Troj/Ranck-CE is an HTTP proxy Trojan.
Troj/Ranck-CE allows a remote intruder to route HTTP traffic through the infected computer.
When first run Troj/Ranck-CE adds its pathname to the following registry entry to ensure it is run at system logon:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\PlanCx
Troj/Ranck-CE then runs in the background, listening on a port.
Sophos's anti-virus products include proactive protection technology, which can defend against new threats without requiring an update. Sophos customers have been protected against Troj/Ranck-CE (detected as Troj/Ranck-Gen) since version 3.88.