Rather stupidly, I let myself be a victim to this " I am a Microsoft Rep and can fix your PC " scam from an Indian in a call centre informing me Microsoft had received multiple error messages from my PC as shown in the event viewer.
I got to the stage where I gave him my computer ID and installed the amy.exe remote desktop connection. It was only when i saw the second icon on the screen drifting across and realised they had gained remote access that i shut the PC down , ended the phone call and rebooted , wiping amy.exe off my PC on the reboot.
I've run a full system scan and it finds nothing so I don't think they installed any malware.
I'm hoping that by deleting the amy.exe program ( it didn't install any files ) that they won't be able to remotely access my PC again unless I initiate the process myself - is that right or am I in more danger than i think ?