CN104239794A - Method and device for intercepting application to maliciously open browser - Google Patents
Method and device for intercepting application to maliciously open browser Download PDFInfo
- Publication number
- CN104239794A CN104239794A CN201410459220.0A CN201410459220A CN104239794A CN 104239794 A CN104239794 A CN 104239794A CN 201410459220 A CN201410459220 A CN 201410459220A CN 104239794 A CN104239794 A CN 104239794A
- Authority
- CN
- China
- Prior art keywords
- application
- browser
- open
- application message
- interception
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/566—Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/51—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
Abstract
The embodiment of the invention discloses a method for intercepting an application to maliciously open a browser. The method comprises the following steps: monitoring an operation of clicking a page popped by an application; when monitoring the operation, obtaining application information of the application, and matching the obtained application information with the application information in a blacklist, if the matching result is inconsistent, opening a browser to enter a webpage to which the popped page points, and if the matching result is consistent, intercepting the operation of opening the browser. According to the method and device for intercepting the application to maliciously open the browser provided by the embodiment of the invention, when a user utilizes the application of a mobile terminal, the harassment caused by the browser opened by the page popped by an unnecessary application can be avoided, and the user experience is improved.
Description
Technical field
The present invention relates to mobile network communication field, particularly relate to a kind of method and the device of tackling application malice open any browser.
Background technology
Along with the rise of smart mobile phone and panel computer, popular notice is moved to mobile terminal, but after employing smart mobile phone, some users also find, although software in mobile phone, game are useful, but again and again ejecting the advertisement come also is make us bothering.This is because some application developer are in order to obtain advertisement promotion expense, at the malice advertising platform that the inner embedding of application is a large amount of.Often occur that user opens game, it is all advertisement that screen account for a greater part of, touches the situation often putting advertisement less than correct position in the process of playing games.Advertisement is hit once overdue, applying in browser downloads advertisement will be ejected, user is not only allowed to feel very irritated, have impact on user and normally use mobile phone, and the valuable flow of waste user, even some unsafe application are also pointed in some advertisement, bring hidden danger to the information security of client.
Summary of the invention
In view of this, the embodiment of the present invention proposes a kind of method and the device of tackling application malice open any browser, to realize the interception to application malice open any browser.
First aspect, embodiments provides a kind of method of operating of mobile terminal, described method bag
Draw together: the operation of application institute popup web page is clicked in monitoring;
When monitoring described operation, obtain the application message of described application;
The application message got mated with the application message on blacklist, if both matching results are inconsistent, the webpage of open any browser to enter pointed by popup web page, if both matching results unanimously, tackles the operation of open any browser.
Second aspect, embodiments provide a kind of device tackling application malice open any browser, described device comprises:
Click action monitoring modular, for monitoring the operation clicking application institute popup web page;
Application message acquisition module, for when monitoring described operation, obtains the application message of described application;
Application message matching module, for mating the application message got with the application message on blacklist;
Intercept process module, for when the matching result of described application message matching module to both is inconsistent, the webpage of open any browser to enter pointed by popup web page, tackles the operation of open any browser when the matching result of described application message matching module to both is consistent.
The technical scheme that theres is provided of the present embodiment is provided, effectively can tackles application malice open any browser, user is avoided harass by the operation of malice open any browser, and then promote Consumer's Experience.
Accompanying drawing explanation
By reading the detailed description done non-limiting example done with reference to the following drawings, other features, objects and advantages of the present invention will become more obvious:
Fig. 1 is the process flow diagram of the interception application malice open any browser method that first embodiment of the invention provides;
Fig. 2 is the process flow diagram of the interception application malice open any browser method that second embodiment of the invention provides;
Fig. 3 is the process flow diagram of the interception application malice open any browser method that third embodiment of the invention provides;
Fig. 4 is the process flow diagram of the interception application malice open any browser method that fourth embodiment of the invention provides;
Fig. 5 is the structural drawing of the interception application malice open any browser device that fifth embodiment of the invention provides.
