Cannot find Chrome in Regedit

[ZachT]

I am attempting to remove malware "Installed by Enterprise Policy" extension from Google Chrome using the tutorial from this website ( http://malwaretips.com/blogs/installed-enterprise-policy-removal/ ). However, when trying to find the file in my Registry Editor (regedit.exe), nothing shows up. The directory to Chrome doesn't even exist within it. Once you get to "Google" from HKEY_LOCAL_MACHINE>...>Policies>Google, the only folder listed is "UPDATES", not "Chrome", as the tutorial explains.

Please help me to find this file so that I can continue with my removal. System restore is not an option as it is much too far back. Also, if unable to remove this file, would it be possible to entirely remove Chrome and every related file and then reinstall it?

Thank you in advance for any assistance.

 

[TwinHeadedEagle]

Hi,



Please download zoek.zip or zoek.rar by smeenk (

) from here or here and save it to your Desktop.
Unpack the archive...

• Close any open browsers
• Temporarily disable your AntiVirus program. (If necessary)
  If you are unsure how to do this please read this or this Instruction.
  
• Double click on zoek.exe to run the tool .
  Please wait while the tool does not start...
  
• Copy the text present inside the code box below and paste it into the large window in the zoek tool:
  
  

  createsrpoint;
  gpt.ini;z 
  C:\Windows\System32\GroupPolicy;v
  C:\Windows\SysWOW64\GroupPolicy;v 
  StandardSearch; 
  emptyfolderscheck; 
  installer-list; 
  installedprogs; 
  uninstall-list;

• Click on
  
  button.
  Please wait until a logreport will open (this can be after reboot)
  
• Save notepad to your Desktop and attach here zoek-results.log
  Note: It will also create a log in the C:\ directory named "zoek-results.log"

 

[ZachT]

Attached is the notepad file generated from Zoek

 

[TwinHeadedEagle]

Re-run Zoek once more with this script:

C:\Windows\System32\GroupPolicy\GPT.INI
C:\Windows\SysWOW64\GroupPolicy\gpt.ini
C:\Windows\System32\GroupPolicy\Machine;fs
C:\Windows\System32\GroupPolicy\User;fs
mokjdfhnbgkaooifgdjokpndchpjpkecl;chr
autoclean;
emptyalltemp;
emptyfolderscheck;delete
emptyclsid;
ipconfig /flushdns;b

 

[ZachT]

Here is the updated script.

 

[TwinHeadedEagle]

How is the situation now?

 

[ZachT]

Still nothing. However, after running Malwarebytes and Hitman Pro the extension disappeared. Some of the results were within Chrome, but none of them had any of the same name as the malware extension. Do you think they got rid of it? I mean I'm not getting any more issues....so far.