Chances are that the trojan is already deleted from your system but its just a crippled remnant of it in the registry. Thus the moment McAfee is finding it in the system, its triggering a delete action. What I would suggest you to do is, check your auto start and remove any mention of an unknown program that you sure about and then clean up your registry.
This should take care of the issue.
No... the 'ldMFchcXrFP.exe' executatble was running within the machine despite being listed in the McAfee log as beng deleted and was still there in the user's profile I believe because it was running it could not be deleted.
I renamed the executable logged onto the machine using and administrator level account, rebooted and logging on as the user was able then to remove the run command from the user's profile at [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] within the registry.
As the executable was still there but 'renamed' and not running I was surprised that McAfee didn't find it at all and delete it when I later ran a 'Full Scan' with McAfee. I'd like to know if this Trojan is delected in a system by McAfee looging for the executable's name and not some key code within teh executable to ID it as it never found the renamed Trojan?
The 'Trojan' made the (running user's) and (all users) and 'program files' directories hidden and deleted all the program shortcuts from the (all users) start menu.
regards Robert Burns