CN103906065B - The method that mobile terminal and its monitoring short message are sent - Google Patents
The method that mobile terminal and its monitoring short message are sent Download PDFInfo
- Publication number
- CN103906065B CN103906065B CN201210568531.1A CN201210568531A CN103906065B CN 103906065 B CN103906065 B CN 103906065B CN 201210568531 A CN201210568531 A CN 201210568531A CN 103906065 B CN103906065 B CN 103906065B
- Authority
- CN
- China
- Prior art keywords
- short message
- application
- sending interface
- white list
- message sending
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Telephone Function (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a kind of method that mobile terminal and its monitoring short message are sent, it is related to moving communicating field.This method includes the call operation in response to short message sending interface, counts the call number of short message sending interface, and the quantity for sending short message with short message application after being corrected is compared;If consistent, it is normal short message application to determine that this is called;If inconsistent, judge the application of this calling interface whether in system white list;If in list, the application for determining this calling interface is normal system application, and this is called to recorded in system white list sends in the record data of short message;If not in list, the application for pointing out this calling interface of user is suspicious application, and this is called in the record data that recorded suspicious application transmission short message.The present invention can monitoring transmission short message in real time number and process, provide alarm when backstage sends short message, prevent Malware from opening the order business of paying, protect user benefit.
Description
Technical field
The present invention relates to the method that moving communicating field, more particularly to a kind of mobile terminal and its monitoring short message are sent.
Background technology
Mobile terminal is gradually to intelligent development, and the API that mobile terminal is opened to third-party application is also more next
More, such as interface of the short message sending with reception, this allows third-party application by calling mobile terminal operating system
The transmission that the interface of offer realizes short message and the function of receiving.Certain applications can also be called and connect in operating system running background
Mouth sends short message, and user interface is not pointed out and fed back, therefore provides environment to malice fee suction software.
Current Malware is utilized sends the characteristic of short message, the state known nothing in user on terminal operating system backstage
Lower order charge operation, and the business confirmation short message of operator is shielded, reach the illegal objective that fee suction is deducted fees.According in the market
In the mobile terminal safety report of security firm's issue, the software for class of maliciously deducting fees mainly is sent short messages as the main spy that deducts fees in addition
Levy, account for the significant component of ratio of Malware.
In order to protect user benefit, it would be highly desirable to solve mobile terminal from malicious fee suction software masking Operator Specific Service and confirm short message,
Analog subscriber sends the problem of short message orders charge operation on backstage.
The content of the invention
A technical problem to be solved of the embodiment of the present invention is:Solve some malice fee suction software maskings operation at present
Business business confirms short message, and analog subscriber sends the problem of short message orders charge operation on backstage.
The one side of the embodiment of the present invention provides a kind of method that monitoring short message is sent, including:In response to short message hair
The call operation of interface is sent, the call number of short message sending interface is counted, and records the application letter for calling short message sending interface
Breath;The call number of short message sending interface is modified according to amendment data;By calling for revised short message sending interface
The quantity that number of times sends short message with short message application is compared;If comparative result is consistent, determine that this calls short message sending to connect
The application of mouth is normal short message application;If comparative result is inconsistent, judge that this calls the application of short message sending interface to be
It is no in system white list;If in system white list, determining that this calls the application of short message sending interface to be normal system
System application, and this is called the application that recorded in system white list send in the record data of short message;If not being
Unite in white list, point out user this call the application of short message sending interface to be suspicious application, and this is called recorded
Suspicious application is sent in the record data of short message.
Described be modified according to amendment data to the call number of short message sending interface specifically includes:Short message sending is connect
The call number of mouth subtracts amendment data, obtains the call number of revised short message sending interface, wherein, the amendment data
Including:Application in system white list sends the record data of short message, suspicious application and sends the record data of short message, deletes short message
Record data.
Methods described also includes:If deleting short message in note data storehouse, this deletion action be recorded into deletion
In the record data of short message, in order to which the call number to short message sending interface is modified.
Methods described also includes:Prompt the user whether suspicious application being set to system white list.
Methods described also includes:If the suspicious application is set to system white list by user, this is called and be recorded
Application in system white list is sent in the record data of short message;If the suspicious application is set to system blacklist by user,
The suspicious application is forbidden to call short message sending interface again.
