Domain name for API request: cwp.intl.tencentcloudapi.com.
This API is used to query malicious request event details.
A maximum of 20 requests can be initiated per second for this API.
The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.
Parameter Name | Required | Type | Description |
---|---|---|---|
Action | Yes | String | Common Params. The value used for this API: DescribeRiskDnsEventInfo. |
Version | Yes | String | Common Params. The value used for this API: 2018-02-28. |
Region | No | String | Common Params. This parameter is not required. |
Id | Yes | Integer | Malicious request event ID |
Parameter Name | Type | Description |
---|---|---|
Info | RiskDnsEvent | Malicious request event details Note: This field may return null, indicating that no valid values can be obtained. |
RequestId | String | The unique request ID, generated by the server, will be returned for every request (if the request fails to reach the server for other reasons, the request will not obtain a RequestId). RequestId is required for locating a problem. |
POST / HTTP/1.1
Host: cwp.intl.tencentcloudapi.com
Content-Type: application/json
X-TC-Action: DescribeRiskDnsEventInfo
<Common request parameters>
{
"Id": 1
}
{
"Response": {
"Info": {
"Id": 10368,
"PolicyId": 0,
"PolicyType": -1,
"PolicyName": "",
"ProtectLevel": 2,
"HostId": "02db9a21-78fe-4a4c-b96f-a11bf819a962",
"HostName": "v_llzlu malicious request",
"HostIp": "192.168.111.28",
"WanIp": "43.138.255.181",
"HostStatus": "OFFLINE",
"AgentId": "02db9a21-78fe-4a4c-b96f-a11bf819a962",
"Domain": "183.60.95.201",
"Tags": [],
"AccessCount": 1,
"ThreatDesc": "Detected access to malicious IPs/domains of your host. Your host may have been compromised.\nMalicious IPs/domain names could be the hacker's remote control servers, source of malware downloads, mining pool address, and so on.",
"SuggestSolution": "1. Check for malicious processes and invalid ports, and remove suspicious startup items and scheduled tasks;\n2. Isolate or delete related Trojan files;\n3. Conduct a risk detection on the system and reinforce the security. For details, see the following links: \n[Linux]https://www.tencentcloud.com/document/product/296/9604?from_cn_redirect=1\n[Windows]https://www.tencentcloud.com/document/product/296/9605?from_cn_redirect=1",
"ReferenceLink": "",
"HandleStatus": 6,
"Pid": 1387042,
"ProcessName": "/usr/bin/ping",
"ProcessMd5": "7f42e35e3065eaa9a58b89e249e8cbc7",
"CmdLine": "ping 183.60.95.201 ",
"FirstTime": "2022-09-19 14:57:23",
"LastTime": "2022-09-19 14:57:23"
},
"RequestId": "083fae4c-ac2c-4e41-ad88-b4420c9fce7c"
}
}
TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.
The following only lists the error codes related to the API business logic. For other error codes, see Common Error Codes.
Error Code | Description |
---|---|
AuthFailure | CAM signature/authentication error. |
InternalError | Internal error |
InvalidParameter | Incorrect parameter. |
ResourceNotFound | The resource does not exist. |
Was this page helpful?