There are many possible tools to use, but the first point of call is generally Autoruns:
https://technet.microsoft.com/en-gb/.../bb963902.aspx - it has a feature to check file signature and also submit & query files automatically with Virustotal.
Perhaps tcpview will tell you which process is actually listening on that proxy port:
http://live.sysinternals.com/tcpview.exe
If you have the ability to do so, it's often useful to remove the drive and scan it while plugged in to a second PC, using a couple of different trial AV applications.