While my first thought is to scan with the usual tools noted by Grif, it may not be malware but the usual spyware that companies install. For that you'll have to go get tools like Procmon and others at https://docs.microsoft.com/en-us/sysinternals/downloads/process-utilities

There's also the usual FIREWALL we could install and set it to initially block everything and have it ask for permission on each request to the Internet. So many firewalls do that so I won't supply any examples.

Back to sysinternals, did you at least look at AUTORUNS and learn what each entry does?

PS. The list of scans I would get done: http://www.cnet.com/forums/discussions/how-to-remove-pup-option-603542/#post-f742c795-5881-433b-a29b-6d758efe5cd3