Severity scale:  

Freefoam ransomware virus. How to remove? (Uninstall guide)

removal by Alice Woods - - | Type: Ransomware

FreeFoam ransomware targets Russian-speaking PC users

Ransom note left by Freefoam ransomware

FreeFoam ransomware is computer malware that encrypts victim’s files using RSA encryption algorithm[1]. The ransomware targets Russian-speaking computer users[2] because the ransom note it leaves on the system (MESSAGE.txt) contains a message from criminals written in Russian. During the data encryption, the virus adds .freefoam extension after the original one to every file.

The Message.txt file holds a message that recommends writing to the cyber criminals as soon as possible via The message contains victim’s ID, which has to be included in the email to the cyber criminals; otherwise, it will be ignored. The fraudsters also suggest that third-party decryption tools won’t do any good to victim’s files and may even ruin them permanently.

FreeFoam virus also sets a deadline until the victim has to pay the ransom. If the victim fails to contact cyber criminals and buy the decryption tool from them, the victim’s decryption key will be deleted from frauds’ server.

Unfortunately, at the moment there aren’t many reports from victims, and currently, it is unknown whether the criminals even provide the decryption software for those who decide to pay. We do not recommend paying the ransom because it simply helps the crooks to organize more illegal projects.

Instead of paying the ransom, use anti-malware software to remove FreeFoam ransomware. We suggest using Reimage, although you can use another trustworthy anti-malware software[3].

Questions about Freefoam ransomware virus

To restore .freefoam extension files, you need to have a data backup. Sadly, there aren’t many data recovery options available – the ransomware corrupts files in a highly sophisticated way. We have provided some alternative options below the FreeFoam removal guide. You can find these tutorials below the description of the virus.

Distribution of the malware

The ransomware variant we described today is known to be delivered via email spam and illegal software packs. Currently, it is unknown whether it employs other distribution techniques (Trojans or exploit kits).

If you want to avoid installing ransomware like Freefoam, you need to apply several layers of protection. First of all, create a data backup. Second, install anti-malware software. Finally, stay cautious when browsing the world wide web.

Stay away from untrustworthy websites and illegal content. Remember that gambling or adult-oriented sites are known to be excellent sources of malware, so avoid clicking pop-ups and banners that appear on them.

Remove Freefoam ransomware and try to recover your files

We hope that you found this ransomware description informative. Now, it is time to remove FreeFoam virus from your computer so that you could start using it on a daily basis again. The first thing you want to do is reboot your PC into Safe Mode with Networking.

Once you restart your computer in this mode, you can start FreeFoam removal. However, we must warn you that in order to complete this task, you need to have anti-malware software installed on your computer. In case you have never installed one on your computer, try one of the tools we suggest using. You can find a list of them down below.

Speaking of data recovery, we must say that you shouldn’t put your hopes up high. The ransomware is a very powerful virus, and sadly even the most experienced malware analysts cannot crack their codes. Besides, ransomware uses encryption algorithms that are typically used to protect military-grade secrets, so there’s no hope to restore these files if you do not have a data backup.

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use. By Downloading any provided Anti-spyware software to remove Freefoam ransomware virus you agree to our privacy policy and agreement of use.
do it now!
Reimage (remover) Happiness
Reimage (remover) Happiness
Compatible with Microsoft Windows Compatible with OS X
What to do if failed?
If you failed to remove infection using Reimage, submit a question to our support team and provide as much details as possible.
Reimage is recommended to uninstall Freefoam ransomware virus. Free scanner allows you to check whether your PC is infected or not. If you need to remove malware, you have to purchase the licensed version of Reimage malware removal tool.
More information about this program can be found in Reimage review.
Press mentions on Reimage

To remove Freefoam virus, follow these steps:

Remove Freefoam using Safe Mode with Networking

There is only one safe way to remove Freefoam ransomware virus. You need to prepare your PC by restarting it in a Safe Mode with Networking first. Once this task is complete, you can finally let your anti-malware program do its job.