Embodiment
Below in conjunction with drawings and Examples, the present invention is described in further detail.Be understandable that, specific embodiment described herein is only for explaining the present invention, but not limitation of the invention.It also should be noted that, for convenience of description, illustrate only part related to the present invention in accompanying drawing but not full content.
Fig. 1 illustrates the first embodiment of the present invention.
Fig. 1 is the schematic flow sheet of the method for the interception application malice open any browser that first embodiment of the invention provides, and the method for described interception application malice open any browser comprises:
Step S101, the operation of application institute popup web page is clicked in monitoring.
In general, intelligent terminal is all equipped with a large amount of application, mobile end system classification mainly comprises iOS App (as: synchronously pushing away) and Android Apk (as: AirDroid, Baidu's application etc.).Wherein most application all can more embedded advertisements for commercial object.These advertisements normally use during application through the user that is everlasting and eject, and occupy larger screen area, and user very easily clicks the advertisement page of ejection.
Therefore, above-mentioned application institute popup web page can be specifically advertisement page.
Certainly, application institute popup web page is not limited to advertisement page, can also be the page of other any pre-set categories, such as in application the message push sent out or notice etc.
At present, mobile terminal all have employed touch-screen, and wherein the overwhelming majority all have employed capacitive touch screen.The structure of capacitive touch screen mainly plates the thin-film body layer of layer of transparent in glass screen, then at the additional lastblock cover glass of conductor layer, two Glass Design can thoroughly protect conductor layer and inductor.Capacitive touch screen all plates long and narrow electrode on touch-screen four limit, in electric conductor, form a low-voltage AC electric field.During user's touch screen, due to human body electric field, a coupling capacitance can be formed between finger and conductor layer, the electric current that four limit electrodes send can flow to contact, and the strong and weak distance to pointing electrode of electric current is directly proportional, being positioned at the controller after touch screen just can the ratio of calculating current and power, accurately calculates the position of touch point.
For other touch-screen, such as resistive touch screen, surface acoustic wave touch screen or infrared-type touch-screen etc., all can realize the position functions calculating touch point.Do not repeat at this.
When the operation of application institute popup web page is clicked in described monitoring, by the way, position, corresponding touch point can be calculated accurately, and whether be positioned at popup web page according to position judgment click location.
Step S102, when monitoring described operation, obtains the application message of described application.
As described in step S102, get the application message of current popup web page, by obtaining intention (intent) information of the startup browser that described application sends after monitoring the clicking operation to application institute popup web page, the application message of described application can be obtained from this intent information.
Intent mainly solves the communication between every assembly of Android application.
Intent is responsible for the action of single job in application, action.Relate to data, additional data is described, android system, then according to the description of this intent, is responsible for finding corresponding assembly, intent is passed to the assembly called, and complete calling of assembly.Therefore, intent plays a part a media mediation here, and the relevant information providing assembly to call mutually specially realizes the decoupling zero between caller and callee.So the application message of application can be obtained by the corresponding intent information of the startup browser sent.
For android system, the relevant information of application can also be obtained when known applications title by PackageManager, as related application information such as title, icon and application file sizes.
Step S103, mates the application message got with the application message on blacklist.
The collection mode of described blacklist can comprise following one or more:
The application message of application user selected adds blacklist;
The blacklist of application message is comprised from Network Capture.
Blacklist is for closing down or resist the rubbish fabricator on network, blacklist can be set by user or server on network is collected, for user's setting means, user can by browsing the mounted all application of present terminal in application manager, can choose from these application do not want by the operation of malice open any browser the application of harassing enter blacklist.The application message that blacklist is recorded comprises corresponding Apply Names, also can comprise the icon of application and the size of application file on this basis.In addition, also blacklist can be obtained by the webserver.The application blacklist of the malice open any browser operation that the webserver can be uploaded by user carries out finishing analysis, form the application blacklist of relatively more completely malice open any browser operation, user also can be downloaded by the application blacklist of the webserver to the malice open any browser operation on the webserver, for user in this locality, the application blacklist of the malice open any browser operation on the webserver also directly can be obtained by the mode of networking.In the present embodiment, main employing user is according to the application that should be used on selected blacklist existing in current mobile terminal, and auxiliary employing obtains from network the mode comprising the blacklist of application message.
