2b jl dbc3 0000:1db98 83 2d ef sub word [di],-11 0000:1db9b 58 pop ax 0000:1db9c ea 59 2a 5a b9 jmp b95a:2a59 0000:1dba1 db 01CH ; OR.... ; 0000:1dba2 83 fd 1c cmp bp,1c ;<--JUMP entry point 0000:1dba5 73 0f jae dbb6 0000:1dba7 9c pushf 0000:1dba8 fa cli 0000:1dba9 1e push ds 0000:1dbaa e8 8e 02 call de3b 0000:1dbad d1 e5 shl bp,1 0000:1dbaf 2e ff 96 2a 59 call cs:[592a+bp] 0000:1dbb4 1f pop ds 0000:1dbb5 9d popf 0000:1dbb6 cb retf 0000:1dbb7 e8 00 b0 call 8bba 0000:1dbba 8b 1e 3e 01 mov bx,[013e] 0000:1dbbe b9 01 00 mov cx,0001 0000:1dbc1 0a c0 or al,al 0000:1dbc3 74 07 jz dbcc 0000:1dbc5 8b 0e 45 01 mov cx,[0145] 0000:1dbc9 2b cb sub cx,bx 0000:1dbcb 41 inc cx 0000:1dbcc c3 ret ; ; more code... ; 0000:1dcec b9 00 04 mov cx,0400 ;<---JUMP entry point 0000:1dcef 90 nop 0000:1dcf0 e2 fd loop dcef 0000:1dcf2 33 c0 xor ax,ax 0000:1dcf4 8e c0 mov es,ax 0000:1dcf6 8b f8 mov di,ax 0000:1dcf8 b9 00 08 mov cx,0800 0000:1dcfb fc cld 0000:1dcfc f3 repz 0000:1dcfd ab stos 0000:1dcfe b8 40 00 mov ax,0040 0000:1dd01 8e d8 mov ds,ax 0000:1dd03 8e d0 mov ss,ax 0000:1dd05 bc 00 04 mov sp,0400 0000:1dd08 33 c0 xor ax,ax 0000:1dd0a 2e 81 3e a0 00 ff ff cmp word cs:[00a0],ffff 0000:1dd11 75 09 jnz dd1c 0000:1dd13 2e 81 3e a2 00 ff ff cmp word cs:[00a2],ffff 0000:1dd1a 74 29 jz dd45 0000:1dd1c a3 1e 01 mov [011e],ax 0000:1dd1f a3 22 01 mov [0122],ax 0000:1dd22 b8 03 00 mov ax,0003 0000:1dd25 50 push ax 0000:1dd26 2e ff 1e a0 00 call far cs:[00a0] 0000:1dd2b bb 40 00 mov bx,0040 0000:1dd2e 8e db mov ds,bx 0000:1dd30 8e d3 mov ss,bx 0000:1dd32 bc 00 04 mov sp,0400 0000:1dd35 81 3e 1e 01 34 12 cmp word [011e],1234 0000:1dd3b 75 08 jnz dd45 0000:1dd3d 81 3e 22 01 34 12 cmp word [0122],1234 0000:1dd43 74 05 jz dd4a 0000:1dd45 50 push ax 0000:1dd46 e8 13 00 call dd5c 0000:1dd49 58 pop ax 0000:1dd4a 0b c0 or ax,ax 0000:1dd4c 75 0b jnz dd59 0000:1dd4e 2e f6 06 9f 00 01 test byte cs:[009f],01 0000:1dd54 74 03 jz dd59 0000:1dd56 e9 1e bd jmp 9a77 0000:1dd59 e9 e2 a9 jmp 873e ; ; ;all code until.. ;..... .... 1Fa3a 5d pop bp 1Fa3b 1f pop ds 1fa3c ca 10 00 retf 0010 ; ;all FF until top of ROM: ; ;reset destination 1FF00 ea 08 00 01 f0 JMP F001:0008 ;F0018 1FF08 ea 14 00 00 ef JMP EF00:0014 ;EF014 ;all FF until.. 1FF70 JMP FE80:0000 ;FE800 1FF80 JMP 0020:4Fe8 ;051E8 <--RAM? 1FF85 mov cx,4000 mov ax,F000 mov es,ax mov di,8000 cld repz movs jmp ffa0 ; 1FFA0 EA AC 5A 24 F8 JMP F824:5aac ;FDCEC 1FFB8 ea 90 2d 24 f8 JMP F824:2d90 ;FAFD0 1FFC0 JMP F824:58E6 ;FDB26 1FFC8 JMP F824:5962 ;FDBA2 1FFD0 JMP F824:2Cf0 ;FAF30 1FFD8 JMP F824:2D30 ;FAf70 1FFe0 JMP f824:2d53 ;FAF93 1FFe8 JMP f824:5422 ;FD662 1FFF0 EA 00 00 F0 FF JMP FFF0:0000 ;reset, FFF00