GET /service/api/console/gsm/{gsmKey}/sites/{siteId}/endpoints/{endpointId}/threathistory
?startDate={startDate}
&endDate={endDate}
&returnedInfo={returnedInfo}
&pageSize={pageSize}
&pageNr={pageNr}
Gets threat history information for a given endpoint.
Request Information
URI Parameters
Name | Description | Type | Additional Information |
---|---|---|---|
gsmKey |
The GSM console keycode. |
string |
Required |
siteId |
The site identifier. |
string |
Required |
endpointId |
The endpoint identifier. |
string |
Required |
startDate |
If specified, returns all threat history records after (or at) the given date. If omitted, defaults to 'endDate' minus 24 hours. |
date |
None. |
endDate |
If specified, returns all threat history records before (or at) the given date. If omitted, defaults to the current date and time. |
date |
None. |
returnedInfo |
A comma separated list of classes of information to be provided in response data. Currently only the "ExtendedInfo" class is supported as a value. If omitted, general threat record information is returned only. |
string |
None. |
pageSize |
Specifies the number of records to return. |
integer |
Default value is 50 |
pageNr |
Specifies the page number. Can be used to retrieve the next batch of records. |
integer |
Default value is 1 |
URI Sample(s)
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/endpoints/1ffe613e-b23c-4eb8-82c7-623502a83e6b/threathistory
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/endpoints/1ffe613e-b23c-4eb8-82c7-623502a83e6b/threathistory?returnedInfo=ExtendedInfo
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/endpoints/1ffe613e-b23c-4eb8-82c7-623502a83e6b/threathistory?startDate=2018-09-01&endDate=2018-09-30&pageSize=100&pageNr=3
|
Body Parameters
None.
Response Information
Resource Description
Information about matching threat history records.
GetThreatHistoryResponseModelName | Description | Type | Additional Information |
---|---|---|---|
MoreAvailable |
Value indicating whether more records are available in the queried time window. Increment the page number in the query to obtain additional threat history records. |
boolean |
None. |
PageNr |
The number of the page that was requested. |
integer |
None. |
PageSize |
The size of the page that was requested. |
integer |
None. |
StartDate |
Start date for returned records. Threat history entries after (or at) this date are contained in the response. |
date |
None. |
EndDate |
End date for returned records. Threat history entries before (or at) this date are contained in the response. |
date |
None. |
ThreatRecords |
List of threat history records. |
Collection of GetThreatHistoryResponseModel_Record |
None. |
Sample Response
{ "MoreAvailable": false, "PageNr": 1, "PageSize": 50, "StartDate": "2023-12-28T21:07:10.3018547Z", "EndDate": "2024-03-28T21:07:10.3018547Z", "ThreatRecords": [ { "EndpointId": "2e7077d2-d646-4e06-baf1-7fd438120619", "MachineId": "7D6358F13D234BBBA16705C184685935:::49ECD66DA15447569E2D0C3F7695F7FB:::49ECD66DA15447569E2D0C3F7695F7FB", "HostName": "MyComputer1", "FileName": "eicar.com", "PathName": "?:\\users\\user1\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2024-03-15T21:07:10.3018547Z", "LastSeen": "2024-03-26T21:07:10.3018547Z", "ExtendedInfo": { "DwellTime": 853, "FileMD5": "A146E6257EF8490F84682DCABC3D9C1F", "FileSize": 68, "UserName": "User1", "IPAddress": "95.214.86.58", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } }, { "EndpointId": "b21ab669-9045-4484-98ca-0abf785d98a7", "MachineId": "8F2926F603F1415399A6E95575723BEC:::A9F0357D95F6433E9727D0950E7E239C:::A9F0357D95F6433E9727D0950E7E239C", "HostName": "MyComputer2", "FileName": "eicar.com", "PathName": "?:\\users\\user2\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2024-03-15T21:07:10.3018547Z", "LastSeen": "2024-03-26T21:07:10.3018547Z", "ExtendedInfo": { "DwellTime": 339, "FileMD5": "40AE0E5701DE4DD6AF228FC9F145FD74", "FileSize": 68, "UserName": "User2", "IPAddress": "95.75.104.18", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } } ] }
<GetThreatHistoryResponseModel xmlns:i="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://schemas.datacontract.org/2004/07/Webroot.UnityAPI.ServiceExtension.Console.Models"> <EndDate>2024-03-28T21:07:10.3018547Z</EndDate> <MoreAvailable>false</MoreAvailable> <PageNr>1</PageNr> <PageSize>50</PageSize> <StartDate>2023-12-28T21:07:10.3018547Z</StartDate> <ThreatRecords> <GetThreatHistoryResponseModel_Record> <EndpointId>2e7077d2-d646-4e06-baf1-7fd438120619</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>853</DwellTime> <FileMD5>A146E6257EF8490F84682DCABC3D9C1F</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.214.86.58</IPAddress> <UserName>User1</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2024-03-15T21:07:10.3018547Z</FirstSeen> <HostName>MyComputer1</HostName> <LastSeen>2024-03-26T21:07:10.3018547Z</LastSeen> <MachineId>7D6358F13D234BBBA16705C184685935:::49ECD66DA15447569E2D0C3F7695F7FB:::49ECD66DA15447569E2D0C3F7695F7FB</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user1\desktop</PathName> </GetThreatHistoryResponseModel_Record> <GetThreatHistoryResponseModel_Record> <EndpointId>b21ab669-9045-4484-98ca-0abf785d98a7</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>339</DwellTime> <FileMD5>40AE0E5701DE4DD6AF228FC9F145FD74</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.75.104.18</IPAddress> <UserName>User2</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2024-03-15T21:07:10.3018547Z</FirstSeen> <HostName>MyComputer2</HostName> <LastSeen>2024-03-26T21:07:10.3018547Z</LastSeen> <MachineId>8F2926F603F1415399A6E95575723BEC:::A9F0357D95F6433E9727D0950E7E239C:::A9F0357D95F6433E9727D0950E7E239C</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user2\desktop</PathName> </GetThreatHistoryResponseModel_Record> </ThreatRecords> </GetThreatHistoryResponseModel>