Hi John. This is an answer to the same question from some time ago by one of the Trend Micro techs here:
Hi Tim, thanks for assisting!
Hi welcome to Trend Micro Community!
To answer your question, mshta.exe is a part of Microsoft Windows Operating System which is needed to execute. HTA files.
If your Trend Micro Security keeps detecting mshta.exe, we suspect that there are some malicious files trying to execute mshta.exe.
Could you try the following steps and check if the same symptom occurs:
Step1: Run an update manually
- Right-click on the Trend Micro system tray icon at the bottom right corner of your screen.
- Click "Check for Program Updates" and the About Your Software windows will appear and will automatically check for available updates.
Step2: Disconnect your Internet
Step3: Perform a Full Scan
Running a scan using your Trend Micro Security software - refer to "Performing Quick or Full Scan"
Step4: Connect your Internet again
Please let us know if you were able to resolve your issue by trying the above. If still unsuccessful, we'll have to pass you to our support center for further investigation. Thank you.
Can you verify the location of the mshta.exe file that is being detected by Trend Micro?
The legitimate file should be located at he legitimate Mshta.exe will be found at C:\WINDOWS\System32\mshta.exe.
There are instances that a virus uses names similar to a legitimate windows file and place in other folders in an attempt to fool you into thinking it is a good file.
If it is located on a different location then try to manually delete it.
Please inform us if the issue is resolved by this.