This thread title had me thinking “About 95% likely” before I clicked on it.
This had me revising my estimate to 100%.
I don’t know if that’s actively racist so much as simply shortsighted. It seems to assume that Indian scammers are incapable of hiring operators who don’t have noticeably Indian accents.
Mike_Mabes: Forgive me for continuing my rant, but this is a subject I have been following for a long time.
If you catch it in time, your Mom may only be out $20. It might be best to write that off. You may be tempted to get a refund, and if you contact the credit card company (thru the number on the back of the card), they might give you a refund.
BUT…
There is another common scam out there, the Refund Scam. You get a call from someone who is offering you a refund (for a payment, a service, a subscription, whatever). Although it may seem like they had a change of heart, DO NOT CONTINUE with this phone call.
Here’s how it works. The scammers claim they will send you the refund directly to your bank account. (How nice!) In order to do this, they connect to your computer and…
The scam takes several paths from here on, but the “connect to your computer” is where it becomes dangerous. You are now back to my first advice, where I said your entire life has been compromised.
@Kimstu:
Obviously that [hiring better English speakers] is possible, but they don’t seem to have caught on yet. I’m sure they will. Meanwhile, an Indian accent is a warning flag.
I’ve had good luck with the free version of MalwareBytes, just to do a one-time scan. I would run that as well.
I wouldn’t bother with Avast (after having it do a good, deep scan) – Windows Defender is probably just as effective and it’s free.
Is there anything your mom does with that computer than couldn’t be done on a Chromebook? Just less likely to get pwned on a Chromebook.
As others have said, your mother’s machine is compromised and I wouldn’t trust it one bit without wiping the system disk and doing a new clean install. Even the best virus scanners do not catch anything, and the scammers had full access to the system and could have installed a bunch of bad stuff that’s hard to detect. Even if an antivirus catches it, removal is still another story and sometimes futile. So backup your data, wipe the disk, do a clean OS install and change all online and local passwords your mother had.
Off-topic nitpick: Okay, now that arguably is a bit racist. I’ll assume that what you meant to say is “operators who are better at American English dialects” or “operators who don’t ‘sound Indian’ in their speech” or similar.
People who speak Indian English dialects or speak with Indian accents are not automatically “worse English speakers” than English speakers using other dialects and accents.
/OTN
@Mike_Mabes: It’s a cat and mouse game. As soon as the anti-virus software dudes invent a scheme to detect something, the crooks invent a scheme to get around it. So Avast or any other program might or might not detect the stuff you want to find.
Personally, I wouldn’t trust it completely, but the choice is yours. A clean OS install, as much of a hassle as it is, is less risky.
I really don’t like the assumptions in this comment, and we’ve had discussions in the past about victim blaming people who fall for tech/IT scams, especially when they’re ageist in nature. Yes, the basic sentiment is 100% correct (this isn’t a slam on @musicat after all) - but the scams hit people who may be fully intelligent, but just not at their best on that day, or may for whatever reason seem more plausible. As an example that didn’t happen, the OP mentioned going a few days with minimal sleep, and not being at their best - sure, it didn’t happen to their computer, but things slip by when you’re over tired, upset, or on medication.
Yes - always try to be aware, but not everyone is as suspicious and investigative as we SD types tend to be. 
For cross reference, I’m linking this to the Omnibus Scam thread, which is chock full of scams and Scam-baiters.
…and Rinoa Poison, Mark Rober, Scammer Payback, and IRLRosie. And check out People’s Call Center, where several of these White Hat Hackers got together for a week to give the scammers something to worry about. They were able to warn some potential victims in time and even get some money back.
I own an IT company and have 5 full time employees in India plus about 40% of my staff in Canada are Indian born. While I agree that many of these scams are Indian-based (and the OP’s story indicates 100% scam), you are painting with a broad-brush here.
Mark Rober’s glitter-bombing/fart-spraying videos are completely juvenile, and yet I enjoy the heck out of them. That said, over the years he’s gotten more and more serious about prevention and working with law enforcement, and it’s been good to watch him and these other scam-fighters joining forces.
Word.
My mom fell for this scam some years back, but I had warned her well, so while she was talking to some guy named Michael from Florida who was super friendly, she let him know she needed to call her son. As soon as she did I told her to hang up and “Unplug your computer right now.”
I treated it as compromised in the worst way, since he had had his way with the machine for some time before she called. As she didn’t really use it for much, and she used her iPad for day to day things, I had her ship it to me across the country so I could grab her documents and reimage it.
I yanked the old hard drive, put in a nice SSD for her, restored MacOS and put the handful of files she had back. Thankfully she didn’t keep huge amounts of stuff on the machine. I then shipped the machine back to her and she was as pleased as punch.
Public floggings of these criminals might be interesting to watch.
What I am going to do today is Reset the PC, then run Malware bytes. Then I will look into a clean reinstall, I know she does not have a DVD drive so I’ll have to go through the steps to do it from a USB drive. Or maybe I’ll just contact a tech company, I’m too tired to think about it now. BTW I work 3rd shift, so this is when I would normally be sleeping
I see that a clean reinstall is the only way to be 100% sure, but by now the scammers probably know they have been found out. They’ll probably just move on to the next victim, there must be hundreds. Are they really going to come back to Mom’s computer and try again? It’s possible
Oh, one last thing. Can I create the USB to reinstall on my computer? It would be easier.
Yes.
ETA: I believe you need an 8GB USB thumb drive; it will be completely reformatted during the installation creation process.
I really am tired and was just about to edit. Why wouldn’t I be able to do it here? Not sure what version of Windows she has, probably 8 or 9, I guess I will do 11.
If they had access to the computer for an hour, it may be possible that the UEFI was modified. If they were able to manage that (not sure it is still doable these days) a clean OS install might not be sufficient to eliminate the vulnerability.
I agree. I feel that 80% of legitimate tech people I talk to online have Indian accents, so the presence of an Indian accent is not indicative of anything to me.
In the case of the story in the OP, the bit that should have raised suspicions wasn’t the Indian accent but the pop-up box warning of the compromise and providing a number to call.
Of course they’ll keep trying. Because it’s not “them”, it’s their computers. They have automated stuff on her computer now that will absolutely positively phone home as soon as she logs onto her bank again. And you’ll / she’ll be right back where she started: totally vulnerable to rampant theft.
I STRONGLY suggest you quit trying to do this the apparently easier way, with malware scans, etc., that may well miss some of what was done. In the biz they simply wipe a machine that had this happen. Anything else simply has too low a success percentage to be worthwhile.