Click on screenshot to zoom
Danger level 6
Type: Trojans
Common infection symptoms:
  • Slow Computer
  • Slow internet connection
  • Connects to the internet without permission
  • Installs itself without permissions
  • Can't be uninstalled via Control Panel


FUCKMEDADDY Ransomware is a ransomware infection developed on the engine of Jigsaw Ransomware. Luckily, it is not as harmful as its predecessor. Research has shown that it does not even encrypt files on victims’ computers, which suggests that it might still be in development, it is only used for testing, or it has been developed just for fun by cyber criminals. If it is the latter case, it is not very likely that you will ever encounter it, but, of course, you still cannot be careless because you might encounter other harmful infections. Unfortunately, we cannot promise that FUCKMEDADDY Ransomware will not become a harmful malicious application. Cyber criminals might update it one day and start using as a tool for obtaining money from users easier. If this ransomware infection ever manages to slither onto your computer, delete it as soon as possible no matter your files have been locked or not. Unlike its predecessor, i.e. Jigsaw Ransomware, FUCKMEDADDY Ransomware does not create an entry in the system registry, but it drops several files (a folder and two .txt files) on affected computers. It might seem that it will not be easy to erase it from the system at first, but we are sure you will eliminate it from the system yourself without many difficulties if you follow the step-by-step manual removal guide provided below this article.

We are sure you will soon find out about the entrance of FUCKMEDADDY Ransomware if it ever successfully enters your computer because it opens a window on Desktop even though it does not encrypt files. This window contains a picture of a naked girl and a ransom note. The first sentence of the ransom note explains users why they can no longer open their files. Also, they are told that the ransomware infection will delete random files permanently. Most likely, it threatens to delete files to push victims into paying the ransom as soon as possible. Talking about the ransom, this infection demands 100000000 USD, which clearly shows that it is still in development, or it has been developed for fun. There is one more symptom showing that it is not used as a tool to obtain money from users – it does not encrypt any personal files on affected computers. It only encrypts a folder FileSystemSimulation it drops on Desktop after the successful infiltration. Additionally, if you encounter the same version of FUCKMEDADDY Ransomware analyzed by our specialists, you will also find two new .txt files in %USERPROFILE%\Desktop: EncryptedFileList.txt and Address.txt. These two files contain the BTC address. We cannot promise that this threat will not be updated one day. If it happens that it is updated and you find out that your files have been encrypted after its successful entrance, you should still not pay a cent to malicious software developed behind it. You will encourage them to continue developing malware if you make a payment.

You will encounter FUCKMEDADDY Ransomware only if cyber criminals ever start distributing it with the intention of obtaining money from users. It is hard to say how it will be spread, but, in the opinion of researchers working at, it should also be spread via malicious emails if crooks ever start distributing it. Ransomware infections are not the only threats you might encounter by opening a single malicious attachment from a spam email, so ignore them all. Additionally, you should have active security software installed on your computer because ransomware infections might find different ways to slither onto users’ computers unnoticed and, consequently, it is not always easy to prevent them from entering the system.

If you have found FUCKMEDADDY Ransomware on your computer but none of your personal files have been locked, you still need to erase this ransomware infection from the system. To eliminate it fully, you need to delete two .txt files it drops, the folder called FileSystemSimulation from Desktop, and all recently downloaded suspicious files. Before you do that, you need to kill the malicious process that belongs to this ransomware infection to be able to access your Desktop. Alternatively, the system can be cleaned using an automated scanner. If you decide to clean your system in an automatic way, all other malicious components will be erased as well.

Remove FUCKMEDADDY Ransomware

  1. Press Ctrl+Shift+Esc.
  2. Click Processes.
  3. Locate the malicious process and kill it.
  4. Close Task Manager and open Windows Explorer (press Win+E).
  5. Open %USERPROFILE%\Desktop.
  6. Remove the FileSystemSimulation folder.
  7. Remove two files: EncryptedFileList.txt and Address.txt.
  8. Remove all suspicious files downloaded recently.
  9. Empty Recycle bin.
Download Spyware Removal Tool to Remove* FUCKMEDADDY Ransomware
  • Quick & tested solution for FUCKMEDADDY Ransomware removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.