The application message got is mated with the application message on blacklist, by the intent acquisition of information of startup browser that sends in the previous step S102 application message to corresponding application.This application message is compared with the application message in blacklist and mates, in the present embodiment, intent acquisition of information is Apply Names to the application message of corresponding application, this Apply Names is mated with the Apply Names on blacklist, described coupling refer to determine from intent acquisition of information to the Apply Names of corresponding application and blacklist Apply Names whether exist one to one or the corresponding relation of one-to-many.
Step S104, whether the match is successful to judge application message, if the match is successful, forwards step S105 to, if mate unsuccessful, forwards step S106 to.
The application message got is mated with the application message on blacklist, exports the result whether the match is successful.And proceed to corresponding treatment step according to different Output rusults.
Step S105, the operation of interception open any browser, this flow process terminates.
If the match is successful for the application message on the application message got and blacklist, then illustrate that the operation of open any browser is the corresponding operating of the desired interception of user.The operation of interception open any browser, can be realized by the operation directly stopping corresponding open any browser.
Step S106, the webpage of open any browser to enter pointed by popup web page.
If the application message got is mated unsuccessful with the application message on blacklist, mean that user does not wish to tackle the operation of the open any browser caused by this application, should the webpage of open any browser to enter pointed by popup web page.
The present embodiment clicks the operation of application institute popup web page by monitoring, obtain the application message of described application, and the application message got is mated with the application message on blacklist, if both matching results are inconsistent, the webpage of open any browser to enter pointed by popup web page, if both matching results unanimously, tackles the operation of open any browser.Make user when using mobile terminal application, can avoid the browser opened by unnecessary application popup web page harass, improve Consumer's Experience.
Fig. 2 illustrates the second embodiment of the present invention.
Fig. 2 is the schematic flow sheet of the method for the interception application malice open any browser that second embodiment of the invention provides.The method of described interception application malice open any browser is based on first embodiment of the invention, further, the application message got and the application message on blacklist are carried out mating and determine both matching results consistent after, before the operation of tackle open any browser, the step of the number of times of the operation of described application institute popup web page is clicked in increase detection within the regular hour; And by the operation optimization of interception open any browser be:
If the number of times clicked exceedes setting value, then the webpage of open any browser to enter pointed by popup web page, if the number of times clicked is not more than setting value, then tackle the operation of open any browser.
See Fig. 2, the method for described interception application malice open any browser comprises:
Step S201, the operation of application institute popup web page is clicked in monitoring.
Touch positioning principle by touch-screen, whether monitoring has the operation clicking application institute popup web page, and calculates position, corresponding touch point accurately, and whether is positioned at popup web page according to position judgment click location.
Step S202, when monitoring described operation, obtains the application message of described application.
By obtaining intention (intent) information of the startup browser that described application sends after monitoring the clicking operation to application institute popup web page, the application message of described application can be obtained from this intent information.
Step S203, mates the application message got with the application message on blacklist.
By obtaining the intent information of the startup browser that described application sends after monitoring the clicking operation to application institute popup web page, from this intent information, obtain the application message of described application.This application message is compared with the application message in blacklist and mates, the application message got is mated with the application message on blacklist, intent acquisition of information is Apply Names to the application message of corresponding application, this Apply Names is mated with the Apply Names on blacklist, if both matching results are inconsistent, the webpage of open any browser to enter pointed by popup web page, if both matching results unanimously, detects the number of operations clicking described application institute popup web page within the regular hour.
Step S204, whether the match is successful to judge application message, if mate unsuccessful, forwards step S205 to, if the match is successful, forwards step S206 to.
The application message got is mated with the application message on blacklist, exports the result whether the match is successful.And proceed to corresponding treatment step according to different Output rusults.
Step S205, the webpage of open any browser to enter pointed by popup web page, this flow process terminates.
If the application message got is mated unsuccessful with the application message on blacklist, mean that user does not wish to tackle the operation of the open any browser caused by this application, should the webpage of open any browser to enter pointed by popup web page.
Step S206, detects the number of times of the operation clicking described application institute popup web page within the regular hour.
