GetThreatHistoryResponseModel_Record

Provides details about a threat incidence.

NameDescriptionTypeAdditional Information
EndpointId

The endpoint identifier on which the threat was detected.

string

None.

MachineId

Machine ID of the endpoint on which the threat was detected.

string

None.

HostName

The hostname of the endpoint on which the threat was detected.

string

None.

FileName

The filename of the detected threat.

string

None.

PathName

The path to the directory where the file was found.

string

If the path included a drive letter, the letter has been replaced with a question mark. For example, you might see a pathname that looks similar to the following: ?:\users\user1\desktop.

MalwareGroup

The classification of the malware; for example: Trojan or System Monitor.

string

None.

FirstSeen

The date and time when the file was first seen on the endpoint.

date

None.

LastSeen

The date and time when the file was last seen on the endpoint.

date

None.

ExtendedInfo

Extended information about the threat incidence. This information is only included when explicitly requested.

GetThreatHistoryResponseModel_ExtendedInfo

None.