S>C 0x18 SID_REGISTRY
Transport Layer:
Transmission Control Protocol (TCP)
Application Layer:
Battle.net v1 TCP Messages (SID)
Message Id:
0x18
Message Name:
SID_REGISTRY
Direction:
Server to Client
Options:
Deprecated
Deprecated
Used By:
Starcraft Original
Message Format:
(does not include protocol header)
(does not include protocol header)
(UINT32) Cookie
(UINT32) HKEY
(STRING) Registry path
(STRING) Registry key
Remarks
Battle.net requests data from the Windows Registry using this message. This message is no longer used by Battle.net.
The Client should respond with C>S 0x18 SID_REGISTRY.
HKEY
is the registry key root. The values are standard:
HKEY Value | Name |
---|---|
0x80000000 |
HKEY_CLASSES_ROOT |
0x80000001 |
HKEY_CURRENT_USER |
0x80000002 |
HKEY_LOCAL_MACHINE |
0x80000003 |
HKEY_USERS |
0x80000004 |
HKEY_PERFORMANCE_DATA |
0x80000005 |
HKEY_CURRENT_CONFIG |
0x80000006 |
HKEY_DYN_DATA |
🔖starcraft
| Edited:
Leaky
Comments
Blizzard sent this packet for a total of 7 days to collect email addresses from users who failed the CD key check during the connection process.
Below are some links I found referencing this situation:
- https://artho.com/warcraft/whatsold.html
- https://games.slashdot.org/story/98/04/17/23277/blizzard-violates-gamers-privacy
- http://edition.cnn.com/TECH/computing/9805/04/privacy_piracy/index.html
- https://www.gamespot.com/articles/starcraft-suit-is-history-concerns-persist/1100-2464364/
- https://www.gamespot.com/articles/starcraft-sniffing-graded-by-gamers/1100-2463569/
- https://www.gamespot.com/articles/starcraft-supports-ask-do-lawyers-suck/1100-2463650/
- https://www.gamespot.com/articles/blizzard-hit-with-privacy-suit/1100-2463619/
All links have been saved to the Wayback Machine.
If anyone finds any additional information about this, please post it here.