If you have to do confidential business (e.g. online banking) at an internet cafe or similar, a good tip to avoid keystroke logging is to open a text file.

When entering IDs, passwords etc., make a few keystrokes into the textfile, mixed in with a few into the browser where you really want them.

So, say your password is "qwerty1234", whilst typing you would type a few keys (in the middle) which the key logger would pick up, but the browser wouldn't.

Bold letters below into textfile, standard letters into browser password box; you type:-

"nhgqwepoirty09812gf34"

What you see above is what appears in the keylogger. They have no idea (since the logger logs keystrokes, not into which application they are made) what your password is, although they can see it under their noses.