It is recommended that you scan every file (regardless of what file extension it has) before openeing it.
A risk evaluation for certain file extensions is rather difficult and could lead you to a wrong general P2P behaviour in regard to files. (though zip and exe files should be avoided, as they represent the greatest danger):
http://www.gnutellaforums.com/showth...ht=Files+aware 