Some may expected that the application settings of popup web page is blacklist in setting application blacklist mistiming by some users, or the application blacklist obtained from network does not also meet expectation and the use habit of user, when being set as the operation of tackling application malice open any browser by blacklist, still open any browser is wished, in this example, can click by adding users the operation that the detection mode applying popup web page judges whether to tackle application malice open any browser again in official hour.
Step S207, will click the number of times of the operation of described application institute popup web page compared with preset value.
From step S206, obtain the number of times of the operation clicking described application institute popup web page compared with pre-set preset value, in this example, will be set as 2 seconds the regular hour, the number of clicks of setting is no less than three times.
Step S208, judges whether the number of times of the operation clicking described application institute popup web page is less than preset value.If the number of times clicking the operation of described application institute popup web page is less than preset value, then proceed to step S209, if the number of times clicking the operation of described application institute popup web page is not less than preset value, then proceed to step 210.
Step S209, the operation of interception open any browser, this flow process terminates.
If the number of times that user clicks is less than setting value, then illustrate that the operation of open any browser is the corresponding operating of the desired interception of user.The operation of interception open any browser, can be realized by the operation directly stopping corresponding open any browser.
Step S210, the webpage of open any browser to enter pointed by popup web page.
If the number of times that user clicks is not less than setting value, mean may be due to the setting of blacklist there is mistake or the demand of black list user that obtains from network and not in full conformity with, tackled the operation of the open any browser desired by some users, and the operation that user is not less than preset value by the number of times of the number of operations clicking the operation of described application institute popup web page shows that user expects the webpage of open any browser to enter pointed by popup web page.
Judge whether the number of times of the operation clicking described application institute popup web page is less than imposing a condition of preset value, meet the custom of general user, user is expected to the operation of the open any browser of carrying out, general user can adopt the mode repeatedly clicked to guarantee that browser is bound to be opened to enter the webpage pointed by institute's popup web page.
The present embodiment by the application message got is mated with the application message on blacklist and determine both matching results consistent after, increase corresponding step before the operation of tackling open any browser: the number of times detecting the operation clicking described application institute popup web page within the regular hour; And the number of times of the operation of described application institute popup web page will be clicked in the regular hour compared with setting value, if the number of times clicked exceedes setting value, the then webpage of open any browser to enter pointed by popup web page, if the number of times clicked is not more than setting value, then tackle the operation of open any browser.Increase above-mentioned Rule of judgment, under application message the condition that the match is successful of user in application message and blacklist, still can be carried out the webpage of open any browser to enter pointed by popup web page by follow-up action.Make user when by mistake by application settings for the webpage of browser to enter pointed by popup web page can be opened when blacklist.And without the need to again going the application arranged on blacklist, further enhance Consumer's Experience.
Fig. 3 illustrates the third embodiment of the present invention.
Fig. 3 is the process flow diagram of the interception application malice open any browser method that third embodiment of the invention provides, described interception application malice open any browser method is based on the first embodiment, as seen from Figure 3, the method for described interception application open any browser comprises:
Step S301, the operation of application institute popup web page is clicked in monitoring.
Whether monitoring has the operation clicking application institute popup web page, and calculates position, corresponding touch point accurately, and whether is positioned at popup web page according to position judgment click location.
Step S302, when monitoring described operation, obtains the application message of described application.
By obtaining intention (intent) information of the startup browser that described application sends after monitoring the clicking operation to application institute popup web page, the application message of described application can be obtained from this intent information.
Step S303, ejects prompting interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the operation of open any browser.
This step is used for pointing out user, may cause for the operation clicking application institute popup web page and the operation of open any browser is tackled, if user is for the operation sense interest of open any browser, be ready that the operation performing open any browser then can by completing the operation that corresponding actions does not then tackle open any browser within a certain period of time.This operation can be preset as some usual motor habits of user, as repeatedly clicked the page, in the page, carry out touch carry out contact and slide, or draw some other special pattern, and by clicking radio box or input the modes such as specific character in prompt column.
It should be noted that at this, after step S303 can be embodied in the operation monitoring and click the application institute pop-up advertisement page, before the operation of interception open any browser, and be not only confined to after step S302.
Step S304, mates the application message got with the application message on blacklist.
By the intent acquisition of information of startup browser that sends in the previous step S302 application message to corresponding application.This application message is compared with the application message in blacklist and mates.
Step S305, whether the match is successful to judge application message, if the match is successful, forwards step S306 to, if mate unsuccessful, forwards step S307 to.
The application message got is mated with the application message on blacklist, exports the result whether the match is successful.And proceed to corresponding treatment step according to different Output rusults.
Step S306, if user does not complete corresponding actions within a certain period of time, tackles open any browser operation, otherwise, perform step S307.
If the match is successful for the application message on the application message got and blacklist, then illustrate that the operation of open any browser is the corresponding operating of the desired interception of user.The operation of interception open any browser, can be realized by the operation directly stopping corresponding open any browser.
Step S307, the webpage of open any browser to enter pointed by popup web page.
If the application message got is mated unsuccessful with the application message on blacklist, mean that user does not wish to tackle the operation of the open any browser caused by this application, should the webpage of open any browser to enter pointed by popup web page.
The present embodiment by the application message got is mated with the application message on blacklist and determine both matching results consistent after, increase to eject before the operation of tackling open any browser and point out interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the corresponding steps of the operation of open any browser.The present embodiment can point out to before the operation to interception open any browser user accordingly, and prompting user can select whether open any browser further according to the content of prompting.
Fig. 4 illustrates fourth embodiment of the invention.
Fig. 4 is the process flow diagram of the interception application malice open any browser method that fourth embodiment of the invention provides.Described interception application malice open any browser method is based on the 3rd embodiment.
As seen from Figure 4, described interception application malice open any browser method comprises:
Step S401, the operation of application institute popup web page is clicked in monitoring.
Whether monitoring has the operation clicking application institute popup web page, and calculates position, corresponding touch point accurately, and whether is positioned at popup web page according to position judgment click location.
Step S402, when monitoring described operation, obtains the application message of described application.
By obtaining the intent information of the startup browser that described application sends after monitoring the clicking operation to application institute popup web page, the application message of described application can be obtained from this intent information.
Step S403, ejects prompting interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the operation of open any browser.
This step is used for pointing out user, may cause for the operation clicking application institute popup web page and the operation of open any browser is tackled, if user is for the operation sense interest of open any browser, be ready that the operation performing open any browser then can by completing the operation that corresponding actions does not then tackle open any browser within a certain period of time.Specifically in the present embodiment, have employed and click described application institute popup web page number of times as suggested condition within the regular hour.Such set symbol closes the custom of general user, and user is expected to the operation of the open any browser of carrying out, general user can adopt the mode repeatedly clicked to guarantee that browser is bound to be opened.To be set as 2 seconds the regular hour in this example, the number of clicks of setting is no less than three times.
Step S403 can be embodied in after monitoring the operation clicking the application institute pop-up advertisement page, before the operation of interception open any browser, and to be not only confined to after step S402.
Step S404, mates the application message got with the application message on blacklist.
Step S405, whether the match is successful to judge application message, if mate unsuccessful, forwards step S406 to, if the match is successful, forwards step S407 to.
The application message got is mated with the application message on blacklist, exports the result whether the match is successful.And proceed to corresponding treatment step according to different Output rusults.
Step S406, the webpage of open any browser to enter pointed by popup web page, this flow process terminates.
Step S407, detects the number of times of the operation clicking described application institute popup web page within the regular hour.
In this example, the number of operations condition detection of setting being clicked within the regular hour described application institute popup web page is set as consistent with the operating conditions pointing out the user of user to carry out in step S403.
Step S408, will click the number of times of the operation of described application institute popup web page compared with preset value.
From step S407, obtain the number of times of the operation clicking described application institute popup web page compared with pre-set preset value, in this example, will be set as 2 seconds the regular hour, the number of clicks of setting is no less than three times.
Step S409, judges whether the number of times of the operation clicking described application institute popup web page is less than preset value.If the number of times clicking the operation of described application institute popup web page is less than preset value, then proceed to step S410, if the number of times clicking the operation of described application institute popup web page is not less than preset value, then proceed to step S411.
Step S410, if user does not complete corresponding actions within a certain period of time, tackles the operation of open any browser, otherwise performs step S411.
If the number of times that user clicks is less than setting value, then illustrate that the operation of open any browser is the corresponding operating of the desired interception of user.The operation of interception open any browser, can be realized by the operation directly stopping corresponding open any browser.
Step S411, the webpage of open any browser to enter pointed by popup web page.
If the number of times that user clicks is not less than setting value, mean may be due to the setting of blacklist there is mistake or the demand of black list user that obtains from network and not in full conformity with, tackled the operation of the open any browser desired by some users, and the operation that user is not less than preset value by the number of times of the number of operations clicking the operation of described application institute popup web page shows that user expects the webpage of open any browser to enter pointed by popup web page.
In the present embodiment, can click by adding users the operation that the detection mode applying popup web page judges whether to tackle application malice open any browser again in official hour.Can make user when by mistake by application settings for the webpage of browser to enter pointed by popup web page can be opened when blacklist.
The present embodiment by the application message got is mated with the application message on blacklist and determine both matching results consistent after, increase corresponding step before the operation of tackling open any browser: eject and point out interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the operation of open any browser, with regard to the present embodiment, above-mentioned corresponding actions can be that the number of times of the operation clicking described application institute popup web page is within a certain period of time not less than setting value.Namely this prompting and follow-up decision condition detect the number of times of the operation clicking described application institute popup web page within the regular hour; If the number of times clicked exceedes setting value, then the webpage of open any browser to enter pointed by popup web page, if the number of times clicked is not more than setting value, then the operation of tackling open any browser is consistent.If user according to completing corresponding actions within a certain period of time, can not tackle the prompting of the operation of open any browser, determine whether to adopt the relevant action of prompting to carry out open any browser or tackle browser to open.To make user when blacklist mistake according to the corresponding prompting provided, complete corresponding action, can the webpage of open any browser to enter pointed by popup web page.And without the need to again going the application arranged on blacklist, further enhance Consumer's Experience.
Fig. 5 illustrates fifth embodiment of the invention.
Fig. 5 is the structural drawing of the interception application malice open any browser device that fifth embodiment of the invention provides.
As seen from Figure 5, described interception application malice open any browser device comprises: click action monitoring modular 510, application message acquisition module 520, application message matching module 530, intercept process module 540.
Described click action monitoring modular 510 clicks the operation of application institute popup web page for monitoring;
Described application message acquisition module 520, for when monitoring described operation, obtains the application message of described application;
Described application message matching module 530 is for mating the application message got with the application message on blacklist;
Described intercept process module 540 is for when the matching result of described application message matching module to both is inconsistent, the webpage of open any browser to enter pointed by popup web page, tackles the operation of open any browser when the matching result of described application message matching module to both is consistent.
Further, described intercept process module 540, specifically for after the application message got and the application message on blacklist being carried out mating and determine that both matching results are consistent, detects the number of times of the operation clicking described application institute popup web page within the regular hour; If the number of times clicked exceedes setting value, then the webpage of open any browser to enter pointed by popup web page, if the number of times clicked is not more than setting value, then tackle the operation of open any browser.
Further, described application message acquisition module 520 specifically for:
Obtain the intention intent information of the startup browser that described application sends, from this intent information, obtain the application message of described application.
Further, this interception application malice open any browser device also comprises: reminding module 550, for after monitoring the operation clicking the application institute pop-up advertisement page, before the operation of interception open any browser, eject prompting interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the operation of open any browser.
Further, described intercept process determination module 540 specifically for: when user does not complete corresponding actions within a certain period of time, interception open any browser operation.
Above-mentioned interception application malice open any browser device can perform the method for the interception application malice open any browser that the embodiment of the present invention provides, and possesses the corresponding functional module of manner of execution and beneficial effect.
The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.
