Created
October 2, 2019 15:45
-
-
Save dankox/5041bbac98cd34200f3074f98cd911b3 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| execve("/bin/ls", ["ls"], 0x7ffff0280720 /* 19 vars */) = 0 | |
| brk(NULL) = 0x7fffd011c000 | |
| access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) | |
| access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=22482, ...}) = 0 | |
| mmap(NULL, 22482, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f7194000 | |
| close(3) = 0 | |
| access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/lib/x86_64-linux-gnu/libselinux.so.1", O_RDONLY|O_CLOEXEC) = 3 | |
| read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\20b\0\0\0\0\0\0"..., 832) = 832 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=154832, ...}) = 0 | |
| mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f80f7190000 | |
| mmap(NULL, 2259152, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f80f6bd0000 | |
| mprotect(0x7f80f6bf5000, 2093056, PROT_NONE) = 0 | |
| mmap(0x7f80f6df4000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x24000) = 0x7f80f6df4000 | |
| mmap(0x7f80f6df6000, 6352, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f80f6df6000 | |
| close(3) = 0 | |
| access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/lib/x86_64-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3 | |
| read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\260\34\2\0\0\0\0\0"..., 832) = 832 | |
| fstat(3, {st_mode=S_IFREG|0755, st_size=2030544, ...}) = 0 | |
| mmap(NULL, 4131552, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f80f67d0000 | |
| mprotect(0x7f80f69b7000, 2097152, PROT_NONE) = 0 | |
| mmap(0x7f80f6bb7000, 24576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1e7000) = 0x7f80f6bb7000 | |
| mmap(0x7f80f6bbd000, 15072, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f80f6bbd000 | |
| close(3) = 0 | |
| access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/lib/x86_64-linux-gnu/libpcre.so.3", O_RDONLY|O_CLOEXEC) = 3 | |
| read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0 \25\0\0\0\0\0\0"..., 832) = 832 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=464824, ...}) = 0 | |
| mmap(NULL, 2560264, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f80f6550000 | |
| mprotect(0x7f80f65c0000, 2097152, PROT_NONE) = 0 | |
| mmap(0x7f80f67c0000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x70000) = 0x7f80f67c0000 | |
| close(3) = 0 | |
| access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/lib/x86_64-linux-gnu/libdl.so.2", O_RDONLY|O_CLOEXEC) = 3 | |
| read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0P\16\0\0\0\0\0\0"..., 832) = 832 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=14560, ...}) = 0 | |
| mmap(NULL, 2109712, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f80f6340000 | |
| mprotect(0x7f80f6343000, 2093056, PROT_NONE) = 0 | |
| mmap(0x7f80f6542000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0x7f80f6542000 | |
| close(3) = 0 | |
| access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/lib/x86_64-linux-gnu/libpthread.so.0", O_RDONLY|O_CLOEXEC) = 3 | |
| read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0000b\0\0\0\0\0\0"..., 832) = 832 | |
| fstat(3, {st_mode=S_IFREG|0755, st_size=144976, ...}) = 0 | |
| mmap(NULL, 2221184, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f80f6120000 | |
| mprotect(0x7f80f613a000, 2093056, PROT_NONE) = 0 | |
| mmap(0x7f80f6339000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x19000) = 0x7f80f6339000 | |
| mmap(0x7f80f633b000, 13440, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f80f633b000 | |
| close(3) = 0 | |
| mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f80f7180000 | |
| arch_prctl(ARCH_SET_FS, 0x7f80f7181040) = 0 | |
| mprotect(0x7f80f6bb7000, 16384, PROT_READ) = 0 | |
| mprotect(0x7f80f6339000, 4096, PROT_READ) = 0 | |
| mprotect(0x7f80f6542000, 4096, PROT_READ) = 0 | |
| mprotect(0x7f80f67c0000, 4096, PROT_READ) = 0 | |
| mprotect(0x7f80f6df4000, 4096, PROT_READ) = 0 | |
| mprotect(0x7f80f741e000, 8192, PROT_READ) = 0 | |
| mprotect(0x7f80f7027000, 4096, PROT_READ) = 0 | |
| munmap(0x7f80f7194000, 22482) = 0 | |
| set_tid_address(0x7f80f7181310) = 193 | |
| set_robust_list(0x7f80f7181320, 24) = 0 | |
| rt_sigaction(SIGRTMIN, {sa_handler=0x7f80f6125cb0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f80f6132890}, NULL, 8) = 0 | |
| rt_sigaction(SIGRT_1, {sa_handler=0x7f80f6125d50, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f80f6132890}, NULL, 8) = 0 | |
| rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 | |
| prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=8192*1024}) = 0 | |
| statfs("/sys/fs/selinux", 0x7fffd8b9e920) = -1 ENOENT (No such file or directory) | |
| statfs("/selinux", 0x7fffd8b9e920) = -1 ENOENT (No such file or directory) | |
| brk(NULL) = 0x7fffd011c000 | |
| brk(0x7fffd013d000) = 0x7fffd013d000 | |
| openat(AT_FDCWD, "/proc/filesystems", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0444, st_size=0, ...}) = 0 | |
| read(3, "nodev\tsysfs\nnodev\trootfs\nnodev\tb"..., 4096) = 312 | |
| read(3, "", 4096) = 0 | |
| close(3) = 0 | |
