GET /service/api/console/gsm/{gsmKey}/sites/{siteId}/endpoints/{endpointId}/threathistory
?startDate={startDate}
&endDate={endDate}
&returnedInfo={returnedInfo}
&pageSize={pageSize}
&pageNr={pageNr}
Gets threat history information for a given endpoint.
Request Information
URI Parameters
Name | Description | Type | Additional Information |
---|---|---|---|
gsmKey |
The GSM console keycode. |
string |
Required |
siteId |
The site identifier. |
string |
Required |
endpointId |
The endpoint identifier. |
string |
Required |
startDate |
If specified, returns all threat history records after (or at) the given date. If omitted, defaults to 'endDate' minus 24 hours. |
date |
None. |
endDate |
If specified, returns all threat history records before (or at) the given date. If omitted, defaults to the current date and time. |
date |
None. |
returnedInfo |
A comma separated list of classes of information to be provided in response data. Currently only the "ExtendedInfo" class is supported as a value. If omitted, general threat record information is returned only. |
string |
None. |
pageSize |
Specifies the number of records to return. |
integer |
Default value is 50 |
pageNr |
Specifies the page number. Can be used to retrieve the next batch of records. |
integer |
Default value is 1 |
URI Sample(s)
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/endpoints/1ffe613e-b23c-4eb8-82c7-623502a83e6b/threathistory
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/endpoints/1ffe613e-b23c-4eb8-82c7-623502a83e6b/threathistory?returnedInfo=ExtendedInfo
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/endpoints/1ffe613e-b23c-4eb8-82c7-623502a83e6b/threathistory?startDate=2018-09-01&endDate=2018-09-30&pageSize=100&pageNr=3
|
Body Parameters
None.
Response Information
Resource Description
Information about matching threat history records.
GetThreatHistoryResponseModelName | Description | Type | Additional Information |
---|---|---|---|
MoreAvailable |
Value indicating whether more records are available in the queried time window. Increment the page number in the query to obtain additional threat history records. |
boolean |
None. |
PageNr |
The number of the page that was requested. |
integer |
None. |
PageSize |
The size of the page that was requested. |
integer |
None. |
StartDate |
Start date for returned records. Threat history entries after (or at) this date are contained in the response. |
date |
None. |
EndDate |
End date for returned records. Threat history entries before (or at) this date are contained in the response. |
date |
None. |
ThreatRecords |
List of threat history records. |
Collection of GetThreatHistoryResponseModel_Record |
None. |
Sample Response
{ "MoreAvailable": false, "PageNr": 1, "PageSize": 50, "StartDate": "2024-07-21T19:46:50.358888Z", "EndDate": "2024-10-21T19:46:50.358888Z", "ThreatRecords": [ { "EndpointId": "ba8ed284-ac2c-47e9-9148-8ffb9f0e6d8f", "MachineId": "2740E6599CC941B29C613BFB0813C6A5:::E13D78268866431CA48720723FECD3C8:::E13D78268866431CA48720723FECD3C8", "HostName": "MyComputer1", "FileName": "eicar.com", "PathName": "?:\\users\\user1\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2024-10-08T19:46:50.358888Z", "LastSeen": "2024-10-19T19:46:50.358888Z", "ExtendedInfo": { "DwellTime": 804, "FileMD5": "E6D0D1FADD434276ADDF7695F1FC0946", "FileSize": 68, "UserName": "User1", "IPAddress": "95.209.130.161", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } }, { "EndpointId": "c39737b3-b27b-4ded-8010-4f145a19cddb", "MachineId": "093761C0E30943309ACE1739A2C32614:::AD3A398A77ED4DD897758D3D70B6E154:::AD3A398A77ED4DD897758D3D70B6E154", "HostName": "MyComputer2", "FileName": "eicar.com", "PathName": "?:\\users\\user2\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2024-10-08T19:46:50.358888Z", "LastSeen": "2024-10-19T19:46:50.358888Z", "ExtendedInfo": { "DwellTime": 637, "FileMD5": "85D775B7B7F843B5A56BBCB8EBDCBC9D", "FileSize": 68, "UserName": "User2", "IPAddress": "95.159.1.156", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } } ] }
<GetThreatHistoryResponseModel xmlns:i="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://schemas.datacontract.org/2004/07/Webroot.UnityAPI.ServiceExtension.Console.Models"> <EndDate>2024-10-21T19:46:50.358888Z</EndDate> <MoreAvailable>false</MoreAvailable> <PageNr>1</PageNr> <PageSize>50</PageSize> <StartDate>2024-07-21T19:46:50.358888Z</StartDate> <ThreatRecords> <GetThreatHistoryResponseModel_Record> <EndpointId>ba8ed284-ac2c-47e9-9148-8ffb9f0e6d8f</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>804</DwellTime> <FileMD5>E6D0D1FADD434276ADDF7695F1FC0946</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.209.130.161</IPAddress> <UserName>User1</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2024-10-08T19:46:50.358888Z</FirstSeen> <HostName>MyComputer1</HostName> <LastSeen>2024-10-19T19:46:50.358888Z</LastSeen> <MachineId>2740E6599CC941B29C613BFB0813C6A5:::E13D78268866431CA48720723FECD3C8:::E13D78268866431CA48720723FECD3C8</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user1\desktop</PathName> </GetThreatHistoryResponseModel_Record> <GetThreatHistoryResponseModel_Record> <EndpointId>c39737b3-b27b-4ded-8010-4f145a19cddb</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>637</DwellTime> <FileMD5>85D775B7B7F843B5A56BBCB8EBDCBC9D</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.159.1.156</IPAddress> <UserName>User2</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2024-10-08T19:46:50.358888Z</FirstSeen> <HostName>MyComputer2</HostName> <LastSeen>2024-10-19T19:46:50.358888Z</LastSeen> <MachineId>093761C0E30943309ACE1739A2C32614:::AD3A398A77ED4DD897758D3D70B6E154:::AD3A398A77ED4DD897758D3D70B6E154</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user2\desktop</PathName> </GetThreatHistoryResponseModel_Record> </ThreatRecords> </GetThreatHistoryResponseModel>