we have multiple engines running in forefront for realtime scan on hub transport.
Only there is still one type of email with a pdf whihc is constantly quarantined
The pdf file contains a java script, and the Norman Engine detect this pdf file as a virus (pdf/Obfuscated.JS)
I cannot find a way in forefront to bypass this type of file for realtime scanning.
This PDF file is not detected as virus by McAfee, or our cloud email security solution.
Regards,