Comodo is constantly improving its whitelist. This makes CIS more user friendly but does, in some circumstances, have some downsides. Some malware may sometimes be trusted because it is signed by a trusted certificate or perhaps the vendor was trustworthy, but then changed their ways. This is rare, but it does happen.
Regardless of how it happens it’s important to take action against this. If you find malware that is whitelisted, but seems suspicious, please report it here. The name of the trusted vendor, or any other information, is also useful.
Upload these files to one of the following services and post a link to the results:
Helpful details include:
link to the signed malware
screenshots of the certificate details showing the signer organization or certificate serial number or other details which will help us identify the certificate
a copy of the actual certificate if possible
This article also describes how to report fraudulent and phishing emails using Comodo SSL/TLS certificates (but this is not pertinent for this topic).
Please remove the vendor “Elex do Brasil Participações Ltda” from TVL - They are the vendors of YAC, a software that is stealing Malwarebytes database and engine. They are scammers and should not be trusted.
!ot! You have to admit that YAC looks very suspicious. When installed it can literally destroy an Operating System. IOBit on the other hand at least produce good and usable softwares. But YAC is a ROGUE software and that is the truth. They are fraudsters trying to make money and should be removed from TVL ASAP.