GET /service/api/console/gsm/{gsmKey}/sites/{siteId}/groups/{groupId}/threathistory
?startDate={startDate}
&endDate={endDate}
&returnedInfo={returnedInfo}
&pageSize={pageSize}
&pageNr={pageNr}
Gets threat history information for endpoints on a group.
Request Information
URI Parameters
Name | Description | Type | Additional Information |
---|---|---|---|
gsmKey |
The GSM console keycode. |
string |
Required |
siteId |
The site identifier. |
string |
Required |
groupId |
The group identifier. |
string |
Required |
startDate |
If specified, returns all threat history records after (or at) the given date. If omitted, defaults to 'endDate' minus 24 hours. |
date |
None. |
endDate |
If specified, returns all threat history records before (or at) the given date. If omitted, defaults to the current date and time. |
date |
None. |
returnedInfo |
A comma separated list of classes of information to be provided in response data. Currently only the "ExtendedInfo" class is supported as a value. If omitted, general threat record information is returned only. |
string |
None. |
pageSize |
Specifies the number of records to return. |
integer |
Default value is 50 |
pageNr |
Specifies the page number. Can be used to retrieve the next batch of records. |
integer |
Default value is 1 |
URI Sample(s)
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/groups/4f08f3ad-7688-4d40-98a6-89bbf7df3daf/threathistory
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/groups/4f08f3ad-7688-4d40-98a6-89bbf7df3daf/threathistory?returnedInfo=ExtendedInfo
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/groups/4f08f3ad-7688-4d40-98a6-89bbf7df3daf/threathistory?startDate=2018-09-01&endDate=2018-09-30&pageSize=100&pageNr=3
|
Body Parameters
None.
Response Information
Resource Description
Information about matching threat history records.
GetThreatHistoryResponseModelName | Description | Type | Additional Information |
---|---|---|---|
MoreAvailable |
Value indicating whether more records are available in the queried time window. Increment the page number in the query to obtain additional threat history records. |
boolean |
None. |
PageNr |
The number of the page that was requested. |
integer |
None. |
PageSize |
The size of the page that was requested. |
integer |
None. |
StartDate |
Start date for returned records. Threat history entries after (or at) this date are contained in the response. |
date |
None. |
EndDate |
End date for returned records. Threat history entries before (or at) this date are contained in the response. |
date |
None. |
ThreatRecords |
List of threat history records. |
Collection of GetThreatHistoryResponseModel_Record |
None. |
Sample Response
{ "MoreAvailable": false, "PageNr": 1, "PageSize": 50, "StartDate": "2024-04-27T15:18:40.7895555Z", "EndDate": "2024-07-27T15:18:40.7895555Z", "ThreatRecords": [ { "EndpointId": "ea5aee74-3b91-489e-b2f3-1340d8d96a6e", "MachineId": "E2A64BD64D094442B7E76C1931BD4781:::E24EDC1F6CC34EDFAEBF13D1E46E2A2E:::E24EDC1F6CC34EDFAEBF13D1E46E2A2E", "HostName": "MyComputer1", "FileName": "eicar.com", "PathName": "?:\\users\\user1\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2024-07-14T15:18:40.7895555Z", "LastSeen": "2024-07-25T15:18:40.7895555Z", "ExtendedInfo": { "DwellTime": 835, "FileMD5": "71E5B2078C554B3585EFBDF78D0E32EF", "FileSize": 68, "UserName": "User1", "IPAddress": "95.151.197.145", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } }, { "EndpointId": "968a1278-ba3d-45f1-8186-bf8768f3e4fc", "MachineId": "A39C452C09B941C6972B70C90B8FF83F:::96236D28486642A99FEE0575B76FBCBC:::96236D28486642A99FEE0575B76FBCBC", "HostName": "MyComputer2", "FileName": "eicar.com", "PathName": "?:\\users\\user2\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2024-07-14T15:18:40.7895555Z", "LastSeen": "2024-07-25T15:18:40.7895555Z", "ExtendedInfo": { "DwellTime": 943, "FileMD5": "0BE10731630547F1AE81D3D1CA0D7CC6", "FileSize": 68, "UserName": "User2", "IPAddress": "95.44.11.245", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } } ] }
<GetThreatHistoryResponseModel xmlns:i="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://schemas.datacontract.org/2004/07/Webroot.UnityAPI.ServiceExtension.Console.Models"> <EndDate>2024-07-27T15:18:40.7895555Z</EndDate> <MoreAvailable>false</MoreAvailable> <PageNr>1</PageNr> <PageSize>50</PageSize> <StartDate>2024-04-27T15:18:40.7895555Z</StartDate> <ThreatRecords> <GetThreatHistoryResponseModel_Record> <EndpointId>ea5aee74-3b91-489e-b2f3-1340d8d96a6e</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>835</DwellTime> <FileMD5>71E5B2078C554B3585EFBDF78D0E32EF</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.151.197.145</IPAddress> <UserName>User1</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2024-07-14T15:18:40.7895555Z</FirstSeen> <HostName>MyComputer1</HostName> <LastSeen>2024-07-25T15:18:40.7895555Z</LastSeen> <MachineId>E2A64BD64D094442B7E76C1931BD4781:::E24EDC1F6CC34EDFAEBF13D1E46E2A2E:::E24EDC1F6CC34EDFAEBF13D1E46E2A2E</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user1\desktop</PathName> </GetThreatHistoryResponseModel_Record> <GetThreatHistoryResponseModel_Record> <EndpointId>968a1278-ba3d-45f1-8186-bf8768f3e4fc</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>943</DwellTime> <FileMD5>0BE10731630547F1AE81D3D1CA0D7CC6</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.44.11.245</IPAddress> <UserName>User2</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2024-07-14T15:18:40.7895555Z</FirstSeen> <HostName>MyComputer2</HostName> <LastSeen>2024-07-25T15:18:40.7895555Z</LastSeen> <MachineId>A39C452C09B941C6972B70C90B8FF83F:::96236D28486642A99FEE0575B76FBCBC:::96236D28486642A99FEE0575B76FBCBC</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user2\desktop</PathName> </GetThreatHistoryResponseModel_Record> </ThreatRecords> </GetThreatHistoryResponseModel>