This happened to the old age father of a friend, who gave them a continuous authority on a debit card for "support". Downloaded and came in using TeamViewer, and messed with his PC. Traced the domain name back (set as a private individual, anonymised); got the registrar to de-anonymise their whois record due to being a commercial company. Traced the resulting contact details back to UK Companies House, where the guy was an Indian national who was one of two directors of 12 companies set up in a small business centre in Coventry, UK. Local Bank account received the funds. End result was that local trading standards got their bank account closed. Directors are on LinkedIn, and claim to have 600 telesales operatives in Kolkata, India.