Hello! 4096 is a new Anti-Virus that scans both names and source for blacklisted keywords
I have tested it on random models and I found several viruses and backdoors. It currently does not detect localscripts with requires as threats because localscripts cant require things from the site.
HOW TO USE
Just press the “Open” button and allow script injection (You need to re-run after you allow)
And look at the UI to see the detected threats!
Fake Anti-Cheat is obviously using PSU
I may discontinue this Anti-Virus plugin for a new one I am making
Plugin:
Please leave feedback!
EDIT: Just to clarify when I said “Scans both name and source” I meant that it scans what is in the scripts then if it has a virus name like “Vaccine” or “ROFL” so it checks what is inside the script!
Does it actually look through the scripts because if it does, I am probably going to use this everytime I insert a freemodel. Most anti virus plugins, they just scan the names which I don’t like, thanks for making this
It looks through the scripts. That’s how I caught this backdoor. I found a pattern that is in EVERY obfuscated piece of code!
(You should look through the threats just in case it is safe)
You actually gave me a plugin idea, what if there is a plugin that allows you to put keywords in it so you can search of it and you have a list for efficiency
Why does this plugin quarantine Rotate, RotateV, and RotateP, scripts that use require() and scripts that create Fire? The Rotate instances are typically not used afaik, so there’s less to worry about there but require() and Fire being blacklisted would cause too many false positives. The plugin also doesn’t check for code inside of modules.
You didn’t look correctly at some of that. It doesn’t auto quarantine Rotate things. I am working on a whitelist because using “require(%b” isn’t working. The fire thing is to prevent “Spread” scripts
local function clearFire(parentModel)
for i, v in pairs(parentModel:GetDescendants()) do
if v:IsA("Fire") then
print("Destroyed fire!") -- it'll show how many of them were in the game
v:Destroy()
end
end
end
clearFire(workspace)
With the current method, as @LexiDog5 said, there’s many false positives that could occur with fire.
it doesnt seem to detect the Script…Or is it…virus it also detects admin loaders it did detect a virus in a fake admin system dude also the anti virus detects the antivirus code if i have it in the workspace
I mean, The antivirus has a table of blacklisted code, and the antivirus scans itself and finds the blacklisted table of things. It should detect things everywhere. I have to take a look at that.
Wait, I think in the last part of the scan it goes over evrything in game (It used to do that as the only thing but it would stop at RunService and not detect serverscripts)
