Hello,

I am using the Windows version of LimeWire, ver 1.7.

I just tried downloading a file that showed up in the search window with a type of "MPG". Once it downloaded, I switched to Windows Explorer to launch the file. It is a good thing I did, as the downloaded file was NOT an "mpg" file, but rather a URL. Yes, even though it shows up in searches as MPG, once the download has finished, it has been named with an extension of ".url". This is a serious security violation. Something needs to be done about this.

What if the file had been renamed to end in ".exe", and I had simply right clicked it in LimeWire and chosen "launch file" ??? This is a major hole for potential trojan and viruses to be spread.

Regards,
-T

p.s. I have now retrieved a couple of ".jpg" files from the same server, and these also ended up being of type ".url". Scary!