Related
/!\ BE AWARE OF YOUR APP, DavinciDevelopers try to steal them and sell them on the market !!
Hello guys,
Be careful, if you post an apk of your free app here, somebody will try to take the apk, remove the signature, and upload it as a paid version on the market !
The proofs : (edited to add new stolen softwares)
Llamadroid
- http://forum.xda-developers.com/showthread.php?p=10113570#post10113570
- http://www.androlib.com/android.application.com-kebab-llamadroid-zzjjD.aspx
(removed today, on 5th january)
Typo clock
- http://forum.xda-developers.com/showthread.php?t=814054
- http://www.appbrain.com/app/beautiful-clock-widget-3d/com.semicuda.typoclock
Iron soldiers
- http://forum.xda-developers.com/showthread.php?t=862875
- http://www.appbrain.com/app/iron-soldiers/vuxia.ironSoldiers
(removed from market today, on 5th january, but still referenced)
Championship racing 2010
- http://www.vividgames.com/sub_game.php?id=42
- http://www.androlib.com/android.application.com-vividgames-championship_racing_2010-zzxwq.aspx
(removed today, on 5th january)
Liquid wallpaper
http://forum.xda-developers.com/showthread.php?t=878252
http://www.appbrain.com/app/liquid-physics/livewallpaper.liquid
Bluetooth Scanner
http://forum.xda-developers.com/showthread.php?t=900923
http://www.androidzoom.com/android_games/casual/bluetooth-scanner_pvqg.html
(New !! Now, we have proof that ALL his apps are stolen)
And even Gameloft best sellers (paid games) :
http://www.androlib.com/android.app...ndroid-gand-gloftspaw-heroofsparta-zjCDi.aspx
(removed from market today, on 5th january, but still referenced)
http://www.androlib.com/android.application.com-gameloft-android-gand-gloftavar-avatar-zjCEx.aspx
(removed from market today, on 5th january, but still referenced)
Minigore
http://minigore.blogspot.com/2009/07/what-minigore-is.html
http://www.appbrain.com/app/minigore-hd/com.ambushgames.minigore
http://www.androlib.com/android.application.com-ambushgames-minigore-zzjqD.aspx
Zuma's revenge
Original
http://www.zumasrevengegame.com/
http://store.steampowered.com/app/3620/
Scammers
http://www.appbrain.com/app/zumas-revenge-hd/com.popcap.zumas_revenge
http://www.appbrain.com/app/zumas-revenge/com.fox.game.zumasrevenge
How is it possible ?
Google does not check your apk signature when you upload a software.
Even if you signed yous apk with you key, somebody else can put this on his google account.
The signature can be deleted easily if needed.
He can change the title of your app, so nobody see it, but he can't change the apk name nor the icon.
Why do we post our apk here ?
To have testers, to correct bugs, to have a perfect look and feel before put it on the market.
Because on the market people are rude, we have only one chance, so we need to avoid bugs.
And when we put our app online, we want to choose if it's paid or free (with ads or not).
What is the problem ?
If DavinciDevelopers steal and upload your app, he will lock your pak name.
2 apps can't have the same name on the market.
You may have a name like com.myname.myapp.apk
Where "myname" is the same in every app you do.
If he take that, this is a major issue for you because you will be associated to him on every search (google.com, market...).
So, you will have to change your app name and maybe your company name....
Within 1 or 2 days, the market is parsed from androlib, androidzoom, appbrain... and it's done. Google.com will see those websites, and you are trapped.
You will have your buggy app on the market, some people will pay for that, the thief will have some money, and every users will have a bad opinion of your app.
Why DavinciDevelopers does this ?
To make benefit from your work.
Because he doesn't care you are working from a long time on your app.
Because he doesn't care if your work is ruined, he will find somebody else.
How can we be protected ?
Because 2 apps can't have the same name, you should put your app on the market first.
If your app is in development stage, you can upload it as "draft", so it will not be visible on the market, but the name will be locked.
Who is DavinciDevelopers ?
Somebody that have 83 apps on the market !
Almost all of them are themes.
