MSHTA

  • 1
  • Question
  • Updated 6 days ago
  • Answered
Trend Micro keeps blocking MSHTA.exe and asking if I trust it? Is it a virus or to I allow it?
Photo of john.charles

john.charles

  • 140 Points 100 badge 2x thumb

Posted 2 weeks ago

  • 1
Photo of woodartisan55

woodartisan55

  • 5,442 Points 5k badge 2x thumb

Hi John. This is an answer to the same question from some time ago by one of the Trend Micro techs here:

Hi Tim, thanks for assisting!

Hi welcome to Trend Micro Community! 

To answer your question, mshta.exe is a part of Microsoft Windows Operating System which is needed to execute. HTA files.

If your Trend Micro Security keeps detecting mshta.exe, we suspect that there are some malicious files trying to execute mshta.exe. 

Could you try the following steps and check if the same symptom occurs:

Step1: Run an update manually

  1. Right-click on the Trend Micro system tray icon at the bottom right corner of your screen.
  2. Click "Check for Program Updates" and the About Your Software windows will appear and will automatically check for available updates.

Step2: Disconnect your Internet 

Step3: Perform a Full Scan
Running a scan using your Trend Micro Security software - refer to "Performing Quick or Full Scan"

Step4: Connect your Internet again

Please let us know if you were able to resolve your issue by trying the above. If still unsuccessful, we'll have to pass you to our support center for further investigation. Thank you.

(Edited)
Photo of john.charles

john.charles

  • 140 Points 100 badge 2x thumb
Thanks for the info.  I have completed all the above, nothing was found and the alerts are still coming through.
Photo of TM_Jedi

TM_Jedi, Employee

  • 190 Points 100 badge 2x thumb
Hi john.charles,

Can you verify the location of the mshta.exe file that is being detected by Trend Micro?

The legitimate file should be located at he legitimate Mshta.exe will be found at C:\WINDOWS\System32\mshta.exe. 

There are instances that a virus uses names similar to a legitimate windows file and place in other folders in an attempt to fool you into thinking it is a good file. 

If it is located on a different location then try to manually delete it.

Please inform us if the issue is resolved by this.

Thanks,
Jedi
Photo of jdg

jdg

  • 70 Points
Iperformt your suggestions without success. What can I do more?
Photo of TM_Ian

TM_Ian, Employee

  • 3,416 Points 3k badge 2x thumb
Hi @jdg,

Thank you for the update. I would highly recommend that you contact our Premium hotline for immediate assistance on this issue since there is a possible malware on your PC.

You may access the 24/7 Premium hotline on this link:

Contact Trend Micro Technical Support

We'll wait for your call. Have a great day! :)

Trend Micro Home Users Community