i just came of a 1 hour call just tryna waste geek squad scammers’ time and try to obtain there files, they installed like 3 instances of anydesk and teamviewer + another one starting with team. once the call ended in back and forth swearing when he realised i was scambaiting, i quickly uninstalled all the software, however when i deleted teamviewer it said : successfully uninstalled but unable to end this instance: *shell.
i did a virus scan and nothing showed up but im almost certain they reverse-shelled me. am i being paranoid or is this something i should be careful of
Did you bait them without a VM? If you did that’s probably one of the worst mistakes to make while bating. I don’t have hacking experience, but it might be a reverse shell, but I would wait until a more experienced member of the community responds, since I’m only 50% sure.
I would advice you to go into your task manager and end all suspicious tasks. Also check your startup applications and go into your task scheduler for anything suspicious, just to be on the safe side.
Since a reverse shell isn’t likely a virus, I wouldn’t expect this to specifically turn anything up. It’s unlikely that a scammer can just “throw down a reverse shell” upon demand. However, format & reinstall, then you know for sure you’re good. Going forward, only use a VM.