Those of ordinary skill in the art should be understood that, above-mentioned of the present invention each module or each step can realize with general calculation element, they can concentrate on single calculation element, or be distributed on network that multiple calculation element forms, alternatively, they can realize with the executable program code of computer installation, thus they storages can be performed by calculation element in the storage device, or they are made into each integrated circuit modules respectively, or the multiple module in them or step are made into single integrated circuit module to realize.Like this, the present invention is not restricted to the combination of any specific hardware and software.
Each embodiment in this instructions all adopts the mode of going forward one by one to describe, and what each embodiment stressed is the difference with other embodiments, the same or analogous part between each embodiment mutually see.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, to those skilled in the art, the present invention can have various change and change.All do within spirit of the present invention and principle any amendment, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (9)
1. tackle a method for application malice open any browser, it is characterized in that, comprising:
The operation of application institute popup web page is clicked in monitoring;
When monitoring described operation, obtain the application message of described application;
The application message got mated with the application message on blacklist, if both matching results are inconsistent, the webpage of open any browser to enter pointed by popup web page, if both matching results unanimously, tackles the operation of open any browser.
2. the method for interception application malice open any browser according to claim 1, it is characterized in that, the application message got and the application message on blacklist are carried out mating and determine both matching results consistent after, before the operation of tackling open any browser, also comprise:
Detect the number of times clicking the operation of described application institute popup web page within the regular hour;
The operation of described interception open any browser, specifically comprises:
If the number of times clicked exceedes setting value, then the webpage of open any browser to enter pointed by popup web page, if the number of times clicked is not more than setting value, then tackle the operation of open any browser.
3. the method for interception application malice open any browser according to claim 1, it is characterized in that, the application message of the described application of described acquisition, specifically comprises:
Obtain the intention intent information of the startup browser that described application sends, from this intent information, obtain the application message of described application.
4. the method for interception application malice open any browser according to claim 1, it is characterized in that, after monitoring the operation clicking the application institute pop-up advertisement page, before the operation of interception open any browser, also comprise: eject prompting interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the operation of open any browser;
The operation of described interception open any browser comprises: when user does not complete corresponding actions within a certain period of time, the operation of interception open any browser.
5. according to the method for described interception application malice open any browser arbitrary in claim 1-4, it is characterized in that, the collection mode of described blacklist comprises following one or more:
The application message of application user selected adds blacklist;
The blacklist of application message is comprised from Network Capture.
6. tackle a device for application malice open any browser, it is characterized in that, comprising:
Click action monitoring modular, for monitoring the operation clicking application institute popup web page;
Application message acquisition module, for when monitoring described operation, obtains the application message of described application;
Application message matching module, for mating the application message got with the application message on blacklist;
Intercept process module, for when the matching result of described application message matching module to both is inconsistent, the webpage of open any browser to enter pointed by popup web page, tackles the operation of open any browser when the matching result of described application message matching module to both is consistent.
7. according to claim 6 interception application malice open any browser device, it is characterized in that, described intercept process module specifically for:
After the application message got and the application message on blacklist being carried out mating and determine that both matching results are consistent, detect the number of times of the operation clicking described application institute popup web page within the regular hour; If the number of times clicked exceedes setting value, then the webpage of open any browser to enter pointed by popup web page, if the number of times clicked is not more than setting value, then tackle the operation of open any browser.
8. according to claim 6 interception application malice open any browser device, it is characterized in that, described application message acquisition module specifically for:
Obtain the intention intent information of the startup browser that described application sends, from this intent information, obtain the application message of described application.
