Just had a friend's laptop here after he stupidly went along with this scam for a while (perhaps, luckily, the phone got cut off before the credit card info was requested). Anyway, Logmein was installed and Team Viewer was used as well, so it was being well setup.

But, my question is why would they add their own password to the user account? Seems useless to them to have a machine that couldn't be logged in by the owner. Was it just for spite or am I missing something?