Here’s an eye opener for all Android users. Symantec, the makers of Norton Internet Security, have issued a stern warning about several different app publishers that have been found to be pushing out a threatening virus called “Android Counter-clank”. This bot-like threat is a new variation of the threat Android.Tonclank. The malicious code is attached in a package called “apperhand” to the main application and when executed it can carry out certain actions and STEAL INFORMATION FROM THE DEVICE. It can also place a new Search icon on the Home Screen.

When you combine the number of downloads for all these malicious apps you get 1,000,000 to 5,000,000 installations, which is the widest reach reported for any malware yet this year.

The threat is limited to people who have installed apps from the following list OF publishers. You will notice that several of the apps are given similar names to legitimate apps. If you have a similarly named app, make sure to check the publisher’s name (point to be noted here is that even though there are a number of different Hearts Live Wallpaper apps, only the ones developed by  iApps7 Inc. is the malicious one), because more than likely you have a legitimate app and hence are not affected.

iApps7 Inc

  • Counter Elite Force
  • Counter Strike Ground Force
  • CounterStrike Hit Enemy
  • Heart Live Wallpaper
  • Hit Counter Terrorist
  • Stripper Touch girl

Ogre Games

  • Balloon Game
  • Deal & Be Millionaire
  • Wild Man


  • Pretty women lingerie puzzle
  • Sexy Girls Photo Game
  • Sexy Girls Puzzle
  • Sexy Women Puzzle

If you have been affected, Symantec provides removal instructions using their Norton Mobile Security here.

Some of the named apps are still in the Android Market, but will likely be removed soon by Google.

This serves as another reminder to always check the permission requests very carefully before you install any new apps new, especially those made by lesser known publishers. Just because an app is in the Market doesn’t guarantee it is safe, and be especially careful for non-Market apps.

Source: E-Security Planet