Game: GUBBY RNG [💸] - Roblox
What should I do? How can I fix this?
Plugins? Use the findall tab in script to find scripts that might require hd admin, check for stuff like :IsStudio() or runservice. This shouldn’t be possible without a backdoor
Look for anything with require or fenv. If not I would recommend looking into hiring someone who specialises in issues like these, myself included.
Make sure you use SHIFT + CTRL + F, so you can search through every single script in the game.
I looked and found two suspicious scripts in models where require is used, but I didn’t find any more scripts (I found them in the workspace, and I trust others like EXE V6 & Donation Board // V3 )
In backdoor scripts like those, it’s usually hidden by a ton of tabs or spaces. Try to scroll to the right to see if there’s anything to the right of the regular code. Maybe check out that script’s Make function? There’s nothing really suspicious about that. Maybe search ClassName == "Script" or ClassName == "Localscript" in the search bar of the explorer.
Although, I don’t exactly know what require :: Instance would do. It would just typecast the require function to an Instance, wouldn’t it? Is require mentioned anywhere else in the script?
the script on the screenshot was an accident and I don’t need it when using it. Now I’m trying to find some other weird scripts.
I didn’t find anything because all the scripts were written by me, but all suspicions go to the thing from the toolbox like the Donation Board, there are many required and there are
checks :IsStudio()
Maybe look for a script that uses HTTP or creates a remoteevent. The exploiters have to communicate with the script somehow if they’re targeting certain people.
Yeah, that is suspicious. I’d just get rid of all nonessential plugins. I had a problem like that where plugins created viruses/malware, and I had to get rid of all my plugins to get rid of it.
Most donation boards do that so that you can’t view their scripts.
Most of these backdoors don’t go unnoticed due to them carelessly using them, so chances are you used a model with a suspicious script or a plugin which was malicious. Disable all your plugins and check all scripts
This is quite the reasons i don’t use free models and third party plugins
I turned all plugins off and reviewed all scripts & deleted the donation board, now there are only my scripts in the game - I’ll see what happens next
Alright. Also, are there other scripters working on the project? Maybe one of their scripts has something malicious.
for now - no, I work solo without outside help
These type of viruses are often injected by plugins. Check the plugins you have pirated(paid plugin that isn’t made by the original creator and is free), one of them is likely the cause.
Also worth mentioning that if you’re using team create, it might be one of the plugins of another creator in your team session.
Very likely the backdoor, however. We’d need the entire script to know for sure, but it’s highly likely due to the fact require is embedded there for conditions. One just needs to follow the logic to know for sure what the require is doing, it shouldn’t be mentioned regardless if there’s no module scripts present and it’s somewhat hidden.
That is very likely a backdoor, ive analyzed many backdoors (such as Remium, Nova Admin, Aureus and more) and i recognize that code.
Require is used to load third party scripts or ModuleScripts, in that case, it is loading a third party script aka a backdoor most likely, can you send me the code/model (model that contains the script aka “Hills” within the screenshot you provided) so i could see who it belongs to?
1,000 playing players, so far I don’t see any tricks on the servers, and I hope you helped me in this situation in terms of plugins! Thanks everyone for the information and help.