If you look the package name you can see for example :
com.nd.android.pandatheme.p__3d_android_theme
at :
http://www.androlib.com/android.application.com-nd-android-pandatheme-p__3d_android_theme-qAmiz.aspx
google search : "pandatheme", first link :
http://home.pandaapp.com:888/
So he is not a developer. He makes themes with a free online tool and sell them... nice.
And for the real apps he uploaded (about 5), they all are stolen, coming from poland, germany, and other places.
Almost every of them comes from XDA dev forums.
ps : this message should be marked as sticky in every development section.
Wow, I can't believe this
It gets even better! Check this out:
http://www.androlib.com/android.app...ndroid-gand-gloftspaw-heroofsparta-zjCDi.aspx
http://www.androlib.com/android.application.com-gameloft-android-gand-gloftavar-avatar-zjCEx.aspx
He released the liquid physics live wallpaper I posted on here as well.
http://forum.xda-developers.com/showthread.php?t=878252
http://www.appbrain.com/app/liquid-physics/livewallpaper.liquid
Attacking GameLoft was a bad move for this/these guy(s).
They hit somewhere they shouldn't have I think.
Khoral said:
Attacking GameLoft was a bad move for this/these guy(s).
They hit somewhere they shouldn't have I think.
Click to expand...
Click to collapse
He has ripped off Popcap as well
http://www.appbrain.com/app/zumas-revenge-hd/com.popcap.zumas_revenge
And MiniGore
http://www.appbrain.com/app/minigore-hd/com.ambushgames.minigore
So STICKY!!!
It's really funny the website slogan:
http://davincidevelopers.weebly.com/
Innovation is everything. WTF
What do you thing, does it matter to left a comment like: app is stolen,... Seller steals apps from real developers or something else in market for "his" apks?
I wrote an email to appbrain and told them about this: maybe they can at least exclude this person from appbrain???
Has anyone emailed him to let him know that we all know?
Dirtbags
Sent from your mom's phone
kiltedthrower said:
Has anyone emailed him to let him know that we all know?
Click to expand...
Click to collapse
Like they would care... they just want to make some quick money from other's work.
The only way we can solve this if somehow we contact google to do something about it.
Since yesterday, he deleted some apps from his market.
I'm the developer of iron soldiers, I had been notified yesterday by another xda forum user that he stole my app.
I emailed him and within 3 or 4 hours he removed the app.
He answered me that he is so sorry, that he shares his key with other people and he didn't know... blabla.
Anyway, he has many stolen apps so he is hard to believe.
Now I see that thanaos2042 created a new thread (thanks ) and that google already referenced it :
If you google "davincideveloppers", this post is already in the first page !
Internet has a memory, and his name will not be forgotten.
they sell a lot of apps which is 80++ but they still using free website ....what a cheapskate...
Holy ****. Mods, please sticky this!!
I sincerely hope Google kicks their ass for this. I'm not familiar with the ToS but I hope they get hit with a lawsuit and instant refunds to say the least.
Stealing from Indie Developers is simply ****ed up. Wouldn't it be funny if a massive attack was launched against this asshole's website? (wink wink)
Chalup said:
Stealing from Indie Developers is simply ****ed up. Wouldn't it be funny if a massive attack was launched against this asshole's website? (wink wink)
Click to expand...
Click to collapse
No, it wouldn't. He/they are using a free web host so that would effectively be an attack on a whole lot of innocent sites.
Terrible to steal!
stolen apps are all over the market, ive even seen the r2d2 live wallpaper from the droid, on the market for 99p,
Good to know about these flagrant ripoffs
Looks like someone took their website down. The link now shows a page that isn't published.
Edit: Looks like Google could do something about this since it appears to be a violation of the terms of service (see 11.4, 13.3 and 16)
11. Content licence from you
11.1 You retain copyright and any other rights you already hold in Content which you submit, post or display on or through, the Services. By submitting, posting or displaying the content you give Google a perpetual, irrevocable, worldwide, royalty-free, and non-exclusive licence to reproduce, adapt, modify, translate, publish, publicly perform, publicly display and distribute any Content which you submit, post or display on or through, the Services. This licence is for the sole purpose of enabling Google to display, distribute and promote the Services and may be revoked for certain Services as defined in the Additional Terms of those Services.
