My brother-in-law surfs and does his banking online using a Win Vista box using IE8 with NIS as his only protection. He has had a couple of viruses/trojans and I was considering putting Sandboxie on his machine for him to use only for his banking. He is not the kind of person who can answer a bunch of pop-ups so I have to make it very easy. I can do this with Sandboxie. The question is: If he gets a keylogger on his machine outside the sandbox, can that keylogger intercept key strokes made on a browser inside the sandbox? I assumed it can't but I want to make sure.