Autocad Malicious Code


The original virus first popped up in 2005 and was very limited but has been changed slightly. Some antivirus software does detect this virus and remove it.

The virus spreads simply by someone placing the malicious acad.vlx in a directory with the DWG files or a support path location being opened  and then spreads from there into open DWG files and by replicating itself.

The below LISP code detects and deletes any acad.vlx file before AutoCAD attempts to load it, preventing the spread of the virus. The possible random strings written to the DWG file by the acad.vlx appears to be harmless.  The malicious file acad.vlx is not an Autodesk file.

For more tips on preventing virus in AutoCAD see AutoCAD and Viruses



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: