tencent cloud

1. API Description

Domain name for API request: cwp.tencentcloudapi.com.

This API is used to query malicious request event details.

A maximum of 20 requests can be initiated per second for this API.

2. Input Parameters

The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.

3. Output Parameters

4. Example

Example1 Query malicious request event details.

Input Example

POST / HTTP/1.1
Host: cwp.tencentcloudapi.com
Content-Type: application/json
X-TC-Action: DescribeRiskDnsEventInfo
<Common request parameters>

{
    "Id": 1
}

Output Example

{
    "Response": {
        "Info": {
            "Id": 10368,
            "PolicyId": 0,
            "PolicyType": -1,
            "PolicyName": "",
            "ProtectLevel": 2,
            "HostId": "02db9a21-78fe-4a4c-b96f-a11bf819a962",
            "HostName": "v_llzlu malicious request",
            "HostIp": "192.168.111.28",
            "WanIp": "43.138.255.181",
            "HostStatus": "OFFLINE",
            "AgentId": "02db9a21-78fe-4a4c-b96f-a11bf819a962",
            "Domain": "183.60.95.201",
            "Tags": [],
            "AccessCount": 1,
            "ThreatDesc": "Detected access to malicious IPs/domains of your host. Your host may have been compromised.\nMalicious IPs/domain names could be the hacker's remote control servers, source of malware downloads, mining pool address, and so on.",
            "SuggestSolution": "1. Check for malicious processes and invalid ports, and remove suspicious startup items and scheduled tasks;\n2. Isolate or delete related Trojan files;\n3. Conduct a risk detection on the system and reinforce the security. For details, see the following links: \n[Linux]https://www.tencentcloud.com/document/product/296/9604?from_cn_redirect=1\n[Windows]https://www.tencentcloud.com/document/product/296/9605?from_cn_redirect=1",
            "ReferenceLink": "",
            "HandleStatus": 6,
            "Pid": 1387042,
            "ProcessName": "/usr/bin/ping",
            "ProcessMd5": "7f42e35e3065eaa9a58b89e249e8cbc7",
            "CmdLine": "ping 183.60.95.201 ",
            "FirstTime": "2022-09-19 14:57:23",
            "LastTime": "2022-09-19 14:57:23"
        },
        "RequestId": "083fae4c-ac2c-4e41-ad88-b4420c9fce7c"
    }
}

5. Developer Resources

SDK

TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.

• Tencent Cloud SDK 3.0 for Python
• Tencent Cloud SDK 3.0 for Java
• Tencent Cloud SDK 3.0 for PHP
• Tencent Cloud SDK 3.0 for Go
• Tencent Cloud SDK 3.0 for Node.js
• Tencent Cloud SDK 3.0 for .NET
• Tencent Cloud SDK 3.0 for C++

Command Line Interface

• Tencent Cloud CLI 3.0

6. Error Code

The following only lists the error codes related to the API business logic. For other error codes, see Common Error Codes.