I think the only way is to submit potential threat to COMODO for analysys, they decide if it’s a malware or not. I could be false positive when file is detected only by one or two AV’s, but also It can be real malware(for example JS:Packed-AB wich was detected only by Avast!). In my opinion submitting is the best way.