I have some questions as to how it really works. 1) When you virtualize does that mean you just deny all access to the file system and when a program tries to write a file it just creates it in its sandbox? 2) I've seen Sandboxie have a limit for moving files... I don't have it in front of me though. Can someone explain this? Can this cause high Disk I/O? Where are files being moved to/from?