New
#1
Mother fell for remote access phone scam - what were they after?
Today my mother fell for a phone scam - the scammers called out of the blue, pretended to be from an ISP, used the Event Viewer to convince her there was something wrong with the computer's (Windows 7 Desktop) internet connection, and got her to install Teamviewer and presumably give them access (she doesn't remember what happened exactly, but she says she followed all their instructions). After doing everything they wanted, then they said that it was all fine but they wanted to speak to the account holder who was my father - he wasn't there at the time. Anyway, they called back in the evening, and I pretended to be my father. I played along up to the part where they wanted me to give them the Teamviewer ID and password and then hung up. Since then I've deleted Teamviewer and have run Malwarebytes Anti-Malware and Superantispyware which didn't turn up anything that looked too serious.
My question is: what were they after? Presumably money, but I note the following:
1) At no stage with the conversation with my mother or me did they mention payment or credit card details
2) The computer seemed to be working fine, with no obvious changes like new password checks/bricking/ransomware/new software (other than Teamviewer)
3) I can't work out why they would have wanted to talk to the account holder when they presumably got remote access already via my mother who believed them
I'm not sure what I'm missing and any insight would be much appreciated.