I've been struggling with SID_AUTH_CHECK, and have run out of ideas.
I get all the data I need from BNLS_CDKEY_EX and BNLS_VERSIONCHECK_EX2.

[code]
0000003B  ff 51 59 00 e6 7f 37 64  00 01 0f 01 28 ef 6b 00 .QY...7d ....(.k.
0000004B  01 00 00 00 00 00 00 00  0d 00 00 00 01 00 00 00 ........ ........
0000005B  85 2a 05 00 00 00 00 00  23 37 c3 34 8c ef 21 1f .*...... #7.4..!.
0000006B  4c 9b 0b c7 fa 84 c9 38  b5 26 b7 b4 3f 3f 3f 3f L......8 .&..????
0000007B  3f 7f 3f 3d 3f 0c 02 3f  24 6f 3f 5a 00 6a 6f 73 ?.?=?..? $o?Z.jos
0000008B  68 20 6c 61 72 73 6f 6e  00                      h larson .
[/code]

My first assumption was the string from checkrevision. I get that from BNLS and it gets sent the same way it gets received. Likewise the string that I retrieve from 0x50.

Any ideas? Any information would be greatly appreciated and be very helpful.

Solution: Encoding was incorrect and throwing a lot of '?'s being 0x3f's. The strings were messed up, fixing the encoding caused me to receive 0x0000 for success.

There are many threads on this topic. Search?

I've searched througha ll of them, two of which i noticed commented about the Invalid Version, but none of them mentioned how to fix it or how it was solved. I wouldn't post before researching.

[quote author=iamjosh link=topic=17070.msg173385#msg173385 date=1191125593][code]
0000006B  4c 9b 0b c7 fa 84 c9 38  b5 26 b7 b4 3f 3f 3f 3f L......8 .&..????
0000007B  3f 7f 3f 3d 3f 0c 02 3f  24 6f 3f 5a 00 6a 6f 73 ?.?=?..? $o?Z.jos[/code][/quote]Your strig handler is wrong.
You're doig *something* that dose't support exteded charecters >- 0x80
Hece it being chaged to 0x3f, '?'
~Hdx

Gotcha! I think I know what it is. Thanks for the speedy response.

It was an encoding issue on my end. Unfortunately the invalid version still exists.
Updated packet log. I'm posting this prematurely incase of a solve and to put it here while I work on it.

[code]
0000003B  ff 51 59 00 bc fd b5 64  00 01 0f 01 34 3c 97 72 .QY....d ....4<.r
0000004B  01 00 00 00 00 00 00 00  0d 00 00 00 01 00 00 00 ........ ........
0000005B  85 2a 05 00 00 00 00 00  c1 f4 4f 75 9b 72 7f 2a .*...... ..Ou.r.*
0000006B  a6 2e 31 c9 b8 23 ca 67  62 b7 6b 89 a4 0b 34 c9 ..1..#.g b.k...4.
0000007B  36 eb ec 5a 4a c1 4b e7  0e a3 7b b5 00 6a 6f 73 6..ZJ.K. ..{..jos
0000008B  68 20 6c 61 72 73 6f 6e  00                      h larson .
[/code]

Thanks.

Post a full log please.
~Hdx

[quote author=Hdx link=topic=17070.msg173389#msg173389 date=1191129294]
[quote author=iamjosh link=topic=17070.msg173385#msg173385 date=1191125593][code]
0000006B  4c 9b 0b c7 fa 84 c9 38  b5 26 b7 b4 3f 3f 3f 3f L......8 .&..????
0000007B  3f 7f 3f 3d 3f 0c 02 3f  24 6f 3f 5a 00 6a 6f 73 ?.?=?..? $o?Z.jos[/code][/quote]Your strig handler is wrong.
You're doig *something* that dose't support exteded charecters >- 0x80
Hece it being chaged to 0x3f, '?'
~Hdx
[/quote]

Don't like this 'n' key? lol

[quote author=Hdx link=topic=17070.msg173389#msg173389 date=1191129294]
[quote author=iamjosh link=topic=17070.msg173385#msg173385 date=1191125593][code]
0000006B  4c 9b 0b c7 fa 84 c9 38  b5 26 b7 b4 3f 3f 3f 3f L......8 .&..????
0000007B  3f 7f 3f 3d 3f 0c 02 3f  24 6f 3f 5a 00 6a 6f 73 ?.?=?..? $o?Z.jos[/code][/quote]Your string handler is wrong.
You're doing *something* that doesn't support extended charecters >- 0x80
Hence it being changed to 0x3f, '?'
~Hdx
[/quote]

