Ouverture intempestive de page WEB [Résolu]

quand je lance AD-Remover , j'ai le message Error :Not Administratot qui apparait

continue la procédure.

======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 19/05/10 à 19:20
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 13:02:25 le 13/08/2011 | Mode normal | Option: CLEAN
Exécuté de: C:\Ad-Remover\ADR.exe
SE: Microsoft Windows 7 Édition Familiale Premium (Service Pack 1 - X64)
Nom du PC: UTILISATEUR-PC (eMachines ET1840)
Utilisateur actuel: Utilisateur
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
.
C:\Program Files (x86)\EoRezo
C:\Users\Utilisateur\AppData\Local\EoRezo
C:\Users\Utilisateur\AppData\Roaming\EoRezo

(!) -- Fichiers temporaires supprimés.
.
HKCU\Software\EoRezo
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
HKLM\Software\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
HKLM\Software\Classes\AppID\EoEngineBHO.DLL
HKLM\Software\Classes\CLSID\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
HKLM\Software\Classes\EoEngineBHO.EOBHO
HKLM\Software\Classes\EoEngineBHO.EOBHO.1
HKLM\Software\Classes\Interface\{DF76E9B7-35EC-46FC-AF56-5B79DED9D64F}
HKLM\Software\Classes\TypeLib\{18AF7201-4F14-4BCF-93FE-45617CF259FF}
HKLM\Software\EoRezo
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EoRezo_is1
.
.
============== SCAN ADDITIONNEL ==============
.
.
* Internet Explorer Version 9.0.8112.16421 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\Windows\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
AutoHide: yes
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\Ad-Remover\Quarantine: 12 Fichier(s)
C:\Ad-Remover\Backup: 13 Fichier(s)
.
C:\Ad-Report-CLEAN[1].txt - 2734 Octet(s)
.
Fin à: 13:04:16, 13/08/2011
.
============== E.O.F - CLEAN[1] ==============

ci-joint rapport après Malwarebytes

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7454

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

13/08/2011 14:21:34
mbam-log-2011-08-13 (14-21-34).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 166561
Temps écoulé: 1 minute(s), 55 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 9
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{293A63F7-C3B6-423a-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{0BF73E27-2734-4F7B-925A-4BBB1457F5FA} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO.1 (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\PCTutoBHO.PCTBHO (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{293A63F7-C3B6-423A-9845-901AC0A7EE6E} (Trojan.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{549B5CA7-4A86-11D7-A4DF-000874180BB3} (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\AgenceChromeBHO@eorezo.com (Adware.EoRezo) -> Value: AgenceChromeBHO@eorezo.com -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\program files (x86)\PCTuto\pctutobho.dll (Trojan.Eorezo) -> Quarantined and deleted successfully.
c:\Users\utilisateur\downloads\webinstaller (1).exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\utilisateur\downloads\webinstaller (2).exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\utilisateur\downloads\webinstaller.exe (Adware.EoRezo) -> Quarantined and deleted successfully.

ci-joint le lien
http://pjjoint.malekal.com/files.php?id=l5g9l14x13l13s6h5p7n8m14m15x7f15r14b10d6z10s6k8v7

J'ai eu le même problème: sous fire fox, j'ai été dans outil, option, sécurité dans fenêtre exception j'ai supprimer toutes les exception de page web autorisée depuis plus de problème.
avoir dans les jours et les heures qui viennent

bon ça ne fonctionne pas j'ai toujours une page qui s'ouvre help !!!!

nouveau lien pour rapport OTL
http://pjjoint.malekal.com/files.php?id=a0838ed90fc7u10d14z15c10i10k13d12d6g11f5k12p7l7u12h9n9q13l6k5

Quel script faut il copier pour la correction ?

Bonjour,
ci-joint le rapport .
Merci

========== OTL ==========
No active process named pctuto.exe was found!
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
File C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ not found.
File C:\Program Files (x86)\Avanquest_FR\prxtbAvan.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
C:\Program Files (x86)\Yontoo Layers Runtime\YontooIEClient.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDD3B846-8D59-4ffb-8758-209B6AD74ACC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FDD3B846-8D59-4ffb-8758-209B6AD74ACC}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
File C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ not found.
File C:\Program Files (x86)\Avanquest_FR\prxtbAvan.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F}\ deleted successfully.
File Web EX\ewpexhlp.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\PCTuto deleted successfully.
File C:\Program Files (x86)\PCTuto\pctuto.exe not found.
Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCTuto\ not found.
Folder C:\Users\Utilisateur\AppData\Roaming\PCtuto\ not found.
Folder C:\Users\Utilisateur\AppData\Local\PCTuto\ not found.
C:\Program Files (x86)\PCTuto folder moved successfully.
Folder C:\Users\Utilisateur\AppData\Roaming\PCtuto\ not found.
File C:\Users\Utilisateur\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe not found.
File C:\Users\Utilisateur\AppData\Roaming\PCtuto\UpdatePCTuto\unins000.exe not found.
File C:\Users\Utilisateur\AppData\Roaming\PCtuto\UpdatePCTuto\UpdatePCTuto.exe not found.
========== FILES ==========
Folder C:\Users\Utilisateur\AppData\Roaming\PCtuto not found.
File\Folder C:\Users\Utilisateur\AppData\Local\PCTuto not found.
Folder C:\Program Files (x86)\ConduitEngine not found.
File\Folder C:\Program Files (x86)\PCTuto not found.

OTL by OldTimer - Version 3.2.26.1 log created on 08132011_231025

Bonjour,
merci encore pour votre efficacité, je n'ai plus d'ouverture intempestive de page internet.
J'ai signé la pétition.
Encore une fois merci