A client phoned me a few weeks ago to get me to come visit to check out two computers. One was her husband's laptop which he used for business, while the other was the lady's personal machine.
Both machines were obviously infected and she had tried to use the FixMeStick twice on her own machine, but it did not fix it. I ended up being there for about four hours fixing up the two machines.
I have had a few people ask me over the last couple of years about this so-called "FixMeStick" and chuckle as they jokingly suggested it might one day put me out of business. I would laugh it off but secretly I wondered just how sophisticated this device might be.
My client, Sheila, had purchased the stick last month with the hope it might solve her issues without having to call a real computer guy like myself. When it arrived she plugged it into her own personal machine first, updated it as per instructions, and then ran the scan. The scan took nearly 3 hours to complete. Afterward she logged onto her machine and to her surprise she was still getting pop-ups and her browser was hijacked, and the machine was very slow. So she ran the scan again, taking another three hours. To her sad disappointment she discovered afterward that the machine was still not fixed, and that's when she called me.
When I got there she told me the story of what happened and said she was very unhappy with the stick and asked if I, as a computer tech, could check it out and let her know what I thought of it. I agreed to try, and when I left her place I took the stick and the box with me and waited the opportunity to try it out for myself for the first time.
I downloaded MalwareBytes AntiMalware and installed it onto Sheila's machine and then updated it and ran a full system scan. It took quite a while to complete but when it was done it found 2379 threats, which I promptly quarantined, and then waited for the program to pop up a message for me to reboot the machine. After the reboot the machine worked a lot better. There were still some things that needed to be changed before I could give it a clean bill of health, and one of them was changing the default homepage in the browsers. (I usually change it to https://startpage.com because they don't spy on you.) Often when a machine is infected with malware, one of the things that gets changed is the default homepage so that your browser is redirected to some sort of marketing page to phish information from you. These are called browser hijackers.
A few days later I had the chance to try out the FixMeStick on an infected machine. After scanning the machine I noticed that there was no way to remove the threats it found. That is to say, there were no buttons or links to delete what had been moved into the FixMeQuarantine folder. After completing the process of scanning with the FixMeStick I rebooted and after the machine was up and running again I ran a scan with MalwareBytes and it found a bunch more threats that the FixMeStick did not find.
In conclusion I would not recommend the FixMeStick. While there is a chance it might clean your machine, it's scope of repair is rather limited to scanning and quarantining potentially dangerous files. But it cannot change your homepage that was changed by a browser hijacker, and it cannot uninstall bad programs or disable crappy toolbars. My advice is not to bother as you'll likely be disappointed.
