Troj/Ranck-E is a backdoor and proxy Trojan that can be used to re-route HTTP packets.
Troj/Ranck-E creates the following registry entry, which points to
the original location of the Trojan, in order to run on system restart:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Services
Troj/Ranck-E registers itself as a service process and notifies the intruder of the port to use via a packet sent on port 10100.