I have a web app where users may upload files. All kinds of files - PDFs, ZIPs, EXEs, MP3s, AVIs, you name it. As they're uploaded, they're put directly into a storage cloud; they do not reside on my PC or on my web server.
I would like to verify that these files are not infected or malicious.
So, I was thinking I'd download all this stuff from the cloud into a folder on my C:, and use my virus scanner - Microsoft Security Essentials - to scan them.
But maybe that's not a safe thing to do? Some of these files may be dangerous.
Is there a safe way to handle potentially infected data? I have this notion that it's like handling radioactive isotopes - I need the proper gear to do it safely.