Advice Request Applications File accessing method

[viktik]

As you can see below that "Disk read bytes" and "Disk write bytes" for most applications is almost zero.
While "I/O read bytes" and "I/O writes bytes" is present for all the applications



From what I understand is that applications are not directly accessing the file in hard disk. Instead ntoskrnl.exe is accessing files in hard disk for these applications

The question is why is this happening.

The problem is some antivirus may not know which application is accessing which files in the hard disk. So the antivirus may not be able to protect the files.

 

[hjlbx]

Disk Read\Write Bytes: The total number of bytes sent to the disk (write) and retrieved from the disk (read) over a period of one second.

I/O Read\Write Bytes is more than just Disk Read\Write Bytes:

• It includes File, Network and Device I/O
• It does not include Console I/O

I didn't know the answer at first until I scoured the net for an explanation.

So you can have 0 Disk Read\Writes, but a high I\O Read\Writes - and vice versa.

 

[viktik]

Disk Read\Write Bytes: it is not disk read writes in one second. it is actually cumulative. The data keeps adding up as data is read or written in disk.

Disk Read\Write Bytes Delta : this one is disk read/write in one second

 

[hjlbx]

Disk Read\Write Bytes: it is not disk read writes in one second. it is actually cumulative. The data keeps adding up as data is read or written in disk.

Disk Read\Write Bytes Delta : this one is disk read/write in one second

Thanks for clarification @viktik