The one side of the embodiment of the present invention provides a kind of mobile terminal, including:Counting module, in response to short message
The call operation of transmission interface, counts the call number of short message sending interface, and record the application for calling short message sending interface
Information;Data correction module, for being modified according to amendment data to the call number of short message sending interface;Count matches mould
Block, the quantity for the call number of revised short message sending interface to be sent into short message with short message application is compared;If
Comparative result is consistent, determines that this calls the application of short message sending interface to be normal short message application;If comparative result differs
Cause, judge that this calls the application of short message sending interface whether in system white list;White list module, if in system
In white list, determine that this calls the application of short message sending interface to be normal system application, and this is called recorded
Application in system white list is sent in the record data of short message;Alarm module is pointed out, if for not in system white list,
This calls the application of short message sending interface to be suspicious application to prompting user, and this is called recorded suspicious application and send
In the record data of short message.
The data correction module, specifically for:The call number of short message sending interface is subtracted into amendment data, repaiied
The call number of short message sending interface after just, wherein, the amendment data include:Application in system white list sends short message
Record data, suspicious application send short message record data, delete short message record data.
The data correction module, is additionally operable to:If deleting short message in note data storehouse, this deletion action is remembered
Record in the record data for deleting short message, in order to which the call number to short message sending interface is modified.
The prompting alarm module, is additionally operable to prompt the user whether that suspicious application is set into system white list.
The data correction module, is additionally operable to:If the suspicious application is set to system white list by user, this is adjusted
Sent with the application that recorded in system white list in the record data of short message;If the suspicious application is set to system by user
Blacklist, forbids the suspicious application to call short message sending interface again.
It is secondary by counting calling for short message sending interface the invention provides a kind of mobile terminal short message sending monitoring technology
Number, after being corrected to it, the quantity for sending short message with short message application is compared, if comparative result is consistent, is normal short
Letter, if comparative result is inconsistent, and not in system white list, then points out user to be suspicious application, it is possible thereby in real time
Number and process that mobile terminal sends short message are monitored, alarm is provided when backstage sends short message, prevents Malware from opening
The logical order business paid, protects user benefit.
In addition, the present invention is supported without high in the clouds virus base, for emerging Malware, equally it can recognize and prevent
Its malice is deducted fees.
By referring to the drawings to the detailed description of the exemplary embodiment of the present invention, further feature of the invention and its
Advantage will be made apparent from.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
There is the accompanying drawing used required in technology description to be briefly described, it should be apparent that, drawings in the following description are only this
Some embodiments of invention, for those of ordinary skill in the art, without having to pay creative labor, may be used also
To obtain other accompanying drawings according to these accompanying drawings.
Fig. 1 is the schematic flow sheet of method one embodiment that monitoring short message of the present invention is sent.
Fig. 2 handles the schematic flow sheet of one embodiment of suspicious application for the present invention.
Fig. 3 is the structural representation of mobile terminal one embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.Below
Description only actually at least one exemplary embodiment is illustrative, is never used as to the present invention and its application or makes
Any limitation.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative work premise
Lower obtained every other embodiment, belongs to the scope of protection of the invention.
Unless specifically stated otherwise, the part and positioned opposite, the digital table of step otherwise illustrated in these embodiments
Do not limited the scope of the invention up to formula and numerical value.
Simultaneously, it should be appreciated that for the ease of description, the size of the various pieces shown in accompanying drawing is not according to reality
Proportionate relationship draw.
It may be not discussed in detail for technology, method and apparatus known to person of ordinary skill in the relevant, but suitable
In the case of, the technology, method and apparatus should be considered as authorizing a part for specification.
In shown here and discussion all examples, any occurrence should be construed as merely exemplary, without
It is as limitation.Therefore, the other examples of exemplary embodiment can have different values.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi
It is defined, then it need not be further discussed in subsequent accompanying drawing in individual accompanying drawing.
Fig. 1 is the schematic flow sheet of method one embodiment that monitoring short message of the present invention is sent.As shown in figure 1, the implementation
The method of example comprises the following steps:
S101, a certain application call short message sending interface, to send short message.
It should be noted that all applications are required for calling short message sending interface when sending short message.These applications include using
The normal short message application in family, and normal system application, in addition to Malware.Wherein, the normal short message of user applies institute
The short message of hair is visible for a user, and usual user is in outbox it is seen that short message applies sent out short message;
But, the short message that normal system application and Malware are sent out is all invisible for a user, there will not be in outbox
Corresponding short message record, the difference of the two is that normal system is typically mobile terminal connection using sent out short message
Necessary to the business such as network, expense will not be produced, and the short message that Malware is sent out can be in the state of user knows nothing
Charge operation is ordered, and shields the business of operator and confirms short message, the illegal objective that fee suction is deducted fees is reached.
