S>C 0x18 SID_REGISTRY
| Transport Layer: | Transmission Control Protocol (TCP) |
|---|---|
| Application Layer: | Battle.net v1 TCP Messages (SID) |
| Message Id: | 0x18 |
| Message Name: | SID_REGISTRY |
| Direction: | Server to Client |
| Options: | Deprecated |
| Used By: | Starcraft Original |
| Message Format: (does not include protocol header) |
|
Remarks
Battle.net requests data from the Windows Registry using this message. This message is no longer used by Battle.net.
The Client should respond with C>S 0x18 SID_REGISTRY.
HKEY is the registry key root. The values are standard:
| HKEY Value | Name |
|---|---|
0x80000000 |
HKEY_CLASSES_ROOT |
0x80000001 |
HKEY_CURRENT_USER |
0x80000002 |
HKEY_LOCAL_MACHINE |
0x80000003 |
HKEY_USERS |
0x80000004 |
HKEY_PERFORMANCE_DATA |
0x80000005 |
HKEY_CURRENT_CONFIG |
0x80000006 |
HKEY_DYN_DATA |
| Edited:
Leaky
Leaky Comments
xboi209Blizzard sent this packet for a total of 7 days to collect email addresses from users who failed the CD key check during the connection process.
Below are some links I found referencing this situation:
- https://artho.com/warcraft/whatsold.html
- https://games.slashdot.org/story/98/04/17/23277/blizzard-violates-gamers-privacy
- http://edition.cnn.com/TECH/computing/9805/04/privacy_piracy/index.html
- https://www.gamespot.com/articles/starcraft-suit-is-history-concerns-persist/1100-2464364/
- https://www.gamespot.com/articles/starcraft-sniffing-graded-by-gamers/1100-2463569/
- https://www.gamespot.com/articles/starcraft-supports-ask-do-lawyers-suck/1100-2463650/
- https://www.gamespot.com/articles/blizzard-hit-with-privacy-suit/1100-2463619/
All links have been saved to the Wayback Machine.
If anyone finds any additional information about this, please post it here.