9. the device of interception application malice open any browser according to claim 6, is characterized in that, the device of described interception application malice open any browser also comprises:
Reminding module, for after monitoring the operation clicking the application institute pop-up advertisement page, before the operation of interception open any browser, eject prompting interface, if to point out user to complete corresponding actions within a certain period of time, do not tackle the operation of open any browser;
Described intercept process module specifically for: when user does not complete corresponding actions within a certain period of time, interception open any browser operation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410459220.0A CN104239794B (en) | 2014-09-10 | 2014-09-10 | It is a kind of to intercept the method and device that application malice opens browser |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410459220.0A CN104239794B (en) | 2014-09-10 | 2014-09-10 | It is a kind of to intercept the method and device that application malice opens browser |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104239794A true CN104239794A (en) | 2014-12-24 |
| CN104239794B CN104239794B (en) | 2017-08-25 |
Family
ID=52227836
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410459220.0A Active CN104239794B (en) | 2014-09-10 | 2014-09-10 | It is a kind of to intercept the method and device that application malice opens browser |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104239794B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107491692A (en) * | 2016-06-13 | 2017-12-19 | 厦门雅迅网络股份有限公司 | A kind of method and system for monitoring Android terminal energy and wasting attack |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060149623A1 (en) * | 2004-12-30 | 2006-07-06 | Badros Gregory J | Advertisement approval |
| CN102385583A (en) * | 2010-08-31 | 2012-03-21 | 腾讯科技(深圳)有限公司 | Method for controlling browser to open window and web browser |
| CN103617395A (en) * | 2013-12-06 | 2014-03-05 | 北京奇虎科技有限公司 | Method, device and system for intercepting advertisement programs based on cloud security |
-
2014
- 2014-09-10 CN CN201410459220.0A patent/CN104239794B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060149623A1 (en) * | 2004-12-30 | 2006-07-06 | Badros Gregory J | Advertisement approval |
| CN102385583A (en) * | 2010-08-31 | 2012-03-21 | 腾讯科技(深圳)有限公司 | Method for controlling browser to open window and web browser |
| CN103617395A (en) * | 2013-12-06 | 2014-03-05 | 北京奇虎科技有限公司 | Method, device and system for intercepting advertisement programs based on cloud security |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107491692A (en) * | 2016-06-13 | 2017-12-19 | 厦门雅迅网络股份有限公司 | A kind of method and system for monitoring Android terminal energy and wasting attack |
| CN107491692B (en) * | 2016-06-13 | 2020-07-28 | 厦门雅迅网络股份有限公司 | Method and system for monitoring energy-empty consumption attack of Android terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104239794B (en) | 2017-08-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103235695B (en) | Touch control device prevents method and the device thereof of maloperation | |
| CN102819416B (en) | A kind of realize the method and apparatus that component content shows | |
| CN102970402A (en) | Method and device for updating contact information of mobile terminal address book | |
| CN104469717B (en) | Note transmission method and device | |
| CN101943995A (en) | Method and device for processing display information of mobile terminal and touch screen thereof | |
| CN102566931A (en) | Method and device for displaying suspended window | |
| CN105677222B (en) | Application message methods of exhibiting, application message show device and terminal | |
| CN107577372A (en) | Edge touch control method, device and mobile terminal | |
| CN109074171A (en) | Input method and electronic equipment | |
| CN101419620A (en) | Method for shielding web page element and apparatus thereof | |
| CN107995973A (en) | A kind of information processing method and device | |
| CN104049874A (en) | Touch chirography generation method and system of touch pen | |
| CN103019426A (en) | Interacting method and interacting device in touch terminal | |
| CN103713828A (en) | Method of deleting two desktop icons by collision | |
| US20170046044A1 (en) | Display control method and electronic device | |
| CN107422916A (en) | A kind of response method of touch operation, device, storage medium and terminal | |
| CN104537049B (en) | A kind of picture browsing method and device | |
| CN101866261A (en) | Method for selecting menu and mobile terminal | |
| CN109085982A (en) | content identification method, device and mobile terminal | |
| CN103870750A (en) | Method and device for achieving device safety scanning in browser | |
| CN107508969A (en) | A kind of information processing method, device, computer installation and computer-readable recording medium | |
| CN104239794A (en) | Method and device for intercepting application to maliciously open browser | |
| CN103399685B (en) | Method, device and terminal for restoring language settings | |
| CN106919597A (en) | Information recommendation method and device | |
| CN108268291A (en) | A kind of application program delet method and terminal device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CP01 | Change in the name or title of a patent holder | ||
| CP01 | Change in the name or title of a patent holder |
Address after: Changan town in Guangdong province Dongguan 523860 usha Beach Road No. 18 Patentee after: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS Corp.,Ltd. Address before: Changan town in Guangdong province Dongguan 523860 usha Beach Road No. 18 Patentee before: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS Corp.,Ltd. |