S102, in response to the call operation of short message sending interface, counts the call number of short message sending interface, and record
Call the application message of short message sending interface.
Present invention may apply to a variety of mobile terminal operating systems.With Android(Android)Exemplified by system, short message sending
Interface can be for example sendTextMessage (), when there is the application call interface, and system can start counter, and statistics should
The call number of interface.
S103, is modified according to amendment data to the call number of short message sending interface.
Specifically, the call number of short message sending interface is subtracted into amendment data, obtains revised short message sending interface
Call number, wherein, amendment data include:Application in system white list sends the record data of short message, suspicious application hair
Send the record data of short message, delete the record data of short message.
Wherein, if deleting short message in note data storehouse, this deletion action recorded to the record for deleting short message
In data, in order to which the call number to short message sending interface is modified.
S104, the quantity that the call number of revised short message sending interface is sent into short message with short message application is compared
Compared with whether the call number and short message for judging revised short message sending interface apply the quantity for sending short message consistent.
S105, if comparative result is consistent, determines that this calls the application of short message sending interface to be normal short message application,
This flow terminates.
S106, if comparative result is inconsistent, judges that whether this calls the application of short message sending interface in the white name of system
Dan Zhong.
Wherein, system white list can be set by user, without being updated by network connection.
S107, if in system white list, it is that user has allowed for or acknowledged application to illustrate this time to call, then may be used
To determine that this calls the application of short message sending interface to be normal system application, and this is called into the white name of the system of recorded
Application in list is sent in the record data of short message, and this flow terminates.
S108, if do not alarmed in system white list, point out user this call the application of short message sending interface
It is suspicious application, and this is called in the record data that recorded suspicious application transmission short message.
In addition, point out user this to call the application of short message sending interface be suspicious application when, can also simultaneously to
The application message of family display record, so as to for reference.
In the above-described embodiments there is provided a kind of mobile terminal short message sending monitoring technology, connect by counting short message sending
The call number of mouth, after being corrected to it, the quantity for sending short message with short message application is compared, if comparative result is consistent,
It is normal short message, if comparative result is inconsistent, and not in system white list, then points out user to be suspicious application, by
This can monitor the number and process that mobile terminal sends short message in real time, provide alarm when backstage sends short message, prevent
Malware opens the order business of paying, protects user benefit.In addition, the present invention is supported without high in the clouds virus base, for new
The Malware of appearance, equally can recognize and prevent its malice to deduct fees.
After suspicious application alarm is carried out, user can also be pointed out to handle the suspicious application.Fig. 2 is the present invention
Handle the schematic flow sheet of one embodiment of suspicious application.As shown in Fig. 2 the method for the embodiment comprises the following steps:
S201, prompts the user whether suspicious application being set to system white list.
S202, if the suspicious application is set to system white list by user, this is called and recorded system white list
In application send short message record data in.
Subsequently, the application can be with normal call short message sending interface, without sending alarm again.
S203, if the suspicious application is set to system blacklist by user, it is soft that the suspicious application is possible for malice
Part, forbids the suspicious application to call short message sending interface again.
Above-mentioned suspicious application processing method, it is allowed to which user is handled suspicious application, normal system application of letting pass, prohibits
Only malicious application, the interests for the user that can both adequately protect, can increase the flexibility using processing again.
Fig. 3 is the structural representation of mobile terminal one embodiment of the present invention.As shown in figure 3, the mobile end of the embodiment
End includes:
Counting module 301, for the call operation in response to short message sending interface, calling for statistics short message sending interface is secondary
Number, and record the application message for calling short message sending interface;
Data correction module 302, for being modified according to amendment data to the call number of short message sending interface;
Count matches module 303, for the call number of revised short message sending interface to be sent into short with short message application
The quantity of letter is compared;If comparative result is consistent, determine that this calls the application of short message sending interface to be normal short message
Using;If comparative result is inconsistent, judge that this calls the application of short message sending interface whether in system white list;
White list module 304, if in system white list, determining that this calls the application of short message sending interface to be
Normal system application, and this is called the application that recorded in system white list send in the record data of short message;With
And
Point out alarm module 305, if for not in system white list, point out user this call short message sending interface
Application be suspicious application, and this called recorded in the record data that suspicious application sends short message.
Wherein, data correction module 302, specifically for:The call number of short message sending interface is subtracted into amendment data, obtained
To the call number of revised short message sending interface, wherein, amendment data include:Application in system white list sends short message
Record data, suspicious application send short message record data, delete short message record data.