  • Step 1: Reboot your computer to Safe Mode with Networking

    Windows 7 / Vista / XP
    1. Click Start Shutdown Restart OK.
    2. When your computer becomes active, start pressing F8 multiple times until you see the Advanced Boot Options window.
    3. Select Safe Mode with Networking from the list Select 'Safe Mode with Networking'

    Windows 10 / Windows 8
    1. Press the Power button at the Windows login screen. Now press and hold Shift, which is on your keyboard, and click Restart..
    2. Now select Troubleshoot Advanced options Startup Settings and finally press Restart.
    3. Once your computer becomes active, select Enable Safe Mode with Networking in Startup Settings window. Select 'Enable Safe Mode with Networking'
  • Step 2: Remove Freefoam

    Log in to your infected account and start the browser. Download Reimage or other legitimate anti-spyware program. Update it before a full system scan and remove malicious files that belong to your ransomware and complete Freefoam removal.

If your ransomware is blocking Safe Mode with Networking, try further method.

Remove Freefoam using System Restore

  • Step 1: Reboot your computer to Safe Mode with Command Prompt

    Windows 7 / Vista / XP
    1. Click Start Shutdown Restart OK.
    2. When your computer becomes active, start pressing F8 multiple times until you see the Advanced Boot Options window.
    3. Select Command Prompt from the list Select 'Safe Mode with Command Prompt'

    Windows 10 / Windows 8
    1. Press the Power button at the Windows login screen. Now press and hold Shift, which is on your keyboard, and click Restart..
    2. Now select Troubleshoot Advanced options Startup Settings and finally press Restart.
    3. Once your computer becomes active, select Enable Safe Mode with Command Prompt in Startup Settings window. Select 'Enable Safe Mode with Command Prompt'
  • Step 2: Restore your system files and settings
    1. Once the Command Prompt window shows up, enter cd restore and click Enter. Enter 'cd restore' without quotes and press 'Enter'
    2. Now type rstrui.exe and press Enter again.. Enter 'rstrui.exe' without quotes and press 'Enter'
    3. When a new window shows up, click Next and select your restore point that is prior the infiltration of Freefoam. After doing that, click Next. When 'System Restore' window shows up, select 'Next' Select your restore point and click 'Next'
    4. Now click Yes to start system restore. Click 'Yes' and start system restore
    Once you restore your system to a previous date, download and scan your computer with Reimage and make sure that Freefoam removal is performed successfully.

Bonus: Recover your data

Guide which is presented above is supposed to help you remove Freefoam from your computer. To recover your encrypted files, we recommend using a detailed guide prepared by security experts.

Now that it is time to recover those .Freefoam files, you need to find that data backup you created a while ago. If you already found it, remove the virus and plug the data storage device into your PC and import healthy files into it.

If you are afraid that the computer contains some ransomware remains, you can create an extra data copy using an untouched and secure computer. In case you haven't thought about consequences of ransomware attack earlier and you do not have a data backup, try these data recovery methods.

If your files are encrypted by Freefoam, you can use several methods to restore them:

Install Data Recovery Pro

Data Recovery Pro is an excellent tool that helps to recover files corrupted in certain ways. It helps to restore deleted or damaged files, however, it might fail to successfully restore .freefoam extension files. Test the program to find out whether it can recover them for you or not.

ShadowExplorer search

You can use ShadowExplorer to search your system for Volume Shadow Copies. Sometimes, viruses fail to delete them, which leaves the victim a chance to restore corrupted files. ShadowExplorer helps to gather these copies and restore the encrypted data.

  • Download Shadow Explorer (;
  • Follow a Shadow Explorer Setup Wizard and install this application on your computer;
  • Launch the program and go through the drop down menu on the top left corner to select the disk of your encrypted data. Check what folders are there;
  • Right-click on the folder you want to restore and select “Export”. You can also select where you want it to be stored.

Finally, you should always think about the protection of crypto-ransomwares. In order to protect your computer from Freefoam and other ransomwares, use a reputable anti-spyware, such as Reimage, Plumbytes Anti-MalwareWebroot SecureAnywhere AntiVirus or Malwarebytes Anti Malware

About the author

Alice Woods
Alice Woods - Likes to teach users about virus prevention

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Alice Woods
About the company Esolutions