The SEP for Linux client has quarantined files that are believed to be a False Positive. These files need to be submitted to the False Positive portal for analysis.
To submit quarantined files, the identity of the files in the Quarantine directory must be confirmed.
To confirm the file ID:
To locate the file in the Quarantine directory:
The .vbn file is an encrypted file that can be submitted to Symantec's False Positive portal for analysis.
False Positive Submission Portal:
https://symsubmit.symantec.com
Currently submitting QUR file in /var/log/sdcsslog/quarantine/ (SEP version 14.3 RU1 and newer) is not supported