The most infected devices report contains information about the protected virtual machines that are found to contain the largest number of infected files during scanning.
The Period field displays the period of time covered by the data included in the report. By default, the report contains for the last 30 days, including the report generation date.
It contains the following consolidated information:
Device. The name of the protected virtual machine on which the object was detected, and the path to the virtual machine in the virtual infrastructure.
Objects infected.The total number of objects detected on the protected virtual machine in the reporting period.
Threats detected. The number of different objects detected on the protected virtual machine for the reporting period.
First attempted run blocked. The date and time of the first detection of the object on the protected virtual machine.
Last attempted run blocked. The date and time of the last detection of the object on the protected virtual machine.
Last visible. The date and time of the last event associated with the protected virtual machine on which the object was detected.
IP address. The IP address of the protected virtual machine on which the object was detected.
NetBIOS name, DNS name. The name of the protected virtual machine on which the object was detected, and the path to the virtual machine in the virtual infrastructure.
In the line below, the Devices infected field specifies the number of protected virtual machines found to contain the largest number of infected files during scanning. The Groups infected field always displays a 0, because protected virtual machines cannot belong to Kaspersky Security Center administration groups.
The report contains detailed information about each instance of detection:
Device. The name of the protected virtual machine on which the object was detected, and the path to the virtual machine in the virtual infrastructure.
Detected object. The name of the object that has been detected on the protected virtual machine.
Detected at. The date and time of object detection on the protected virtual machine.
Path to file. The path to the protected virtual machine file in which the object has been detected.
Object type. The type of object detected.
Action. The result of the action taken by Kaspersky Security on the detected object.
Application. The name of the application providing anti-virus protection. For Kaspersky Security, the field displays Kaspersky Security for Virtualization 6.1 Agentless or Kaspersky Security for Virtualization 6.1 Agentless (for tenants).
Version number. The version number of the application providing anti-virus protection.
Last visible. The date and time of the last event associated with the protected virtual machine on which the object was detected.
IP address. The IP address of the protected virtual machine on which the object was detected.
NetBIOS name, DNS name. The name of the protected virtual machine on which the object was detected, and the path to the virtual machine in the virtual infrastructure.
Component. The name of the component that detected the threat. Possible values: Scan task, File Threat Protection.
Detection technology. The technology used for detecting the threat. Possible values: Expert analysis, Automatic analysis, Cloud analysis.