Troj/DocDl-FS virus

As this only affects Windows OS, are you running Windows?

http://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Tr oj~DocDl-FS.aspx

If not, it may be in an email attachment from one of your PC using friends. You can simply delete the email/attachment as it won't affect the Mac OS.

Also, you might consider uninstalling Sophos.

You might want to check out this site for in depth articles on malware, etc:

http://www.thesafemac.com/

Because some of the AV software slows down Macs to a crawl and some of them actually play havoc with the OS; you could run ClamXav occasionally as there are no live/active viruses for Macs at this time (there is malware/adware - see above link) as well as practicing safe online computing (no torrent sites, no "download for free" when it costs money elsewhere sites, avoiding other questionable sites, never clicking on any links unless you are 100% sure it will be trustworthy, etc, etc.

ClamXav

You are welcome.

perishing scam

Are you referring to phishing? (Spam emails wanting you to give them money?) Since the originally mentioned virus affects Windows machines only, this might be contained in an email as an attachment.

If either is the case, then they're emails (or attachments) which you can delete within your mail client.

If they're pop ups, here is some extensive info from a frequent contributor here:

http://www.adwaremedic.com/kb/unsolved.php

If you delete the emails and then you receive new emails - there is nothing you can do about spam except possibly set up a filter not to allow a particular sender. Most spammers keep changing their address, so that may not work either. Or you can try to direct them to your Spam folder. But, if they are from spammers, the problem is: they have your email address and the spam will keep coming. The only way to stop them is to give up on that email address (delete it) and establish a new one with a very difficult password.

If it is something other than what I described, post back.

volney wrote:

I am referring to phishing scam (Spam emails get the sender money mainly pretending to be PayPal). I have delated, however, they (the same ones) keeps reoccurring

If you are deleting them using anti-virus software, you shouldn't do that. That can corrupt Mail's mailboxes, and it doesn't remove the messages properly from the server, which can result in those messages being re-synced back to the computer again. Only delete these messages from within Mail, assuming that you are using Mail. You should probably also rebuild any mailboxes that have had messages removed in this manner, by selecting them and choosing Rebuild from the Mailbox menu.

For fastest, most efficient answers to question such as this, please visit the ClamXav Forum.

volney wrote:

ClamXav identify the perishing scam files and I remove them from my system when I run ClamXav the next time the same set of files again appear.

Never use ClamXav (or any other A-V software) to move (quarantine) or delete e-mail. It will corrupt the mailbox index which could cause loss of other e-mail and other issues with functions such as searching. It may also leave the original e-mail on your ISP's e-mail server and will be re-downloaded to your hard drive the next time you check for new mail.

So, if you choose to "Scan e-mail content for malware and phishing" in the General Preferences, make sure you do not elect to either Quarantine or Delete infected files.

When possibly infected e-mail files are found:

• Highlight the entry in the ClamXav window's top pane that needs to be dealt with.
• Right-click/<Control>-click on the entry.
• Select "Reveal In Finder" from the pop-up menu.
• When the window opens, double-click on the file to open the message in your e-mail client application.
• Read the message and if you agree that it is junk/spam/phishing then note the date and subject of the message and close the e-mail window. Now, using your e-mail client, locate that message in whatever mailbox folder it was found in and delete the message using the delete button. Reading it is especially important when the word "Heuristics" appears in the infection name.If you disagree and choose to retain the message, return to ClamXav and choose "Exclude From Future Scans" from the pop-up menu.
• If this is a G-mail account and those messages continue to show up after you have deleted them in the above manner, you may need to log in to webmail using your browser, go to the "All Mail" folder, find the message(s) and use the delete button there to permanently delete them from the server. Then check the "Trash" folder and delete them there.