Try this - the safe mode problem happens because the Vundo code is so poorly written
Adware-Virtumundo Removal Tool v1.2 (Associated with WinFixer Popups)
Note: This tools does not remove the WinFixer application. WinFixer alone does not cause popups or disrupt the system. If WinFixer was installed on your system because Adware or a Trojan Downloader installed it without your permission, please remove it using the Add/Remove Programs Control Panel Applet.
If Virtumundo is not found, the tool will exit showing the log file.
If Virtumundo is found it will do the following:
Create a Date/Time Stamped log file (VBG.TXT) on the All Users profile's Desktop.
Kill Internet Explorer and Explorer processes.
Rename the infected files with a .Vir extension (this is disable them from being run)
Remove the Browser Helper Object registry key
Adds a registry value to block file from running in Internet Explorer again.
Remove the Winlogon Notify registry key
Automatically restart the computer (via STOP error)
Note: This is a BLUE SCREEN "Fatal Error" Message. It is normal and expected. The tool ends an important Windows Process that was protecting the file and NT Security STOPS the system as soon as it detects this is happening.
VirusScan will now be able to remove the files normally when you run an on-demand scan.
Download Link -> http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe
Then run your antivirus or Ewido to remove any left over files and then post a fresh hjt log & the report from this tool