11.2 You agree that this licence includes a right for Google to make such Content available to other companies, organizations or individuals with whom Google has relationships for the provision of syndicated services, and to use such Content in connection with the provision of those services.
11.3 You understand that Google, in performing the required technical steps to provide the Services to our users, may (a) transmit or distribute your Content over various public networks and in various media; and (b) make such changes to your Content as are necessary to conform and adapt that Content to the technical requirements of connecting networks, devices, services or media. You agree that this licence shall permit Google to take these actions.
11.4 You confirm and warrant to Google that you have all the rights, power and authority necessary to grant the above licence.
13.3 Google may at any time, terminate its legal agreement with you if:
(A) you have breached any provision of the Terms (or have acted in manner which clearly shows that you do not intend to, or are unable to comply with the provisions of the Terms)
16. Copyright and trade mark policies
16.1 It is Google’s policy to respond to notices of alleged copyright infringement that comply with applicable international intellectual property law (including, in the United States, the Digital Millennium Copyright Act) and to terminating the accounts of repeat infringers. Details of Google’s policy can be found at http://www.google.com/dmca.html.
16.2 Google operates a trade mark complaints procedure in respect of Google’s advertising business, details of which can be found at http://www.google.com/tm_complaint.html.
Work-In-Progress
Domain is up
AppFeed.net
Coomon problem:
As many of you knows, there is no app or service for Android where users can request notifications of application updates, especially the price changes (mainly price drop), or updates for slow updating apps.
Solution:
My solution was to develop a website where users can add applications to a list, and get a unique RSS/Atom feed that notifies them whenever the apps gets updated (Price, Version, etc).
The feed can be added to any application that support it: Desktop Readers/notifiers (tested with Thunderbirds), Web-based readers (Tested with Google Reader).
I intended to add other forms of notifications, but later found that with the service if this then that I can create tasks that monitor my unique feed that do everything else: Email notifications, Twitter posts, or any other channel provided by the ifttt.com service.
Usage examples:
Some usage examples for such a service:
1) I like a paid app, but its cost is a bit high for me, so I add the app to my watch list to get notified if/when the app gets on sale, instead of having to check frequently or miss an opportunity to get the app during a great sale (happened to me few times already).
2) I like and played a game, and finished all levels, the developer promised extra levels, instead of leaving the game installed on my device and wait for updates, I can uninstall it and add it instead to my list and get notified when it's updated.
3) With Android Play Store auto update feature enabled, I miss most app updates, with notifications on selected apps I can see when those apps gets updated.
4) Other usages...
Status of the project
Currently this project is being developed and tested by just myself, and it seems to be working as expected. But to have a good service, I need some to extra help to test it better, to suggest features, etc.
What is mainly missing is some legal advice, such as a privacy policy and term of service, and on whether I can put up such a service (does Google allow this kind of service? knowing they do not provide API for the Google Play).
What is still missing the some text, I am not a native-English speaker so still trying to put things correctly.
Privacy
I take privacy issues very seriously.
To make this service work, I opted for using 3rd party sign-in (Google and Twitter), what is saved on the DB is a hash of the sso unique token, not even I can get the clear one. User name and email are required, and are saved encrypted in the DB (with AES), and get decrypted only during login to show your name on the top bar, nothing else.
Here is a screenshot of the main wishlist:
And here is what you get in the rss feed, through Google Reader:
Questions or Problems Should Not Be Posted in the Development Forum
Please Post in the Correct Forums & Read the Forum Rules
Moving to Q&A
lufc said:
Questions or Problems Should Not Be Posted in the Development Forum
Please Post in the Correct Forums & Read the Forum Rules
Click to expand...
Click to collapse
My topic is more development than questions, maybe not an Android App but and Android service
Updated post #1.
project is going well, anybody is interested, please let me know (by leaving a comment), if I get enough feedback, I'll get a domain and host it somewhere, currently it is running on a personal domain.
Update:
Got a domain for my new service, and now it is up and running.
check the first post for link and info
Hi,
while using google for authentication, I am actually notified that your website wants to "manage your contacts".
What is the reason behind that?
Thanks a lot
ale
alanzed said:
Hi,
while using google for authentication, I am actually notified that your website wants to "manage your contacts".
What is the reason behind that?
Thanks a lot
ale
Click to expand...
