This thread is going way off track and I want to fix this.
Main thing to disclose, I currently have a diploma in cybersecurity and currently doing my undergraduate degree in cybersecurity. I am a security and privacy advocate. On top of this, an example of my work is from A Noob's Guide to (Online) Security in which I peer reviewed. I intend to talk from a position of knowledge.
I have not read every single reply. Apologies for any repetition if so.
FIrstly, that script in the original post provided should be removed. Validate that the script does not return after saving and playing the game as normal.
After checking everything, you may begin to slowly return back to normal. Check each plugin directly to validate the content of each plugin, ensure you use only the official plugin and check what each plugin is doing.
Check the content of each and every script to validate similar behaviour as above. Getfenv, HTTPService and require (require does not always use an ID) may highlight scripts and behaviours which you do not intent.
You may find it helpful to ensure you have enabled antimalware software on your device, you could scan the device to make sure (even if it’s a new device)
While this is a good idea in concept and does limit some specific issues to one week, depending on the nature of how your security model you may be actively harming your security based on NIST guidelines on this topic. You should be using passphrases (such as diceware passwords) or long complex passwords (from a password manager)
Oh and talking about security, take a peak at A Noob's Guide to (Online) Security