GET /service/api/console/gsm/{gsmKey}/sites/{siteId}/groups/{groupId}/threathistory
?startDate={startDate}
&endDate={endDate}
&returnedInfo={returnedInfo}
&pageSize={pageSize}
&pageNr={pageNr}
Gets threat history information for endpoints on a group.
Request Information
URI Parameters
Name | Description | Type | Additional Information |
---|---|---|---|
gsmKey |
The GSM console keycode. |
string |
Required |
siteId |
The site identifier. |
string |
Required |
groupId |
The group identifier. |
string |
Required |
startDate |
If specified, returns all threat history records after (or at) the given date. If omitted, defaults to 'endDate' minus 24 hours. |
date |
None. |
endDate |
If specified, returns all threat history records before (or at) the given date. If omitted, defaults to the current date and time. |
date |
None. |
returnedInfo |
A comma separated list of classes of information to be provided in response data. Currently only the "ExtendedInfo" class is supported as a value. If omitted, general threat record information is returned only. |
string |
None. |
pageSize |
Specifies the number of records to return. |
integer |
Default value is 50 |
pageNr |
Specifies the page number. Can be used to retrieve the next batch of records. |
integer |
Default value is 1 |
URI Sample(s)
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/groups/4f08f3ad-7688-4d40-98a6-89bbf7df3daf/threathistory
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/groups/4f08f3ad-7688-4d40-98a6-89bbf7df3daf/threathistory?returnedInfo=ExtendedInfo
|
GET
|
https://unityapi.webrootcloudav.com/service/api/console/gsm/3515-3EC8-3018-4DAB-A776/sites/3c5b599c-f244-4c7e-a78b-b3e9f252fac8/groups/4f08f3ad-7688-4d40-98a6-89bbf7df3daf/threathistory?startDate=2018-09-01&endDate=2018-09-30&pageSize=100&pageNr=3
|
Body Parameters
None.
Response Information
Resource Description
Information about matching threat history records.
GetThreatHistoryResponseModelName | Description | Type | Additional Information |
---|---|---|---|
MoreAvailable |
Value indicating whether more records are available in the queried time window. Increment the page number in the query to obtain additional threat history records. |
boolean |
None. |
PageNr |
The number of the page that was requested. |
integer |
None. |
PageSize |
The size of the page that was requested. |
integer |
None. |
StartDate |
Start date for returned records. Threat history entries after (or at) this date are contained in the response. |
date |
None. |
EndDate |
End date for returned records. Threat history entries before (or at) this date are contained in the response. |
date |
None. |
ThreatRecords |
List of threat history records. |
Collection of GetThreatHistoryResponseModel_Record |
None. |
Sample Response
{ "MoreAvailable": false, "PageNr": 1, "PageSize": 50, "StartDate": "2025-04-12T10:57:22.3494684Z", "EndDate": "2025-07-12T10:57:22.3494684Z", "ThreatRecords": [ { "EndpointId": "0ea9061e-1937-425e-800a-a7b3a235ed74", "MachineId": "1DB22981F89A4DE19C086AA48F49D8CD:::D2FA5C006DE644ECA5D55424D17652AA:::D2FA5C006DE644ECA5D55424D17652AA", "HostName": "MyComputer1", "FileName": "eicar.com", "PathName": "?:\\users\\user1\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2025-06-29T10:57:22.3494684Z", "LastSeen": "2025-07-10T10:57:22.3494684Z", "ExtendedInfo": { "DwellTime": 493, "FileMD5": "8C111735E4FA44D5A803B53AF7AD8D1A", "FileSize": 68, "UserName": "User1", "IPAddress": "95.35.42.226", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } }, { "EndpointId": "679a26b6-8489-4309-9a15-d34c9711a7b7", "MachineId": "C5092166BF604918B78C12CFF58DD7C5:::191F3402ECB2481687A585578BE3BE18:::191F3402ECB2481687A585578BE3BE18", "HostName": "MyComputer2", "FileName": "eicar.com", "PathName": "?:\\users\\user2\\desktop", "MalwareGroup": "Anti-Malware Testfile", "FirstSeen": "2025-06-29T10:57:22.3494684Z", "LastSeen": "2025-07-10T10:57:22.3494684Z", "ExtendedInfo": { "DwellTime": 949, "FileMD5": "48163AE439E54E62A419E7D835628B05", "FileSize": 68, "UserName": "User2", "IPAddress": "95.10.15.171", "Determination": "B", "FileVendor": "", "FileProduct": "", "FileVersion": "" } } ] }
<GetThreatHistoryResponseModel xmlns:i="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://schemas.datacontract.org/2004/07/Webroot.UnityAPI.ServiceExtension.Console.Models"> <EndDate>2025-07-12T10:57:22.3494684Z</EndDate> <MoreAvailable>false</MoreAvailable> <PageNr>1</PageNr> <PageSize>50</PageSize> <StartDate>2025-04-12T10:57:22.3494684Z</StartDate> <ThreatRecords> <GetThreatHistoryResponseModel_Record> <EndpointId>0ea9061e-1937-425e-800a-a7b3a235ed74</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>493</DwellTime> <FileMD5>8C111735E4FA44D5A803B53AF7AD8D1A</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.35.42.226</IPAddress> <UserName>User1</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2025-06-29T10:57:22.3494684Z</FirstSeen> <HostName>MyComputer1</HostName> <LastSeen>2025-07-10T10:57:22.3494684Z</LastSeen> <MachineId>1DB22981F89A4DE19C086AA48F49D8CD:::D2FA5C006DE644ECA5D55424D17652AA:::D2FA5C006DE644ECA5D55424D17652AA</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user1\desktop</PathName> </GetThreatHistoryResponseModel_Record> <GetThreatHistoryResponseModel_Record> <EndpointId>679a26b6-8489-4309-9a15-d34c9711a7b7</EndpointId> <ExtendedInfo> <Determination>B</Determination> <DwellTime>949</DwellTime> <FileMD5>48163AE439E54E62A419E7D835628B05</FileMD5> <FileProduct></FileProduct> <FileSize>68</FileSize> <FileVendor></FileVendor> <FileVersion></FileVersion> <IPAddress>95.10.15.171</IPAddress> <UserName>User2</UserName> </ExtendedInfo> <FileName>eicar.com</FileName> <FirstSeen>2025-06-29T10:57:22.3494684Z</FirstSeen> <HostName>MyComputer2</HostName> <LastSeen>2025-07-10T10:57:22.3494684Z</LastSeen> <MachineId>C5092166BF604918B78C12CFF58DD7C5:::191F3402ECB2481687A585578BE3BE18:::191F3402ECB2481687A585578BE3BE18</MachineId> <MalwareGroup>Anti-Malware Testfile</MalwareGroup> <PathName>?:\users\user2\desktop</PathName> </GetThreatHistoryResponseModel_Record> </ThreatRecords> </GetThreatHistoryResponseModel>