Important info on CirnoWeb
(and a few notes for the tech-illiterate)
❀⊱┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄┄⊰❀
⚠️ Addressing Rumors
A few rumors were starting to spread recently, aiming to slander our emulator (Cirno) with inconsistent rumors masquerading as legitimate concerns.
The history behind those rumors is long, and the source is faulty. So, without diverting the topic too much, one thing to say here:
Double-check your sources. Question the intent. make your own tests and build your own judgement.
────────────────────•⋅⊰༻♥༺⊱⋅•────────────────────
❌ False Claim #1: Malicious Scanning
❗ this is the first false point from the technologically challenged source.
The keyword here is "scanning". Inserted inconspicuously to imply bad intent.
The truth is: when the game starts, the DLL gets loaded, it sets a hook to the Denuvo function then stops doing anything until that hook triggers, and doesn't actually scan anything.
A reminder: make your own tests and build your own judgement. Don't listen blindly to shady sources with a scummy reputation.
────────────────────•⋅⊰༻♥༺⊱⋅•────────────────────
❌ False Claim #2: IP Collection
❗ Second false point from the source of tech-noobs
Similar to the 1st point, this is just a word salad statement with nothing to back it up.
"IPs collected" is another keyword inserted to hint at the source's true intent = painting the Sanctuary in red.
The fact is, tracking IPs was the only method to prevent token sellers and activation scammers.
As a free service, it's mandatory to have a security measure against abusers. It's illogical to offer free tokens that others paywall and offer for money, without protection.
However, since March of 2025, IPs are no longer being used to prevent scams. The HWID method is now used instead, which is far more private and efficient.
────────────────────•⋅⊰༻♥༺⊱⋅•────────────────────
🔧 HWID System Explained:
The HWID is just a hashed random string that stays the same on the same PC. It doesn’t reveal any personal info and can’t be used to identify someone by itself. It’s completely anonymous. But because it stays consistent on the same machine, we can use it to match past activity.
Let's say there are two users, U1 and U2. Each one is using a different computer. U1 has a hardware ID like
70e147b461e9a45b, and U2 hasf5df7357983c0f14.
When U1 activates a game, the system logs H1. If U2 does the same, we see H2. If a third user, U3, activates a game later and their HWID also shows up as H1, we can tell they're using the same computer as U1, which means it's likely the same person on a different account.
The HWID is just a hashed random string that stays the same on the same PC (eg.9f195eec46d00537). It doesn't reveal any personal info and can't be used to identify someone by itself. It's completely anonymous. But because it stays consistent on the same machine, we can use it to match past activity.
────────────────────•⋅⊰༻♥༺⊱⋅•────────────────────
Now let's shift our focus on the real goal behind these accusations.
The source of these rumors is a rival server, known for their scummy past, starting from paywalling activations using the excuse of "our server was banned"and promising to go free soon, then going free only when we regained our userbase and dethroned them.
(so after a few months from when they went paywalled)
also, they're responsible for nuking every member in the Sanctuary, which happened around the time they went paywalled!!
And if that wasn't enough, after the Sanctuary got that big, they begged tried to ask our developer directly to pass them the goodies, which failed miserably. After which they have made a cheap copy of our tools, called Sigma (made partly by ChatGPT like their dev admitted) currently has 44/71 detections on Virustotal!
We didn't go in deep in the rabbit hole but that seems a lot even for a false positive.