Click to collapse
For the authentication I use the HybridAuth library, and this is the minimum that I can ask for from Google for use the OAuth authentication, if there is anything less, I'll do it, but I can't find how.
Twitter authentication has just Read Only access (Minimum available).
Update:
Found the solution, now it doesn't ask for Manage Contacts...
Our app has been banned on Google Play and we don't understand the reason.
We are a small company that developed a rather simple application that shows the users a list of tasks and tracks completion of these tasks. Similar to JunoWallet but a different one.
The app had been released in May and everything was fine until a few days ago the app has been suspended in Google Play Market. The reason was described in the e-mail:
"This is a notification that your application, XXXXX , with package ID YYYYYY, has been removed from the Google Play Store.
REASON FOR REMOVAL: Violation of section 4.4 of the Developer Distribution Agreement.
After a regular review we have determined that your app interferes with or accesses another service or product in an unauthorised manner. This violates the provision of your agreement with Google referred to above."
We had no idea of could be possibly wrong, so we asked the Google if it might be a mistake, or result of miscommunication. In response I received this e-mail:
"We have reviewed your appeal and will not be reinstating your app. This decision is final and we will not be responding to any additional emails regarding this removal.
If your account is still in good standing and the nature of your app allows for republishing you may consider releasing a new, policy compliant version of your app to Google Play under a new package name. We are unable to comment further on the specific policy basis for this removal or provide guidance on bringing future versions of your app into policy compliance. Instead, please reference the REASON FOR REMOVAL in the initial notification email from Google Play."
Great but not really helpful. I'm not even sure where to ask or if I'm ever allowed to ask anything how to fix the app.
The list of tasks is provided by a famous global vendor that's integrated into thousands of apps, so it might not be the problem. The only idea we have regarding possible "unauthorised access" is that the app scans the list of installed packages to detect fraud with BlueStacks emulators. But this action doesn't require special authorization, and there are lots of application in the Play market that scan installed apps, even specialised ones, like "App List Backup".
We even could delete this functionality, if we were sure that it's a problem.
I'm pretty sure that we are not the only one who fell in such situation. Does anyone have any experience on how to work this out? Is it possible to approach Google and get practically useful feedback?
My was recently suspended too, for a different reason. Can you please tell me how long they took to reply to your appeal?
shararti said:
My was recently suspended too, for a different reason. Can you please tell me how long they took to reply to your appeal?
Click to expand...
Click to collapse
Not sure about the exact number of hours but it was certainly less than a day
I remember there is a on-line feedback in google play, you could ask questions by online phones calls, although it may be not related to the apps, but i think it`s better to be solved by voice communication rather than pale messages,
PS. we`ve met this kind of problem with Apple, as they claim we`re violating the "unauthorized" kind of problem. And we`ve done the resummit that app(revised) back and forth, it`s a quite tough experience.:crying:
Iankicksass said:
I remember there is a on-line feedback in google play, you could ask questions by online phones calls, although it may be not related to the apps, but i think it`s better to be solved by voice communication rather than pale messages,
PS. we`ve met this kind of problem with Apple, as they claim we`re violating the "unauthorized" kind of problem. And we`ve done the resummit that app(revised) back and forth, it`s a quite tough experience.:crying:
Click to expand...
Click to collapse
Yeah. But I was never able to get any number or anything from them. Officially I meant. The most informative thing I get from them was this text: "Thank you for your email. At the moment we're only able to respond to the emails submitted through our contact form in the Developer Help Center." And they simply do not have the form for direct questions. They suggest to use forum and never answer there.
My app was suspended 2 times
My experience:
1. I developed my next app. I Called it "Gmail Reader", and used a gmail-like icon with additional graphics around it. Not very wise probably - but as I saw hundred another apps having gmail logo in their icon, I thought it was OK. Aaand.. Suspended.
2. I wrote a reply to the suspension notification, and I got a machine reply. Then I replied second time, and finaly a man answered:
"While we are unable to provide specifics as to how to bring your app into compliance, please understand that usage of certain app titles and images may cause confusion among users who are searching for the legitimate app from the original creator. Please visit our Policy Help Center for more information and examples on our policy regarding Intellectual Property.
If we can assist you further, please let us know."
