A moment ago I had two things happen on my granddaughter's WinME computer, neither of which I understand... #1- In the update of DrWeb's signatures, I noticed the updater downloaded drwreg.exe. I checked drwebupw.log. It had the statement "drwreg.exe executed" on 4 different lines, at 07:45:36, 07:45:37 07:45:38 & 07:45:40. In DrWeb's folder, the drwreg.exe file is dated 11/20/2005. VERY mysterious (at least to me). QUESTION #1- Can anyone offer an opinion as to what was the purpose of this drwreg.exe activity? #2- When starting up this morning, RegWatcher gave the following alert... I put the entry into quarantine (just to see what would happen). Several seconds later, the same alert came up. I gave in & let it happen. QUESTION #2- Is something fishy going on? If not, I wonder why this Hotkeys entry suddenly appeared today when it never has done so before -- even though today's startup was no different than any other day?