I manage a variety of sites and for those that are not tech oriented, I would say your percentages are pretty close to what I have seen on similar types of sites. What I notice is that of the reported IE6 users on the logs I reviewed, the reported OS in usage is Windows 2000 is 100% for these for the logs I reviewed. This seems to confirm my personal experience in that that the more likely reason remaining IE6 holdouts exist are likely less to be about "application capability" and more about the fact that for those running Windows 2000 they have no other options for a newer version of IE. The reality appears to be there are still plenty of older machines out there running Windows 2000 or some variant of it and there is no Microsoft supplied option for replacing IE6 on these machines. Microsoft's lack of providing Windows 2000 with a path beyond IE6 has locked them into this position. The fact that they may have some internal web applications that are dependent on some version of IE, has them locked into not even being able to consider an alternate browser. As another posted had mentioned the use of a Terminal Server might help decrease the security attack surface represented by continuing to use IE6 on these older machines and instead use the Terminal Server to allow the older machines to run newer version of the applications. Those that still have a large number of desktops on the Win2000 platform might need to take a harder look at the potential security holes this leaves open on their network --- even if it is only "internal", it can still be exploited in the right circumstances.