Related blog content
Malwarebytes for Windows detected a Potentially Unwanted ModificationHow your business can avoid potentially unwanted programs
PUM.Optional.DisabledSecurityCenter
Short bio
PUM.Optional.DisabledSecurityCenter is Malwarebytes' detection name for several potentially unwanted modifications (PUMs)in the Windows registry where the Windows Security Center service notifications is disabled. These changes are usually done by malware to suppress Windows from notifying the user that it has turned off specific security features in place, such as a firewall, on the affected system.
System modifications
The following registry value data are modified
Under:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
From: UpdatesDisableNotify=0FirewallDisableNotify=0AntiVirusDisableNotify=0
To:UpdatesDisableNotify=1FirewallDisableNotify=1AntiVirusDisableNotify=1
Under:
HKEY_CURRENT_USER\Software\Microsoft\Security Center
From:UpdatesDisableNotify=0FirewallDisableNotify=0AntiVirusDisableNotify=0
To: UpdatesDisableNotify=1FirewallDisableNotify=1AntiVirusDisableNotify=1
Remediation
Malwarebytes can modify these registry value data back to their Windows default settings without user interaction.Also, we advise users to do a full system scan as PUM.Optional.DisabledSecurityCenter modifications could have been done by malware or PUP.
Add an exclusion
When a Potentially Unwanted Modification (PUM)is detected on your computer, Malwarebytes for Windowsdoes not know whether it was authorized. Optimization software, malware, and Potentially Unwanted Programs (PUPs) are known to make these types of changes, hence they are regarded as potentially unwanted by design.To have Malwarebytes for Windowsignore a PUM, you must add the PUM to the Allow list. Here’s how to do it.
- When a PUM appears in the list of Scan results.
- Uncheck the entry or entries related to the PUM.
- Then click on Next.
- You will see a prompt giving you several options.
- Choosing Always ignorewill add the PUM to the Allow List.
- You can remove them there when you decide they should no longer be ignored.
- When the PUM is on the Allow listit will no longer show up in your Scan results.