In dealing with zip files specifically, I'm wondering what is considered the "best practice"? We simply remove the file at our edge proxy, but have been getting a little flack from a few users. Our data shows that nearly 94% of the .zip files that come in via email are infected so I'm not likely to be convinced to allow them through. What say you?