Conversation with Battle.net

[code]
00000000  01                                              .
00000001  ff 50 3a 00 00 00 00 00  36 38 58 49 52 41 54 53 .P:..... 68XIRATS
00000011  d1 00 00 00 00 00 00 00  00 00 00 00 00 00 00 00 ........ ........
00000021  00 00 00 00 00 00 00 00  55 53 41 00 55 6e 69 74 ........ USA.Unit
00000031  65 64 20 53 74 61 74 65  73 00                  ed State s.

00000000  ff 25 08 00 d4 b6 4d 88                          .%....M.

00000008  ff 50 3e 00 00 00 00 00  68 2e 20 11 ba ba 0d 00 .P>..... h. .....
00000018  00 90 82 c4 72 fc c6 01  6c 6f 63 6b 64 6f 77 6e ....r... lockdown
00000028  2d 49 58 38 36 2d 30 34  2e 6d 70 71 00 f6 56 c5 -IX86-04 .mpq..V.
00000038  59 54 ac e8 10 f2 c2 40  de f0 6c 6a 8d 00      YT.....@ ..lj..

0000003B  ff 51 59 00 5a 54 5d 67  00 01 0f 01 4b bf b8 3d .QY.ZT]g ....K..=
0000004B  01 00 00 00 00 00 00 00  0d 00 00 00 01 00 00 00 ........ ........
0000005B  85 2a 05 00 00 00 00 00  f8 f4 16 36 ba c8 21 b0 .*...... ...6..!.
0000006B  88 82 77 6f d9 bb 0c 52  7c 3d b3 aa 46 44 67 d3 ..wo...R |=..FDg.
0000007B  e2 fb 3d 1a 0b f5 92 5f  30 e1 81 54 00 6a 6f 73 ..=...._ 0..T.jos
0000008B  68 20 6c 61 72 73 6f 6e  00                      h larson .

00000046  ff 51 09 00 01 01 00 00  00                      .Q...... .
[/code]

Conversation with BNLS
[code]
00000000  3d 00 1a 01 00 00 00 00  00 00 00 68 2e 20 11 00 =....... ...h. ..
00000010  90 82 c4 72 fc c6 01 6c  6f 63 6b 64 6f 77 6e 2d ...r...l ockdown-
00000020  49 58 38 36 2d 30 34 2e  6d 70 71 00 3f 56 3f 59 IX86-04. mpq.?V?Y
00000030  54 3f 3f 10 3f 3f 40 3f  3f 6c 6a 3f 00          T??.??@? ?lj?.

00000000  28 00 1a 01 00 00 00 00  01 0f 01 4b bf b8 3d 46 (....... ...K..=F
00000010  44 67 d3 e2 fb 3d 1a 0b  f5 92 5f 30 e1 81 54 00 Dg...=.. .._0..T.
00000020  68 2e 20 11 d1 00 00 00                          h. .....

0000003D  1e 00 0c 37 00 00 00 01  01 00 00 00 68 2e 20 11 ...7.... ....h. .
0000004D  3x 3x 3x 3x 3x 3x 3x 3x  3x 3x 3x 3x 3x 00      xxxxxxxx xxxxx.

00000028  35 00 0c 37 00 00 00 01  01 01 00 00 00 5a 54 5d 5..7.... .....ZT]
00000038  67 0d 00 00 00 01 00 00  00 85 2a 05 00 00 00 00 g....... ..*.....
00000048  00 f8 f4 16 36 ba c8 21  b0 88 82 77 6f d9 bb 0c ....6..! ...wo...
00000058  52 7c 3d b3 aa                                  R|=..
[/code]

you're somehow messing up the hash you send to BNLS. look at what hash you receive in 0x50 and look at what you're sending to BNLS

MM your buffer sucks with the converting of unicode strings.
Once again everything >= 0x80 turns to '?'
Also, i was on my laptop and i forgot that my N key dosent work :P
~Hdx

Success, everything was smooth except the way I handle my strings, I knew those ??'s looked messed up and a lot of 3f's looked suspicious. Thank you for your help, I'll mark this as solved if anyone else runs into retarded encoding issues.