[firebobub]

after removing zemana antilogger from windows seven, it opens a page with the default browser to this address:

https://www.zemana.com/uninstall/?p=ZAL ... %20(France)&ul=French%20(France)&uil=English%20(United%20States)&os=Windows%207%2064-bit&new_affid=00000000&DownloadID=465501&cuid=0007D01F4AAA254B926D2E

which install a rogue addons named "html service" without more information.
the malware symptoms are:
-every page opened has a script from the domain s3.amazonaws.com as detected by noscript
-on a google search the pictures are removed and some other details are missing

i can upload the rogue xpi if anyone wants to analyze it.

[DanRaisch]

Moving to MozillaZine Tech as this is not actually a Firefox issue.

[Reflective]

Well, to start with you seem to be using a pretty old version of FF. It shows as 37 in your OP. So unless you're using some extension or other to deliberately create the impression that you have an older version of Firefox installed - I don't know what purpose that would serve - you should upgrade to the latest version which is 50.1.0

I suggest you download the free version of Malwarebytes and then run a full scan. That should fix the problem, but if it doesn't please post again: https://www.malwarebytes.com/

After you install it it will display itself as the Premium version for 14 days and includes all the extras like web protection, anti-ransomware and antivirus. After that it reverts to the free version without those features.