You're assuming that the user has a working knowledge of file i/o, in which case there is very little you can do. It would be too easy to expend a great deal of time in combatting this, when infact many large companies do not protect their software in any fashion.

If we were really that way inclined, we could simply decompile the .EXE and there would be no way of protecting the application.

Derek