PUM.Optional.MisplacedCertificate

Short bio

PUM.Optional.MisplacedCertificate is Malwarebytes detection name for a potentially unwanted modification that puts the Malwarebytes certificate in the Disallowed category. This disables users from using signed Malwarebytes programs.

System modifications

The following registry key was added:

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SystemCertificates\disallowed\

Certificates\C1437F2BC6F11F4806EAD857982457BF7828CE15

Remediation

Malwarebytes can modify this registry value data back to its Windows default setting without user interaction.

Also, we advise users to do a full system scan as PUM.Optional.MisplacedCertificate could have been added to the system by malware or PUP.

Add an exclusion

When a Potentially Unwanted Modification (PUM) is detected on your computer, Malwarebytes for Windows does not know whether it was authorized. Optimization software, malware, and Potentially Unwanted Programs (PUPs) are known to make these types of changes, hence they are regarded as potentially unwanted by design. To have Malwarebytes for Windows ignore a PUM, you must add the PUM to the Allow list. Here’s how to do it.

  1. When a PUM appears in the list of Scan results. PUM detected
  2. Uncheck the entry or entries related to the PUM.
  3. Then click on Next.
  4. You will see a prompt giving you several options.
  5. Choosing Always ignore will add the PUM to the Allow List.
  6. You can remove them there when you decide they should no longer be ignored.
  7. When the PUM is on the Allow list it will no longer show up in your Scan results.

Related blog content

Malwarebytes for Windows detected a Potentially Unwanted Modification

Explained: security certificates

When you shouldn’t trust a trusted root certificate

Select your language

New Buy Online Partner Icon Warning Icon Edge icon