So That was it - the icon and the title, I thought.
3. So I repackaged, renamed, changed icon (drawn it myself). Instead of Gmail in the frist place I put "XYZ for Gmail". However, I noticed later, that I forgot in my screenshots on 2 places the previous icon - so not even in the main place, just somewhere in the screenshot.
Suspended again. This time, no answer, I filed an appeal, answered in half day - no dispute, app terminated. But i RECOMMEND to file an appeal - there is a form for that - as you might get closer to the reason why. I got this:
If your account is still in good standing and the nature of your app allows for republishing you may consider releasing a new, policy compliant version of your app to Google Play under a new package name. You can learn more about why your app was suspended by reviewing our policy on impersonation. We are unable to comment further on the specific policy
I have NO idea WHO the hell I impersonated. I would really like to know.. And even more I'd like to receive a warning before suspension.
Up in the corner of developers console there is a questionmark and in certain hours if you click it, instead of EMAIL you will see LIVE CHAT. From that chat I learned, they will not and cannot give you ANY support regarding the policies.
I also learned, that a "account in good standing" means that you can still publish apps.
4. Previous app had thousand unique installs in 3 days. So of course I repackaged....etc.. everything again, now extremely carefully, no Gmail word used in title. But I'm aware now, that I cannot know everything and they can suspend for any reason I'm not aware of - I maybe used some words mattel copyrighted DD SO it is really "fun". Let's see.
That's my story until now, will post again - hopefully will get wiser without further suspensions - it is time consuming sh** !!!
BTW, I wrote a letter to Google Dev Support, so they think of creating support for policies - as there are many developers with good intentions contributing a lot, not knowing WHY they are stopped.
Best of luck to all...
Hello, we are facing same problem for one of our app which is as of now available in India only.
We are curating videos from youtube. We have not taken written permission from youtube or content owner.
We are not monetising anyhow as of now.
However, there are various app who are indexing videos from youtube similarly like us.
Please help us with this sorting it out. As this is very important to us. Also how do we contact youtube for written approval?
I recently installed a firewall on my phone, mostly to block all the annoying, not relevant ads.
To my surprise, my mxplayer PRO is
- contacting Facebook, while playing a video from my local phone / LAN.
Why is it doing that ?
it also accesses compute instances on Amazon AWS.
Why is it doing that ?
Furthermore, when I block access to facebook and aws, mxplayer keeps working happily.
Did you request my permission again, as is necessary since the coming into force of GDPR / EU rules ??
(I do not remember that)
Is the data you want to collect lawful and necessary, in compliance with GDPR, for the business you have with me ?
awaiting your answers,
Due
Hi
i live in iran and recently iranian government forcing teachers and students to install an app, this app is not in play store and users must sideload it. so i suspect to this app and checked it in VirusTotal.com and found it:
https://www.virustotal.com/gui/file...259f76b3df94b045abd50e88b9e1f980b5d/detection
now my Q is detection is valid ?
Mehrdad.A said:
Hi
i live in iran and recently iranian government forcing teachers and students to install an app, this app is not in play store and users must sideload it. so i suspect to this app and checked it in VirusTotal.com and found it:
https://www.virustotal.com/gui/file...259f76b3df94b045abd50e88b9e1f980b5d/detection
now my Q is detection is valid ?
Click to expand...
Click to collapse
I' no security expert but my opinion for what it's worth.
Probably a false positive as it's only one detection. That said the app uses Iranian DNS (so government could potentially track your activity), it checks for root, and also has the following (see 2nd page of report) which could be fine but could also leak info to authorities you'd maybe not want to, though all also have legitimate functions.
Function name Detail info
ContentResolver;->query Read database like contact or sms LocationManager;->getLastKnownLocation Get last known location
android/app/NotificationManager;->notify Send notification getRuntime Get runtime environment
java/net/URL;->openConnection Connect to URL
java/net/HttpURLConnection;->connect Connect to URL
Camera;->open Open camera
HttpClient;->execute Query for a remote server
Also keep in mind an app can pass these tests by Antivirus but still use quite legitimate functions to leak data you maybe don't want to the app developers. Or worse download other files later that could be malicious, at the end of the day you need to trust both phone manufacturer & app producers to a large degree.