This is a megathread for posting any malicious plugins you find (ones that inject malicious code or infections into the user’s games) which I will regularly check, verify the plugin is malicious, and add to the HISR plugin’s known malicious plugin list. This will allow any user who uses HISR V2.1+ with the setting enabled to scan for know malicious plugins to be notified that they own a malicious plugin as well as list the original plugin if known so that they may remove/replace the (copied) malicious plugin.
This is the active list of known malicious plugins that the HISR plugin uses for detection: https://www.roblox.com/library/2732065843/Known-Malicious-Plugins-Table-Hidden-Infection-S
If the plugin ID that you found as being malicious isn’t there then please make a post in the following template so that I may review and add it to the list for the HISR plugin.
P.S. As always it’s a good idea to “Report Abuse” on copied and/or malicious plugins so that ROBLOX may CD them. This is just to notify users about the malicious plugin in the mean time.
Couldn’t Roblox implement algorithms to detect plugins or models that had rapid and unexpected plugin growth? Because all of these are seen due to bots boosting the sales. Additionally, put a 2 or so month long minimium on uploading public plugins. That can atleast rat out the bots that make accounts and immediatly upload stuff. Maybe even flag plugins with the same thumbnail and name or things like that?
This is marking my custom made scripts viruses. I used the “Store” feature and I deleted the “Infections” folder not knowing what I was doing. Is there a way to reverse this?
This should be on the topic for the plugin but you can either try undo (ctrl+z) or go to your place page on the roblox website, click the … at the top right, then configure place, then locate the versions and click the link to the version before the top-most one. This will revert your game to right before the last publish. (Assuming that you published the changes already by accident. Otherwise just close studio without saving or publishing and reopen it.) After that just click “Whitelist” if you want to select some scripts to not be marked as viruses. (Also if you want to use the script whitelist then make sure to turn it on in the settings.)
Even though Roblox probably should implement some detection system, it must be also considered the higher end and more noticed developers who release a new plugin will also get a massive amount of sales. For example, if a YouTuber with 1 million subs releases a completely safe plugin and their community is absolutely hyped for its release, you can probably expect a solid 10k-50k (random guesstimates) sales just on the first day of its release.
p.s. this is probably more off topic than should be
I am still confused as to why the users creating these backdoors get their accounts deleted, but the actual malicious assets remain. Everything should be gone. Additionally, I feel like IP bans and machine bans would be a more viable solution then just deleting the account because spoofing the machine hardware ID is much more time consuming and we all know these backdoors are coming from a select few exploit developers that are trying to sell products with “server sided script execution”, after FE was mandated.
Said module 2655056793 requires another module. 2686631266(wow thanks roblox for indirectly helping by telling me that you are removing private modules required from others)
