Troj/Ranck-CD is a backdoor Trojan that allows a remote intruder to route HTTP traffic through the infected computer.
The Trojan creates the following registry entry so as to run itself on user logon:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
WXcmeinst
<path to file>
Troj/Ranck-CD when run listens on a randomly chosen TCP port in the range 10000-49999. The Trojan notifies a remote web server of the listening port via a web request.