Wherein, data correction module 302, is additionally operable to:If deleting short message in note data storehouse, this deletion is grasped
Note down into the record data for deleting short message, in order to which the call number to short message sending interface is modified.
Wherein, alarm module 305 is pointed out, is additionally operable to prompt the user whether that suspicious application is set into system white list.
Wherein, data correction module 302, is additionally operable to:If the suspicious application is set to system white list by user, it incite somebody to action this
It is secondary to call the application that recorded in system white list to send in the record data of short message;If the suspicious application is set to by user
System blacklist, forbids the suspicious application to call short message sending interface again.
In the above-described embodiments there is provided a kind of mobile terminal short message sending monitoring technology, connect by counting short message sending
The call number of mouth, after being corrected to it, the quantity for sending short message with short message application is compared, if comparative result is consistent,
It is normal short message, if comparative result is inconsistent, and not in system white list, then points out user to be suspicious application, by
This can monitor the number and process that mobile terminal sends short message in real time, provide alarm when backstage sends short message, prevent
Malware opens the order business of paying, protects user benefit.In addition, the present invention is supported without high in the clouds virus base, for new
The Malware of appearance, equally can recognize and prevent its malice to deduct fees.
One of ordinary skill in the art will appreciate that realizing that all or part of step of above-described embodiment can be by hardware
To complete, the hardware of correlation can also be instructed to complete by program, described program can be stored in a kind of computer-readable
In storage medium, storage medium mentioned above can be read-only storage, disk or CD etc..
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all the present invention spirit and
Within principle, any modification, equivalent substitution and improvements made etc. should be included in the scope of the protection.
Claims (8)
1. a kind of method that monitoring short message is sent, including:
In response to the call operation of short message sending interface, the call number of short message sending interface is counted, and record calls short message
The application message of transmission interface;
The call number of short message sending interface is modified according to amendment data, including:Calling for short message sending interface is secondary
Number subtracts amendment data, obtains the call number of revised short message sending interface, wherein, the amendment data include:System
Application in white list sends the record data of short message, suspicious application and sends the record data of short message, deletes the record number of short message
According to;
The quantity that the call number of revised short message sending interface is sent into short message with short message application is compared;
If comparative result is consistent, determine that this calls the application of short message sending interface to be normal short message application;
If comparative result is inconsistent, judge that this calls the application of short message sending interface whether in system white list;
If in system white list, determine that this calls the application of short message sending interface to be normal system application, and will
This calls the application that recorded in system white list to send in the record data of short message;
If not in system white list, this calls the application of short message sending interface to be suspicious application to prompting user, and will
This, which is called, recorded in the record data that suspicious application sends short message.
2. according to the method described in claim 1, it is characterised in that also include:
If deleting short message in note data storehouse, this deletion action recorded in the record data for deleting short message, with
It is easy to be modified the call number of short message sending interface.
3. according to the method described in claim 1, it is characterised in that also include:Prompt the user whether suspicious application being set to
System white list.
4. method according to claim 3, it is characterised in that also include:
If the suspicious application is set to system white list by user, this is called to the application hair that recorded in system white list
Send in the record data of short message;
If the suspicious application is set to system blacklist by user, the suspicious application is forbidden to call short message sending interface again.
5. a kind of mobile terminal, including:
Counting module, for the call operation in response to short message sending interface, counts the call number of short message sending interface, and
Record calls the application message of short message sending interface;
Data correction module, for being modified according to amendment data to the call number of short message sending interface, including:By short message
The call number of transmission interface subtracts amendment data, obtains the call number of revised short message sending interface, wherein, it is described to repair
Correction data includes:Application in system white list sends the record data of short message, suspicious application and sends the record data of short message, deletes
Except the record data of short message;
Count matches module, the quantity for the call number of revised short message sending interface and short message application to be sent to short message
It is compared;If comparative result is consistent, determine that this calls the application of short message sending interface to be normal short message application;If
Comparative result is inconsistent, judges that this calls the application of short message sending interface whether in system white list;
White list module, if in system white list, determining that this calls the application of short message sending interface to be normal
System application, and this is called the application that recorded in system white list send in the record data of short message;
Point out alarm module, if for not in system white list, point out user this call the application of short message sending interface
It is suspicious application, and this is called in the record data that recorded suspicious application transmission short message.
6. mobile terminal according to claim 5, it is characterised in that the data correction module, is additionally operable to:
If deleting short message in note data storehouse, this deletion action recorded in the record data for deleting short message, with
It is easy to be modified the call number of short message sending interface.
