The MBR also ... ?

[RonC]

This will likely seem an obvious question, because it's clearly stated in the documentation that all writes to the hard drive will end up in the sandbox. I ask only because I am thinking perhaps this means all ordinary data-file writes, and not system-area writes. Anyway, a search of the forum on MBR, "Partition Table" and "Master Boot Record" provides no hits, so no one else has ever asked.

With that in mind, here goes: will any and all attempts by malicious software to write to the MBR/Partition Table/Boot Sector also end up in the sandbox? I will be greatly relieved if the answer is YES

The last time (before Sandboxie was running) it took 2 1/2 hours with the Recovery Console, Hiren's Boot Disk, Ewido, eruNT registry restores, etc. before AVG finally and consistently displayed both MBR and Boot Sector as readable. Go back to last good startup did nothing. Before taking the Registry back for two days, even sfc was disabled. At least, I think this is what got it going again... So if the answer is Yes, Sandboxie may prevent all this, that would be great.

[tzuk]

The answer is YES.

To be precise, Sandboxie denies non-file write access to the disk. Accessing the MBR sector is a non-file access to the disk, so it would be denied.