| access("/etc/selinux/config", F_OK) = -1 ENOENT (No such file or directory) | |
| openat(AT_FDCWD, "/usr/lib/locale/locale-archive", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=1683056, ...}) = 0 | |
| mmap(NULL, 1683056, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f6e8c000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/share/locale/locale.alias", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=2995, ...}) = 0 | |
| read(3, "# Locale name alias data base.\n#"..., 4096) = 2995 | |
| read(3, "", 4096) = 0 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_IDENTIFICATION", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=252, ...}) = 0 | |
| mmap(NULL, 252, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f7199000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/x86_64-linux-gnu/gconv/gconv-modules.cache", O_RDONLY) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=26376, ...}) = 0 | |
| mmap(NULL, 26376, PROT_READ, MAP_SHARED, 3, 0) = 0x7f80f7192000 | |
| close(3) = 0 | |
| futex(0x7f80f6bbca08, FUTEX_WAKE_PRIVATE, 2147483647) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_MEASUREMENT", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=23, ...}) = 0 | |
| mmap(NULL, 23, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f718f000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_TELEPHONE", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=47, ...}) = 0 | |
| mmap(NULL, 47, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f718e000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_ADDRESS", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=131, ...}) = 0 | |
| mmap(NULL, 131, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f718d000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_NAME", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=62, ...}) = 0 | |
| mmap(NULL, 62, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f718c000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_PAPER", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=34, ...}) = 0 | |
| mmap(NULL, 34, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f718b000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_MESSAGES", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_MESSAGES/SYS_LC_MESSAGES", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=48, ...}) = 0 | |
| mmap(NULL, 48, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f718a000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_MONETARY", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=270, ...}) = 0 | |
| mmap(NULL, 270, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f7189000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_COLLATE", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=1516558, ...}) = 0 | |
| mmap(NULL, 1516558, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f5fad000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_TIME", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=3360, ...}) = 0 | |
| mmap(NULL, 3360, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f7188000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_NUMERIC", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=50, ...}) = 0 | |
| mmap(NULL, 50, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f7187000 | |
| close(3) = 0 | |
| openat(AT_FDCWD, "/usr/lib/locale/C.UTF-8/LC_CTYPE", O_RDONLY|O_CLOEXEC) = 3 | |
| fstat(3, {st_mode=S_IFREG|0644, st_size=199772, ...}) = 0 | |
| mmap(NULL, 199772, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f80f714f000 | |
| close(3) = 0 | |
| ioctl(1, TCGETS, {B38400 opost isig icanon echo ...}) = 0 | |
| ioctl(1, TIOCGWINSZ, {ws_row=34, ws_col=120, ws_xpixel=0, ws_ypixel=0}) = 0 | |
| openat(AT_FDCWD, ".", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 | |
| fstat(3, {st_mode=S_IFDIR|0777, st_size=4096, ...}) = 0 | |
| getdents(3, /* 60 entries */, 32768) = 2272 | |
| getdents(3, /* 0 entries */, 32768) = 0 | |
| close(3) = 0 | |
| fstat(1, {st_mode=S_IFCHR|0660, st_rdev=makedev(4, 1), ...}) = 0 | |
| ioctl(1, TCGETS, {B38400 opost isig icanon echo ...}) = 0 | |
| write(1, "' 1169167725.docx' '!!!!!3"..., 99) = 99 | |
| write(1, "' 1705272643.avi'\t '!!!!!33"..., 78) = 78 | |
| write(1, "' 1891665242'\t '!!!!!336683"..., 77) = 77 | |
| write(1, "' 198342609'\t '!!!!!3458113"..., 86) = 86 | |
| write(1, "' 4008427013.ppt'\t '!!!!!34"..., 92) = 92 | |
| write(1, "' 520911710.jpg'\t '$Recycle"..., 83) = 83 | |
| write(1, "' 615396302.jpg'\t Dell\t\t\t "..., 76) = 76 | |
| write(1, "' 672229451.docx'\t 'Documen"..., 92) = 92 | |
| write(1, "' 805030286.avi'\t Intel\t\t\t"..., 62) = 62 | |
| write(1, "' 990249782.ppt'\t MSOCache"..., 73) = 73 | |
| write(1, "'!!!!!1929084607.doc'\t PerfLogs"..., 73) = 73 | |
| write(1, "'!!!!!2568327504.xlsx'\t 'Program"..., 82) = 82 | |
| write(1, "'!!!!!2901506575.bmp'\t 'Program "..., 84) = 84 | |
| write(1, "'!!!!!296738282.pptx'\t ProgramD"..., 60) = 60 | |
| write(1, "'!!!!!3271029203.xlsx'\t Recover"..., 59) = 59 | |
| close(1) = 0 | |
| close(2) = 0 | |
| exit_group(0) = ? | |
| +++ exited with 0 +++ |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment