Completely Disable Remote Access?

I recently had to install something to allow a tech agent free reign on my Win 8 Pro Home PC. The tech agent was courteous and professional and I have reasonable faith in her/him; however, I must be prudent when protecting my home PC.

What do I need to do that make 100% sure that the tech agent or an associate of the same company can never remote into my PC again? I have unchecked "Allow Remote Assistance connection to this computer" in Control Panel/System Properties. Also, I have a DLink 2540B external Firewall/Router but I'm not sure how to block the appropriate ports.

NOTE: This is nothing against the tech agent or her/his company. I'm just paranoid...

It will if you don't want them accessing the external firewall.

Don't "destroy your computer". What a ridiculous suggestion.

100% way of guaranteeing nobody could EVER use it again.

Isn't that what he asked for?

Please explain why you are suggesting physical destruction of a machine which has not been physically compromised. Reformatting and reinstalling gets everything, no? Or is it haunted now?

On top of that it doesn't have to be the fault of the machine itself. The router is a very vulnerable target along with any other computers on the network.

Actually, I tend to believe Griffin and think that destroying the computer might be an plausible but costly option. I'm not sure why he was voted down. Griffin is correct in stating that reformatting a drive will not get rid of everything...

Yes, I think changing the RDP Port is one of my better options, but maybe I just need to destroy the computer as Griffin said...

@Mr.Paranoid That's why he didn't respond.

But you would still not need to "destroy the computer". If you were that paranoid and believed they were that smart, you could simply re-flash your BIOS and save yourself a few hundred dollars (i.e. the expense of a new computer). I will always call people on their useless, alarmist answers which could end up someone a lot of money for no reason. And that was one of them.

@Griffin: so presumably you throw every computer that gets a boot sector virus in the garbage and tell the user they need to buy a new one (instead of doing a low level format and re-flashing the BIOS if you felt it necessary as an extra precaution)? Where else, other than the BIOS and the hard drive, can malware realistically persist in a computer? Be careful- your response to this may seriously reduce your credibility. Someone who didn't know any better could waste hundreds of dollars unnecessarily if they made the mistake of believing you.

@Griffin: so where in the chassis can malware persist? Where in the CPU can malware persist? Where in the motherboard after the BIOS has been re-flashed can malware persist? Where on a hard drive after doing a low-level format can malware persist, or even better, on an SSD after running the Secure Erase command? Where on the network card or graphics card can malware persist? Where in the RAM can a virus persist? Discarding the ENTIRE computer is starting to look a bit foolish now.

Just realized I'm arguing with a 16-year old. Poor guy's parents probably buy him a new computer every time he gets a virus.

@Austin''Danger''Powers Thing is I don't get viruses. Seems like normal event for you by the way you worded that.

@Austin''Danger''Powers Discarding the whole computer is foolish, if you don't want 100% guarantees.

@Austin''Danger''Powers Also if you don't know by now your graphics card actually has a bios update now! techpowerup.com/vgabios The fact that you had to be told that by a 16-year old makes you seem kind of foolish.