Can't Go To Safe Mode

During the last 24 hours, I have tried countless times to restart on Safe Mode in order to do some proper basic checks for spyware, bots and viruses (I suspected some kind of infection after noticing an unusual number pop-ups being blocked). Obviously if I can't go to Safe Mode, I can't do the checks as per instucted on the sticky by Major Attitude. (I have all of the programs listed there and have once before solved a somewhat serious issue here, with no problems, so I'm familiar with the process.) Anyhow, I did all the checks on regular mode regardless (with the sole exception of the on-line scans; I used Anti-Vir instead) and came up with absolutely nothing. I think that HJT logs are useless if I can't go to Safe Mode (I may be wrong), so I also think that it is vital that I figure out how to be able to go to SM. All I get now is absolutely nothing when I press F8 upon restart. Once I give up and let go of the button, the laptop (Toshiba L10) starts in normal mode. Also, the settings on all the programs are maxed out, for maximum depth of scan... What gives? Please help. Thanx.

PS: BTW, this computer is new -- only two or three weeks old -- the old computer being a Toshiba A50.

 

I forgot to say that I use XP SP2 fully updated, Pentium M CPU 1.6 and 80G hard disk.

 

I also forgot to read the new version of Major Attitude's sticky. In it, I found a link to instructions (from Symantec) on how to start on SM by using msconfig (i.e. without using the F8 key). I will try that now and report on the results.

 

OK... I was able to get into Safe Mode by using msconfig, with no problems. (Before I did that, I turned off System Restore and enabled viewing of hidden files [3 steps], as per instructed by Major Attitude.) I performed the following checks:

1) CCleaner: all cleaned up and no issues found.
2) AntiVir: negative.
3) Stinger: negative.
4) Ad-Aware: negative.
5) VX2 Cleaner: negative.
6) Spybot -- Search & Destroy: negative.
7) Kill2Me: negative.
8) CWShredder: positive [FOUND: CWS.MSconfig]. (I didn't attempt repair because I want to wait for a reply first.)
9) HJT: scanned and saved log.

The computer is still blocking more pop-ups than normal... something may not be right. Please advice if I should post an attachment of the HJT log. Thanx.

 

Please note that the XP I use is the Chinese (PRC) version... Chaslang may remember me from about three months ago.

 

I performed the HJT scan again, this time on Normal Mode (the proper way, right?) and saved the log. Sorry for the multiple little posts!

 

Hi, Chaslang. Right! it was your sticky.

I performed all the checks again and the results were exactly the same as before. However, this time I removed CWS.MSConfig with CWShredder. I also made a new scan with HJT and it's enclosed as an attachment. Note: I haven't noticed any more excessive pop-ups being blocked, so maybe things are OK now... What do you think?

 

Thank you, Chaslang. I'll look into using a different firewall right away. I'll probably end up using the second one on the list. Is that program too complex? Also, do I simply turn off the MS XP Firewall after installing the new firewall? BTW, do you know what the CWS.MSConfig thing that CWShredder picked up and removed is?

 

Thanx for your help and all your answers. You fellars at Major Geeks are the best. Cheers.