7. mobile terminal according to claim 5, it is characterised in that the prompting alarm module, is additionally operable to point out user
Whether suspicious application is set to system white list.
8. mobile terminal according to claim 7, it is characterised in that the data correction module, is additionally operable to:
If the suspicious application is set to system white list by user, this is called to the application hair that recorded in system white list
Send in the record data of short message;
If the suspicious application is set to system blacklist by user, the suspicious application is forbidden to call short message sending interface again.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210568531.1A CN103906065B (en) | 2012-12-25 | 2012-12-25 | The method that mobile terminal and its monitoring short message are sent |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210568531.1A CN103906065B (en) | 2012-12-25 | 2012-12-25 | The method that mobile terminal and its monitoring short message are sent |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103906065A CN103906065A (en) | 2014-07-02 |
| CN103906065B true CN103906065B (en) | 2017-08-22 |
Family
ID=50997171
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210568531.1A Active CN103906065B (en) | 2012-12-25 | 2012-12-25 | The method that mobile terminal and its monitoring short message are sent |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103906065B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106068014A (en) * | 2016-06-20 | 2016-11-02 | 广东欧珀移动通信有限公司 | Note monitor method and device |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102088679A (en) * | 2009-12-08 | 2011-06-08 | 北京网秦天下科技有限公司 | Working method and system of intelligent short message firewall of self-learning mobile terminal |
| CN102291697A (en) * | 2011-06-09 | 2011-12-21 | 深圳市安之天信息技术有限公司 | Method and system for detecting short message intercepting type malicious codes of mobile terminal |
| CN102497479A (en) * | 2011-12-16 | 2012-06-13 | 深圳市金立通信设备有限公司 | Method for smart phone to judge Trojan programs according to application software behaviors |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2461870B (en) * | 2008-07-14 | 2012-02-29 | F Secure Oyj | Malware detection |
-
2012
- 2012-12-25 CN CN201210568531.1A patent/CN103906065B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102088679A (en) * | 2009-12-08 | 2011-06-08 | 北京网秦天下科技有限公司 | Working method and system of intelligent short message firewall of self-learning mobile terminal |
| CN102291697A (en) * | 2011-06-09 | 2011-12-21 | 深圳市安之天信息技术有限公司 | Method and system for detecting short message intercepting type malicious codes of mobile terminal |
| CN102497479A (en) * | 2011-12-16 | 2012-06-13 | 深圳市金立通信设备有限公司 | Method for smart phone to judge Trojan programs according to application software behaviors |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103906065A (en) | 2014-07-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100579150C (en) | Method for screen selecting and catching vicious disturbing calls | |
| CN102209326B (en) | Malicious behavior detection method and system based on smartphone radio interface layer | |
| CN107181816A (en) | Communication service platform, communication service system, communication means and communicator | |
| CN102075639A (en) | Method and device for intercepting malicious call in international service communication network | |
| CN106656989B (en) | Flow monitoring method and terminal | |
| CN101262675A (en) | Method for mobile phone to prevent from spam | |
| CN106792579A (en) | A kind of multimedia message hold-up interception method and device | |
| CN100391275C (en) | Method and system for processing garbage shortmessage | |
| CN109698885A (en) | A kind of processing method of call request, device, network side server and computer storage medium | |
| CN106157033A (en) | A kind of bank card (credit card and debit card) illegal method and system | |
| CN103906065B (en) | The method that mobile terminal and its monitoring short message are sent | |
| CN103974259B (en) | Prevention method, crime prevention device and crime prevention system that malice is deducted fees | |
| CN101860838A (en) | Method and system for charging prepayment | |
| CN100366106C (en) | Method and system for processing garbage short-message | |
| CN103858458A (en) | Method and device for monitoring a mobile radio interface on mobile terminals | |
| CN101771984A (en) | Method, device and system for charging data service in real time | |
| CN105227789B (en) | The hold-up interception method and device of a kind of harassing call | |
| KR100996709B1 (en) | Apparatus for blocking ?? application spam and method thereof | |
| CN1700799A (en) | Encryption protecting method for mobile telephone | |
| CN102065386A (en) | Method and device for guarding against rubbish messages in communication system | |
| CN101600026A (en) | A kind of in communication network the method for monitoring harassing calls | |
| CN102694903B (en) | Data communications method and device | |
| CN107819924A (en) | A kind of recognition methods of spam phone number, device and equipment | |
| CN104301549B (en) | Defaulting downtime missed call prompting system and method | |
| CN103037337A (en) | Method intercepting sent short message and device thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |