Anti-Keylogging Recommendations?

BeeazleBub writes "A friend asked me about the best programs to detect and remove spyware/logging/monitoring software that might have been placed on her computer by a spouse. Since there are a plethora of good and bad programs out there, I thought I would ask the slashdot crew for their recommendations. What is simple, reliable and most effective? I'm sure some of you have had the same question or circumstance. (No, booting from a Linux CD is not an option for this user)."

Most Worthless Ask Slashdot Ever.

[inTheLoo]

It's a domestic dispute that no one wants to get into. The obvious solution, to own your computer with free software, is not an option. All that's left is to delve into the cesspool of Winblows "solutions" and other inappropriate technical answers to an environment of broken trust.

Re:Most Worthless Ask Slashdot Ever.

[Simon+(S2)]

I agree. There is no solution. There are hardware keyloggers, software keyloggers, the spouse could log all traffic to/from the machine or take a screenshot every now and then. There is no solution to this. Trust your spouse or grap your computer and lock it somewhere only you have the key to.

Re:Most Worthless Ask Slashdot Ever.

[powerlord]

Trust your spouse or grap your computer and lock it somewhere only you have the key to.

Too true.

Nowadays, if you need a "trusted" computer, think about getting a Mac Airbook that you can slip into a folder in a filing cabinet when not in use, or keep with you all the time.

Using a laptop raises the hurdle for installing a hardware keylogger (they're usually just dongles that sit between the keyboard and the computer), and using OS X should raise the bar a bit to install malware (not that it doesn't exist, it just might be more difficult to find, and navigating in OS X will be more challenging for a user not use to it).

Using a small footprint laptop (like the Air), means you can hide it "in plain site", or in a place you can ensure physical control over (although personal control trumps al others for security).

Realize that unless you're using encrypted protocols to browse web sites or send/receive email, your traffic could still be intercepted on the network, but that again requires a more sophisticated user than the average "Spouse who installed a keylogger".

Re:Most Worthless Ask Slashdot Ever.

[Darkness404]

But honestly, it seems like this isn't a real case. Because apparently you can't boot from a Linux Live-CD, which would make the most obvious answer of "reformat your drives with Windows" also obsolete. As for hardware keyloggers, most seem to be rather obvious if you just look at the back of your computer where the either USB or PS2 connectors for plugging in your keyboard are and if there is extra hardware there remove it. This situation is kinda like saying BASH/ZSH/CSH/Every other shell in the system has been rooted so you can't trust them but you also can't just create a new user, reinstall your *NIX OS or replace the binaries.

Re:Most Worthless Ask Slashdot Ever.

[willyhill]

Don't worry twitter, when free software becomes popular enough that a few hundred million people like these are using it, crapware peddlers will create keyloggers for it too, and your argument will be seen as just another one of your karma-for-the-win "free software is perfect" flamebait, since having the source to the OS or any other application is completely irrelevent in cases like these. Your "Winblows" quippy falls flat, as usual.

Should we now expect one or two of your sockpuppets to appear on this thread to agree with you?

Re:Most Worthless Ask Slashdot Ever.

[NewbieProgrammerMan]

Oh, there's a solution: the friend needs to uninstall their spouse.

Honestly, if you're at the point in a relationship where you're spying on each other, it's time to just throw in the towel and find a partner you can trust.

Re:Most Worthless Ask Slashdot Ever.

[Planesdragon]

Honestly, if you're at the point in a relationship where you're spying on each other, it's time to just throw in the towel and find a partner you can trust. Maybe, maybe not.

For all we know, this elaborate game of deception and control is foreplay for this couple. While it's definitely time to ask if this is the kind of relationship BeeazleBub's "friend" wants to be in, the answer is not an automatic "no".

Marriage is "til death do you part", not "until we aren't happy anymore." If you want the latter, don't get married, just live together and, if one "spouse" stays home, considering getting a lawyer and specifying the terms of the "contract." (trust me -- it'll be cheaper than paying for the eventual divorce.)

Re:Most Worthless Ask Slashdot Ever.

[Jeremiah+Cornelius]

Now that you're gone
All that's left is a band of gold
All that's left of the dreams I hold
Is a band of gold
And the dreams of what love could be
If you were still here with me

Re:Most Worthless Ask Slashdot Ever.

[plover]

Marriage is "til death do you part", not "until we aren't happy anymore."

Sorry, gotta call utter bullshit on this one.

Seriously, if you are in an abusive relationship, LEAVE. Leave before it gets worse, leave before it injures or kills you.

A psychologically abusive relationship is just as bad as a physically abusive one -- perhaps worse, because the victim is led to believe a pack of lies that keeps them from leaving.

There is no reason to stay married in this situation. If you're worried about the whole "till death do us part" thing, consider that the abuser broke the vows first by failing to love and honor.

Re:Most Worthless Ask Slashdot Ever.

[NewbieProgrammerMan]

If you're worried about the whole "till death do us part" thing, consider that the abuser broke the vows first by failing to love and honor. What an excellent point. That I haven't seen it stated so clearly until now probably says something unfortunate about the amount of slack given to abusers.

Re:Most Worthless Ask Slashdot Ever.

[NewbieProgrammerMan]

For all we know, this elaborate game of deception and control is foreplay for this couple. <tone="snarky, eye-rolling asshole">Yeah, because every time I've seen couples in which one person spies on the other, it was clearly loving foreplay. I'm sure that's by far the top motivation for spyware sales and PI hires.</tone> Give me a break.

Re:Most Worthless Ask Slashdot Ever.

[Malevolyn]

Nowadays, if you need a "trusted" computer, think about getting a Mac Airbook that you can slip into a folder in a filing cabinet when not in use, or keep with you all the time. Despite seeing the commercial no short of a million times, I have never thought of that. You have certainly earned that +5 moderation! Now I'll be back later, I'm busy being an oblivious dumbass. (And I've got an appointment to be moderated off topic that I need to get to. Sigh.)

Re:Most Worthless Ask Slashdot Ever.

[sigxcpu]

In other words, you married a windows user, and now you're coming to us for help.

Re:Most Worthless Ask Slashdot Ever.

[zehaeva]

not to be argumentative but i can not think of any relationship that i know of that became abusive after people got married, wouldn't the better solution be to not get married to someone who is abusive?

Re:Most Worthless Ask Slashdot Ever.

[Ihlosi]

wouldn't the better solution be to not get married to someone who is abusive?

Unfortunately, many people still cling to the romantic notion that a person can be "changed" (especially through "love"), and that even the most deranged psycho will eventually turn into a normal person if given enough "love".

Re:Most Worthless Ask Slashdot Ever.

[midnighttoadstool]

It's really not that excellent: if one party breaks the vows it doesn't give license to the other to do the same back: then both have lost their integrity. Repaying a bad turn with a bad turn. However there is a big difference between leaving a relationship (defacto divorce) and separation. The vows aren't broken by separation from an abusive spouse. The abusive spouse may even benefit by it, as well as the abused. And in time come back together (hopefully).

If however the abused party thinks that divorce is justified then they probably didn't believe in all that "till do death do us part, come what may" shit anyway, and didn't say the vows sincerely, in which case there was no marriage and they should really be seeking an annulment.

Really divorce is a contradiction. Either you believe in marriage in which case divorce makes no sense, only annulment, or you don't believe in marriage in which case divorce is not necessary. People used to understand this: it's only when the liberals came charging in with their brains composed mainly of margarine that the law has become irrational on this subject.

Re:Most Worthless Ask Slashdot Ever.

[xappax]

That would be a better solution. But that doesn't mean it's the only acceptable one.

The implied attitude of "Too late! You should've thought of that before you got married!" is extremely unhelpful and is part of what causes physically and psychologically abused people to stay with their abusers.

Marriage is a voluntary partnership, not a slave contract. If either side fails seriously in their commitment, the partnership is null and void, and either party is free to associate or disassociate as they see fit.

And yes, people can become abusive over time, the signs of a potential abuser are often extremely subtle or invisible for years. Sometimes drug or alcohol abuse, traumatic life experience (for example, being in a war) or latent mental illness can turn a very nice person into an abuser as well.

Re:Most Worthless Ask Slashdot Ever.

[xappax]

For reals. If you're playing some kinky "pretend dysfunctional relationship" game, why drag in a bunch of strangers who are genuinely concerned about the person's relationship and personal well-being?

That said, it's a totally ridiculous explanation for what is obviously a real dysfunctional relationship.

I think the idea that people's marriages are "their own business" is so deeply ingrained in our culture that we come up with whatever wacky fantasies we have to to justify not offering support when someone's obviously being oppressed and treated like shit.

Coincidentally, this is partly why so many people /are/ treated like shit in marriages: abusers rely on the privacy and "sanctity" of marriage to protect them from the consequences of what in any other circumstance is totally crazy anti-social behavior.

Re:Most Worthless Ask Slashdot Ever.

[zehaeva]

then, i postulate, those people who believe such got into the situation knowing full well what would happen. people who delude themselves and then cry for help do not seem to elicit sympathy from me. call me cold hearted, i guess.

Re:Most Worthless Ask Slashdot Ever.

[Capt.+Cautious]

Granted that this may not be a perfect solution, but having been through this about 10 Yrs. back you might want to download a program called KeyScrambler. You can google it or check this link. http://www.qfxsoftware.com/ it is available as a add-on for Firefox and a system program that encrypts the traffic from keyboard to kernal. The average user probably can't get around it easily. Captain V. Cautious

Re:Most Worthless Ask Slashdot Ever.

Your recommendation is nonsensical. You assert that people should "just live together" if they are not willing to be together for their entire lives. However, in many jurisdictions, "just living together" makes you spouses after a certain amount of time. Nothing in the post tells us that the words "'til death do we part" were ever uttered.

Re:Most Worthless Ask Slashdot Ever.

It's even worse than that: the concept of "enablement". I hate psychobabble, but "enablement" is a huge factor in human behavior. Rewards- passive or active- are more powerful than limits or punishments. Even just passively allowing bad behavior is reward and re-enforcement to abusive, sadistic people. I know, it sounds like "blaming the victim", but sadly victims are often naively contributors.

Re:Most Worthless Ask Slashdot Ever.

[plague3106]

No, there is never any reason to stay in an abusive relationship. And yes, when one side fails, the other side is free to leave. Under no cirtumstances should anyone ever get back into an abusive relationship. They only get worse.

Re:Most Worthless Ask Slashdot Ever.

[midnighttoadstool]

That isn't marriage. Marriage means unconditional love till death. And a genuine marriage doesn't allow for either party to "leave" whatever the happens: even rape and murder.

You can have approximations of marriage/love if you like, but they are just shadows of the painful/blessed reality.

Marriage is real life.

Re:Most Worthless Ask Slashdot Ever.

[Viperpete]

I think too many people are confusing the concept of legal marriage which is basically a communing of resources most likely under the precept of having and raising children, with their own personal concept of religious marriage combined with western romanticism, for thousands of years people have married for a variety of purposes, most of them having little to do with love. It just so happens that most of us here on /. live in a society that allows for both sexes to make their own way and therefore gives most us the luxury of choosing our "life-mate" based on whether we like them or not. As opposed to: whoever can pay the most in dowry or to unify two families for the purpose of business or for the purpose of politics.

Re:Most Worthless Ask Slashdot Ever.

[zehaeva]

I do agree with your points; I just see too many people moaning over how they cant stand the wo/man they married or how hard it is to leave when after a little bit of questioning reveals that they got married when they only knew each other for 6 months. I maybe a little bit weird but vowing to spend the rest of my life with someone is not something any rational or sane person should do if they've only known each other for 6 months, hell a years is not enough time in my opinion. It really irritates me to see someone complain about the situation they got themselves into with almost no forethought.

Sorry to bring in my own personal disgust for those who jump right into the deep end.

Re:Most Worthless Ask Slashdot Ever.

[GWBasic]

Marriage is "til death do you part", not "until we aren't happy anymore."

That's how I intend on my marrige to be when I eventually get married...

...However; such a statement ignores the harsh reality that there are real situations where a marrige must end. My mother has 12 brothers and sisters. Even though the family believes that marriage is "til death do you part", there were some abusive situations where the marrige had to end. No one should have to wait for death in order to get away from an alcoholic; or to avoid a mistake made at a very young age.

Re:Most Worthless Ask Slashdot Ever.

[plague3106]

Sorry, you're delusional if you think marriage is forever and that no matter what the other spouse does they should be "unconditionally loved."

In real life, we allow for divorces, in some cases for reasons as simple as the couple can't get along anymore.

Who are you to force two people to stay together that no longer with to? That is real life.

Re:Most Worthless Ask Slashdot Ever.

[midnighttoadstool]

I said loud and clear that separation isn't necessarily being unfaithful (while divorce certainly is). So no one is talking about two people being forced to live together despite problems.

As for divorce: they have given their vow in all sincerity, and so are bound by their own integrity, not by society. If they renege on their solemn promise of faithful love then no one will ever truly trust them again, and they will never again be deeply happy because deep happiness comes only, and strictly only, from intimate love and for that trust is a prerequisite (as also is the marriage vow).

Divorce and adultery are primary reasons for modern unhappiness. They destroy everything worth having.

Re:Most Worthless Ask Slashdot Ever.

[plague3106]

What utter nonsense. People change, and failing to reconize that is stupidity. My parents divorced and I still trust them. Aso do their new signficant others, and they are both very happy. No one is perfect, and people lie. As I said, you're living in a delusional dream world.

Divorce is only causes unhappines because of the arbtrary rules and government sticking it's nose in and keeping conceps like alimony alive. If it were easier to people to end a marriage, I say people would be happier overall. You seriously underestimate the number of people that are miserable because they are in a marriage they can't leave; either because they think it's better for the kids (it's not) or because of the finanical consequences forced on by a society that shouldn't even be involved in the private affairs of two individuals.

Wake up from your delusion, before your mind snaps when you are forced to realize your picture of the world is not how things are, or can ever be.

Re:Most Worthless Ask Slashdot Ever.

[midnighttoadstool]

So you are trusting people who won't/can't keep their own solemnly made word (or who lie in the most serious of circumstances): which makes you irrational. Even a chicken is more rational than that. There isn't much point in continuing to converse with you, so : over and out.

Re:Most Worthless Ask Slashdot Ever.

[plague3106]

No, irrational is believing that people don't lie. It's also irrational to believe that people don't change, and that they can't possibly change for the worse. Any rational person understands that, and so doesn't hold someone to their "solemn word" to be together "forever." You are right though; there's no reason to continue this. You'll eithe figure it out one day, or you'll murder you wife to get yourself out of the twisted notions of love that you have.

Re:Most Worthless Ask Slashdot Ever.

[midnighttoadstool]

Who said anything about believing that people don't lie? Er, I mean : cluck cluck cluck cluck cluck. Or something like that. Cocka-doodle-doo, bye!

Re:Most Worthless Ask Slashdot Ever.

[TheCarp]

Lol I agree. Of course then you have to ask, do you want to be involved in their foreplay? Do you want to know the end play on that one? Personally, I am all about the trust. If I was worried that my girl was spying on me, Girlfriend 2.0 would be junked and development on 3.0 would be commencing. However, I know some people who seem to...like that. Sometimes in a lucid moment they even admit "well if it wasn't for the drama I would be bored" watch it... the "victems" of drama often cause as much as they get.

But I must disagree. Marriage is not till death. Divorce was legalized over 50 years ago, even voluntary divorce for just no reason at all. Where have you been? Under a rock? Are you next going to give us a lesson on how to determine what the minimum dowery we should expect based on our social status is? (I have told my girlfriend she is screwed, her fammily has no land for her, and I have my own household already so I am not settling for less than a 2 fam house near boston if I am going to take a bride)

-Steve

I'll bet there's a good back story

[astrashe]

I'll bet there's a really interesting story behind this.

Here's the answer. She's trying to solve a human problem with a technical solution. It won't work. If she has to use a suspect windows computer, there's no software that will guarantee it's clean. It can't be done.

And if you can't trust the person you're married to, your main problems in life aren't computer problems.

Re:I'll bet there's a good back story

[MBCook]

I agree. My first thought was "don't get involved."

Even if you think the husband is a spouse-abusing homicidal maniac, don't do this. If there is evidence, turn him into the police. Otherwise stay out.

She can google it. She can take it somewhere (like Best Buy, Circuit City, etc). I know their terrible, but hey. If they work things out, you are the guy who tried to help her get out of the marriage. That won't ender you to him. If things go farther, how do you think you'll be treated if there was a key-logger and your solution didn't work? If there is no key-logger and she is just reaching and scared and overwhelmed, then playing into that could make things worse (in the harder for them to get together and fix their marriage if possible sense).

She can use another computer, reinstall Windows, whatever. Don't get in the middle of someone else's fight (unless it is to save their life or some such, in which case, again, call the police). I seriously doubt doing this will make your life easier in any way.

Tell her to go to a private eye. Talk to a (better) divorce attorney. But tell her you don't want to get involved in this.

Re:I'll bet there's a good back story

[Khaed]

I agree, on all points. Anyone that suspicious either is nuts or has reason to be suspicious, and either way, they are in trouble.

I'd like to know why "booting from a Linux CD" isn't an option, though. Even if she has to use Windows for something work related, if she's doing anything where she wants privacy, what's wrong with a LiveCD? You can use AIM and Firefox. A LiveCD and a thumbdrive she can hide for files would work pretty well for that, and she doesn't have to be that bright to do it.

Re:I'll bet there's a good back story

[Idaho]

Here's the answer. She's trying to solve a human problem with a technical solution. It won't work. If she has to use a suspect windows computer, there's no software that will guarantee it's clean. It can't be done.

You are absolutely right, which pretty much ends this discussion right there.

Normally I'd suggest to do a complete Windows reinstall (assuming you have to run Windows), or install Linux, but you can't trust a Linux machine either, if others have physical access to them (and they know what they're doing).

In any case this is a completely moot point for the exact reasons you mentioned.

Assuming the real (non-tech) problem at hand here cannot easily be addressed, I'd suggest maybe buying an Asus EEE PC (since they're not too expensive and relatively easy to carry with you all the time). In addition, buy an USB stick or SD-card, and only store your data on those. They will easily fit in your wallet. But yeah, buying new hardware to work around this problem does not sound like a real solution, to be frank.

Re:I'll bet there's a good back story

[nacturation]

If they work things out, you are the guy who tried to help her get out of the marriage. I got the impression that this just might be the submitter's goal. Maybe the wife and him are having an affair and she (and he) wants to keep it from the husband.

Either way, your and the GP's comments are spot on. There isn't a technical solution to a social problem.

Re:I'll bet there's a good back story

[Planesdragon]

If they work things out, you are the guy who tried to help her get out of the marriage. For what it's worth -- be aware that interference in someone else's marriage is a tort in some states. Which means that, if alleged in court, the other spouse can sue you for damages.

Do you want to wind up in court and potentially paying for someone else's divorce? (To say nothing of a charge of adultery, which is still a crime in some states and can conceivably lead to jail time.)

Re:I'll bet there's a good back story

[Planesdragon]

Even if she has to use Windows for something work related, if she's doing anything where she wants privacy, what's wrong with a LiveCD? It's Linux, that's what. Our poster already asked his "friend" that option, and it was rejected for some existing reason.

Re:I'll bet there's a good back story

Based on what? Misuse of "their" and "farther" instead of "they're" and "further?" Not only do these two mistakes not render the post as difficult to read, compare it with your own unnecessary use of the colon.

Yeah, I think you're just being a dick, and on a weak basis, at that.

Re:I'll bet there's a good back story

[Khaed]

I know it's an existing reason. I want to know why:

I'd like to know why "booting from a Linux CD" isn't an option, though.

There's a reason I directly quoted the summary; I recognize THAT it's not an option. Why it's not an option is the question.

Re:I'll bet there's a good back story

[jafiwam]

Its TWO states. And it's tremendously hard to do.

That said, the setup is stupid. Either wipe the damn thing, or well.. wipe the damn thing.

Seriously, it takes 4 hours at most to get windows installed, drivers, and service packs. The only reason not to do that would be pirated software, and well, you get what you pay for eh?

Even FINDING a keylogger isn't going to do anything, if there is one, IT DOESNT PROVE THE SPOUSE DID IT. It could always come in through a hole of some kind. (If the gal is dumb enough to not know how to combat a keylogger, she's dumb enough to let stuff in in the first place.)

That said, I sympathize with the need to find proof, I used technical means (Wireshark and Ethereal) to get proof my wife was cheating. Now, I am selling the house and throwing away her shit while she rents a one room in the ghetto. (Karma is a biatch, just like my wife.)

Re:I'll bet there's a good back story

Advice like this "leave her to fight it alone" is what keeps way too many of us isolated in bad and even dangerous relationships.

Who can afford [or has the time, if employed] to talk to a divorce attorney, let alone a "better" one? Why would you even trust an attorney with computer or privacy questions??

The only general reason to not get involved is if involvement means participating in something illegal. Teaching someone how to check for spyware is nowhere near illegal.

Fact is, way too many people in society are infected with pathological misconceptions about what relationships should be. We all need help avoiding and escaping situations in which those people react destructively.

Re:I'll bet there's a good back story

[Keebler71]

Did you never stop to think that the poster is probably the boyfriend? He can't "not get involved" - he already is.

Re:I'll bet there's a good back story

[fishtop+records]

agree, this is not a technical question that needs a technical solution. The solution is marriage counseling.

Re:I'll bet there's a good back story

I used technical means (Wireshark and Ethereal) Um, Wireshark IS Ethereal. It was renamed because the lead dev's former employer owns the Ethereal trademark and domain. You can't use them both because they're not different.

So I suspect you're full of bull - you don't know what you're talking about.

Re:I'll bet there's a good back story

[MBCook]

As I said. If she is being beaten or abused, that's one thing. Help her out. But if that's the case, she needs out NOW, not to play little games like "Is there a keylogger on my computer".

If it's just a normal "I'm not happy"/"I don't like you"/"why did you sleep with my sister" type thing, just stay out. Don't get involved in the petty details. It may just be a big fight they could work through if they didn't have all sorts of people supporting them breaking up and making it easier. The same people who didn't provide pro-marriage support when things weren't that bad.

Re:I'll bet there's a good back story

[MBCook]

Actually that didn't occur to me at all. If that's the case... then the poster needs to stop trying to break up a marriage. How to remove a keylogger is far besides the point.

Re:I'll bet there's a good back story

[Khaed]

Dear "Offtopic" Moderator:

Learn to read. I'm clarifying that I want to know something about the topic. That's pretty on topic. I mean, seriously:

"I want to know why:" followed by a line from the summary is offtopic? Whatever you're smoking, you better be sharing.

Re:I'll bet there's a good back story

Query: Definition of "Humously"?

Forget that...

Tell her to buy her own computer and keep it secure, and to get a good divorce lawyer... a husband that doesn't trust her is probably projecting his own untrustworthiness onto her.

Re:Forget that...

[budword]

Or she wants to IM or Email her lover without him finding out, and her "friend" wants our help to make sure she doesn't get caught. Why do you think the "spouse" would want to spy ? Oh I know, he's just fucking crazy. Hey, lets ask slashdot how we can get away with this. Good plan. Evidently said spouse doesn't read /.

There is only one true way to avoid keyloggers.

The only true way to avoid keyloggers is never touch any keys... not very useful! On any computer, now how much control you might exert over it.. as soon as it is out of your sight, or you are asleep, it could in theory be compromised.

Spybot S&D

I like using Spybot Search & Destroy as one of my first tools to check systems http://www.safer-networking.org/en/index.html

Divorce.

[The+Warlock]

Only solution. Either the wife is spying on the guy, in which case she doesn't trust him, or the guy is baselessly convinced that his wife is spying on him, in which case he doesn't trust her. Either way, this relationship is doomed.

Re:Divorce.

[swillden]

Either way, this relationship is doomed.

I guess I'm old-fashioned, but I'd have thought that another option would be to work on fixing the root problem, rather than just bailing on the relationship.

whoops

[The+Warlock]

Got my genders mixed up. Regardless, my answer still holds.

Divorce

[jps25]

If trust in a relationship is gone and you have to play hide and seek, there's only one option left. Divorce.

Re:Divorce

[Planesdragon]

Let me guess: you're single?

"Trust" means "I trust that I know my partner, and know what they are capable of and what they can be relied upon."

It does NOT mean "I trust my partner to do X."

For example, my wife can't trust me to take out the trash, and I can't trust her to change the oil in our car. Does that mean we should get a divorce?

Re:Divorce

[PachmanP]

Divorce is messy and you lose half your stuff. Further more some take the "til death" vows seriously. This leaves open the superior option, Murder.

Re:Divorce

[Khaed]

There's a huge difference between "she doesn't change the oil" and "I need to monitor every keystroke she makes."

If you need to monitor everything someone does then you don't trust them.

Re:Divorce

I admire that simple dream world the parent poster lives in.

For whatever reason, governments have made marriages into legal contracts, not just relationships. That makes any regrettable choice messy, expensive, and time-consuming to correct. Not all of us can afford the hassle, so a LOT of us just have to keep on trying to survive life with toxic spouses.

Re:Divorce

[JackieBrown]

So you've been watching lifetime "She kills me" weekend too.

Re:Divorce

[jps25]

Yes, it is very sad indeed, when your possessions and time are worth more to you than your quality of life.

Re:Divorce

[Duradin]

Just wait until you or one of your friends ends up in a divorce situation where the psychotic spouse wants the land and property the guy bought, had paid in full and improved before they had even met.

Step 1. Marry guy that already has everything
Step 2. Start being the psycho you really are
Step 3. (the big secret) get a divorce, sob and whine that you got used to the standard of living his previous investments provided for you
Step 4. collect half or all the guy's assets
Step 5. goto 1

The best part of it is, if you stop lawyering up, they win. You have to fight every petty little claim otherwise you lose all of them. Your only hope is that they start running out of lawyers that will represent them (and that's saying something when a lawyer turns down a paycheck).

Re:Divorce

[lukas84]

Can't you just marry with "Gütertrennung"?
(http://de.wikipedia.org/wiki/G%C3%BCtertrennung)

Basically, both parties keep their own money. It's either an option when marrying (Germany, Switzerland) or the default (Austria).

Re:Divorce

rather off-topic and I'm not sure what that Lifetime program was about, but if you Google "revenge on my ex" and browse around a bit, man, "Hell hath no fury like a woman scorned" sure has some truth in it =(

Format disk

[coldfarnorth]

Format, Reinstall. That wipes software. Splurge and buy a new keyboard if you don't trust it. Do a quick look for suspicious looking hardware. That should handle the worst. Ah, and change the locks to the house. No point going to all the trouble is the Ex-Spouse has access to the machine.

Re:Format disk

[Darkness404]

But if you can't use a Linux live-CD how are you going to format or reinstall? As both the Windows install CD and a Linux live-CD have just about the exact same method to boot. If one doesn't work the other one won't either (unless it is a case of the Linux CD doesn't have enough RAM but with DSL any computer made in the last like 10 years should work perfectly fine).

that's the least of her problems

[Stradivarius]

If I had any good recommendations for such tools, I'd give them, but I don't, so I'll try to help in another way. I'll pose some questions that hopefully your friend will be asking herself:

1) Isn't this missing the forest for the trees? If a marriage is so lacking in trust that she thinks her spouse is spying on her, there's a problem. If her spouse actually did install such a thing, there is similarly a problem. This is a much greater problem than the software itself. If she wants to save the marriage, this is the sort of situation where a counselor or similar trusted third party could be very helpful.

2) If the logger or other software is indeed there, what is she worried about him discovering? If she's just (rightfully) angry about the installation of this software, and trying to demonstrate a point by removing it, that's one thing. But if there actually is something she wants to hide, again this is a far bigger problem in the relationship than the software.

Good luck to your friend. This sounds like a tough spot to be in.

Re:that's the least of her problems

[maxume]

Perhaps she is trying to gather valuable information for the divorce.

Re:that's the least of her problems

[Basje]

Or maybe he is. For all we know BeeazleBub, the poster, is having an affair with her. A friend indeed.

Re:that's the least of her problems

A Slashdot user who has any form of sexual or romantic contact with a person of the opposite sex? IMPOSSIBLE!

(Yes, I know that I generalized the very diverse range of Slashdot users, who all widely vary in attractiveness, demographics, social status, and sexual orientation into the "CowboyNeal" category, but you can't take an off-topic, oft-used joke once in a while? Come on!)

(Also, my captcha: "malign". Hmm.)

Re:that's the least of her problems

[dissy]

Perhaps she is trying to gather valuable information for the divorce. If that was the case, then a detached 3rd party who is a specialist in the field should be doing the forensics.

If she takes the computer in for repair with claims if running slow and suspect being the target of a directed attack, then that can be used as evidence.
If joe schmoe guy who is her friend does the same, the court would most likely ignore or strike that evidence out, and also gives the husband an attack vector by claiming this guy planted it to undermine their marriage or trying to get into her pants, which would not only have the evidence thrown out, but look worse for her own case.

Sadly, this service will be expensive. You can't really trust best buy or geek squad to not just glaze their eyes over at your description, hear only 'virus', and just format the machine and reinstall.
Now, if she just wants the keylogger gone, this is a good solution. However for gathering evidence, it is disastrous.

The problem is the poster never mentioned their intentions. The way to go about doing this is VASTLY different depending on if they want to find and prove its there, or just get rid of it.

No luck

[Peter+H.S.]

If booting of a Linux CD isn't an option because it is perceived as "too technical" no other tool can help (even booting from a clean media wouldn't help against physical keyloggers or sniffers).
A small Asus EEE PC with a encrypted SSD, grub/bios password and hidden away may allow the person to communicate in secret with some measurement of security against non-technical opponents with limited resources, if the person is able to use some kind of SSL proxy so that the data can't be sniffed easily. Tempest attacks or even simple hidden cameras may spoil even that.

So, get a divorce instead.

--
Regards

Simple

[Bill,+Shooter+of+Bul]

Just install a key logger of your own. Then you'll be able to see any access he's been making, including any to the keylogger he has installed.

From my own experience, Tin foil hats are good, but access to the government computers to make sure they aren't after you is more comforting to me.

Note to federal agents: I have not gained access to your computers. And you might want to change your desktop wallpaper, scantily clad women on a work computer is just begging for a lawsuit.

First Thing...

[Tuoqui]

Although the least likely to happen is to check for hardware keyloggers first. They're in meatspace so it should be pretty damn easy to spot. Next would be booting from a Linux Live CD like Knoppix or something and using that instead of the potentially compromised computer.

Lastly, the guy should divorce her. If she's spying on him its to find grounds for a divorce that will net her a nice chunk of change in the settlement. Probably saying something stupid like he's surfing porn (what guy doesnt?) is the same as cheating or some other bullshit that a judge might accept to throw the book at him and have him paying alimony for the rest of his life.

Re:First Thing...

[FSWKU]

If booting from a Live CD isn't an option (which was said even in the summary, do people not even read THAT anymore?), then she's going to have ZERO clue what a hardware keylogger looks like.

Anyway, several people here have already stated the blindingly obvious, and I'll agree with it 100%. If things are to the point where this is even a question, then the marriage is doomed. She doesn't trust him to not spy on her, and if he IS spying, then he doesn't trust her. Communication Fail and Trust Fail built into one package.

Impossible

[Just+Some+Guy]

There's no way to be 100% certain that nothing's being logged. Possible data gathering points:

• Software logger in the OS
• Rootkit
• Keyboard plugged into a hardware logger
• Keyboard contains a hardware logger
• Computer case contains a hardware logger
• Linksys router is actually running Linux, using tcpdump to log outbound packets or forward them to another computer

No, there is no software you can run that will tell you if you're being monitored, by virtue of the fact that such software is impossible.

Have her get a cheap laptop - maybe an Eee PC - and configure OpenVPN to a friendly router. You're a geek, right? If you're serious about her privacy, make it happen.

Re:Impossible

[caitriona81]

More possible data gathering points:

• Previously compromised accounts (email/chat/google web history)
• Email forwarding settings (yes this is overt, but how many users actually look at their forwarding rules)
• Recoverable "deleted" files on disk
• Browser plugins
• Saved passwords - even if they are "encrypted" any encryption that allows the application to read the password lets someone else do so as well.

Solutions to these additional threats:

• Every time a compromise is suspected, change all passwords from a secure computer immediately.
• Check forwarding rules, particularly to web-based email services.
• Always use SSL/TLS encryption whenever they are available. Learn not to give passwords over unencrypted channels - this won't help you against a keylogger, but it will help you against sniffing.
• Be aware that "deleting" files doesn't really delete them unless you use specialized tools

Further protection against keyloggers.

• Reformat.
• Make your computer as tamper-evident as possible. Buy a UPS so that if the computer reboots, there will be a reason for it. Keep the computer turned on. Secure all accounts on the computer with a password. If it's Windows, encrypt the SAM database with a password that you have to enter at bootup. Remove your own administrator rights, and have a separate administrator account that you only use to install software. Use a BIOS password. Disable booting from anything other than the hard drive. Install physical locks on the case to prevent it from being opened. Epoxy over the screws on the keyboard (after you've bought a new one).
• Use an alternative web browser.
• Be careful about opening links and attachments in email. Learn about phishing, particularly the type of targeted phishing that can be attempted by someone with intimate knowledge of their target. (Don't trust the return address on mails in particular - many of the keyloggers out there get on via a trojan horse that you have to be tricked into running)
• If any evidence of tampering is found, start over.
• Learn about computer security. http://www.cert.org/homeusers/ is one of the best starting places for non-technical users. Even if you don't understand it all, you have a starting place to ask questions.
• Remember, trust is the enemy of security. Look for it. Understand how it makes you vulnerable, and decide if the risks are acceptable or not. This mindset extends all the way from the bare metal up to the human being at the keyboard. You have to start to think that way to really be able to keep a computer secure.

Re:Impossible

You missed a few points. He could access non encrypted partitions by booting off a CD (And get files, browser history et cetera). He could have added a compromised DNS server. If he's technically skilled enough he could have done any number of things.

Re:Impossible

[Just+Some+Guy]

Well, I meant those as examples, not an exhaustive list. But yeah, there's an almost unlimited number of ways an attacker could get information.

Oh, and another protection: format the drive, re-install Windows, and immediately install TrueCrypt to encrypt the entire drive (same idea for Linux, but the original question was for Windows). That should go a long way to prevent non-hardware attacks.

Re:Impossible

[camg188]

HijackThis detects many keyloggers. Also the workaround to most keyloggers is "cut and paste". Nothing gets recorded but Control-c and Control-v.

Anti Keylogger

[phalanx]

I found Anti Keylogger Shield, but I don't know if it works.

System Restore Disks

[NicholFD]

The ONLY guaranteed method of removing ALL Spyware/Key-logging software is to reformat & start over. Some of the nasty stuff is near impossible to get rid of.

Re:System Restore Disks

[Bozzio]

Not necessarily.
A boot sector virus/keylogger could survive a reformatting.

Re:System Restore Disks

[NicholFD]

A full wipe & install would get this. Most system restore disks "image" a disk. This would include the boot sector. If a regular OS install disk is used, maybe not.

Re:System Restore Disks

[maxume]

Name one that exists.

This isn't the NSA (not that they are all that likely to be installing boot sector viruses) here, this is some guy with trust issues.

Re:System Restore Disks

[Bozzio]

Well, in that vein of logic, I could ask you to prove me that none exist.

Re:System Restore Disks

[maxume]

Not really. You are the one making the extraordinary claim.

Re:System Restore Disks

[Bozzio]

How is that extraordinary?
Boot sector viruses were extremely common back in the day. It doesn't need to be all that complicated.
Consider a boot sector virus that stores a 16-bit dos keylogger binary in an "unformatted" area of the disk. Every time the user formats his/her drive, the bootsector virus copies this binary to C:\DOS\memBoost.com and appends a line to autoexec.bat.

MS Systems up to Windows ME would have been vulnerable to this. Maybe even Windows 2k (as part of backwards compatibility), I can't remember...
Considering how many Windows 98 Systems I still see kicking around, I wouldn't dismiss the bootsector option.

Yes, I agree it's unlikely. But my ORIGINAL point was that even formatting your HD isn't foolproof if you aren't careful.

sheesh.

PS, your mom has an extraordinary clam.

Re:System Restore Disks

[maxume]

I'm sure you would talk like that to my face.

Re:System Restore Disks

[Bozzio]

Are you bullying me on the internet?

Wow. Cyber-flexing isn't nearly as intimidating as RL-flexing.

Re:System Restore Disks

Something tells me his face is occupied with your mom's clam, anyway.

Re:System Restore Disks

[maxume]

No threat was intended. Your behavior is disappointing, and I was telling you as much.

Re:System Restore Disks

[Bozzio]

Upon closer inspection, your mom's clam is disappointing.

Relax buddy. This is the internet.

Re:System Restore Disks

[maxume]

I'm not your buddy, guy!

Re:System Restore Disks

[Bozzio]

I'm not your guy, friend!

Ugh, didn't anyone read Cryptonomicon?

[rwa2]

C'mon, this is Slashdot.

Obviously you just modify your space bar and numlock LED drivers to perform all I/O in morse code.

Then you type in and display bunch of misleading information to entrap the eavesdropper into doing something silly / stupid / illegal and nab 'em on it.

As far as still being able to check your email and bank accounts and stuff without compromising your passwords, just set up some kind of password vault that uses biometric authentication or something so you never have to type in your actual login / password on the untrusted machine. You'd have to do the setup for the private key and all on a trusted system of course.

Re:Ugh, didn't anyone read Cryptonomicon?

[BrokenHalo]

or something so you never have to type in your actual login / password on the untrusted machine.

Or simply store your passwords in a textfile or other type of document stored on a thumbdrive which is kept in a secure place, and which you can just copy/paste as required, without any keyboard input whatsoever.

Yes, I know this doesn't solve all of the problems here, but it's a simple enough security precaution.

Personally, I'm inclined to suggest that the OP finds a partner s/he can trust.

The Easy Solution

[Middle+-+Adopter]

Don't use a keyboard. Duh.

For extra points you gotta flip them bits manually.

My own view

[Leonard+Fedorov]

Open a notepad window or 2. Interspares real typing with putting random stuff into the notepad windows. That way, when the keylogger results are read, they come out of as complete rubbish. A more sophisticated software one might distinguish between where the text was entered, but it would have to dump the file somewhere. Type randomly and look for files that inflate. That would confirm the presence and then you could edit it. Then the keylogger would record you editing the keylogger's log, creating a bizzare echo of everything you type from the reader's perspective. Tripping.

Is the spouse out of the house?

[Cruciform]

Most people are assuming that the spouse resides in the same residence. If the spouse is already out of the house due to separation, and is possibly using spyware/hardware to collect information for blackmail or court, then there is the option of having someone over to purge the system and visually inspect it.
Any networking hardware like routers that could be compromised would need to be replaced or reflashed. Since she doesn't have the capability of dealing with a boot CD, her only option is third party intervention or going to the library to use their computers.
We're missing too much info...
How tech savvy is the spouse? Does he still live there? What kind of network setup is being used? etc. etc.

Re:Is the spouse out of the house?

How tech savvy the spouse is doesn't really matter. He have may gone for outside help (exactly as his spouse is) to set up the logging.

Go pen and paper

[Daimanta]

And deliver anything personally.

And nuke the site from orbit. It's the only way to be sure.

Cant use a liveCD?

[RiotingPacifist]

Install linux, next problem.

On either system good virus scanner will keep you covered from 95% of keyloggers so your fine unless you married a geek, but if you married a geek you'd be running linux/bsd anyway (possibly with a custom filesystem)

Re:Cant use a liveCD?

EPIC fail. bad advise regardless of the OS. if someone is targetting the machine and has access they can install hardware keyloggers or linux/bsd keyloggers and rootkits. This is not an OS issue the only way to fix this is get rid of the machine as unless you are hardware knowledgable you will have no way to tell if there isn't a hidden keylogger in the keyboard or inside the case, and more importantly get rid of the spouse.

A friend....

[wbren]

A friend asked me about...

A friend... riiiiiight....

Re:A friend....

[TheRealMindChild]

It is definitely the stereotypical mislead, but I don't think it is of the context which you infer (meaning, I don't think the submitter is the friend). Let's take a closer look:

A friend asked me about the best programs to detect and remove spyware/logging/monitoring software that might have been placed on her computer by a spouse.

When trying to be vague, as this person is, the whole "on her computer by a spouse" is really too much information. Should we really care that it was the spouse? Isn't it equally relevant to replace "spouse" with "mail man", "nurse", "escaped gorilla"? So that can imply that since the submitter felt that the "spouse" part was important, when actually it isn't, that the relationship between the submitter and alleged friend/offender is probably more personal... like, the friend is cheating on the "spouse" with the submitter, and they have a feeling that the "spouse" knows.

Re:A friend....

[Just+Some+Guy]

Actually, I think "spouse" is pretty relevant. Think your babysitter's digging through your hard drive? Get a new one. Don't trust your maid? Get a new one. Landlord gives you the creeps? Move. But it'd be a whole lot harder to just get rid of a spouse (ask Hans), and the emotional consequences for doing so are hopefully more significant than deciding not to hire the same plumber next time.

A couple things to think about

[joe_cot]

For software keyloggers, you can use a tool like SpyBot to try to find them -- however, I can't guarantee it'll find your specific keylogger, if there is one. There's probably better software at this point, but I haven't used Windows in years.

Another option is to use Windows' built-in search, and search for files modified in the past couple days. If there's a keylogger, odds are its log files will show up. I've accidentally found a keylogger on a friend's computer this way.

Another option is to use a liveCD for everything important. Pick up an Ubuntu LiveCD, and start into that when you need to do things that are suspect.

Keep in mind, however, that you may instead have a hardware keylogger. You may have a dongle like this one, which plugs in between your computer and your keyboard. You could also have one built into your keyboard -- there are companies that sell keylogging keyboards, and companies that will embed a keylogger into a keyboard -- either a specific model, or your own if you mail it to them. There could also be one built into the computer, but I don't know of any company that does that.

Moral of the story: if you can't trust the security of your computer, don't use it for things you don't want someone else to see. It might be time for her to invest in a cheap laptop, such as an Eee PC, and either do all her work on a connection he doesn't have access to, or over ssl connections or a VPN.

However, like others have said, worrying about a keylogger from your spouse isn't exactly the sign of a trusting relationship. I assume your friend knows this, and this is a preamble to a separation or divorce. If it's not, I'd suggest your friend and her spouse seek marriage counseling. Good luck to her.

So Let's Summarize...

[florescent_beige]

Comes to /. for technical advice: good!

Gets from /. relationship advice: o noes!!!!

Re:So Let's Summarize...

[BeeazleBub]

Well you know I guess I should have placed a disclaimer that only technical advice was needed. Its been fun.

Re:So Let's Summarize...

[ApostleJohn]

Are you suggesting there may be more than one guy on here unable to get/keep a girlfriend?

Seriously, one big reason to post on /. is if you have a question, other people may have the same question and be interested in the answer. I for one think protection from keylogging is very important and wish we were getting some more advice on this technical issue.

Easy "divorce" answer...

[nick_davison]

It's really easy to say "If the relationship's that broken, just divorce."

It's also badly missing the realities.

If there's that much paranoia, odds are one or both parties are moving towards divorce but know they need to do a bunch of things to either avoid getting screwed in the process (or, if they're malicious, screw the other side).

From experience with friends going through divorce, you should really be doing a bunch of things before you turn the cold war hot:

You should ensure there's money to pay for lawyers in accounts that can't suddenly turn up empty on you.

You should ensure that any evidence of infidelity on their part is documented. Likewise, you should be making sure you've not left any trails on your part.

You should be making sure you've got copies of things like the mortgage paperwork, house deeds, car titles, etc.

You should be contacting a lawyer first, not after you've set things in motion.

Many of these can be handle via the web/email. The last thing you want is the spouse you're leaving having logged conversations with your lawyer and having grabbed the passwords to all of your accounts so they gain privileged information after the split.

So, rather than assuming "It's broken. Go for divorce." and setting them up for a world of hurt they're trying to minimize, how about we try answering the question instead?

Re:Easy "divorce" answer...

You should ensure that any evidence of infidelity on their part is documented. Likewise, you should be making sure you've not left any trails on your part.

Not relevant in states with no-fault divorce (California is one). If it were, I might've been able to avoid most if not all of the alimony I'm paying.

...unless of course the spouse would get violent over infidelity, in which case hiding the evidence is a good idea.

Re:Easy "divorce" answer...

[jafiwam]

Infidelity doesn't matter.

The courts care about;

- kids
- assets
- giving as much (of the two above) to women as possible

Yeah, if you are thinking your marriage is rotten, there's good reason to get proof to motivate you to end it. But, photos of a spouse at a hotel mean exactly dick in divorce court. They might mean something for child custody, but that's about it.

Why do...

[geekboy642]

Why do these moronic ask slashdot questions always rule out the one useful answer in the very question?

"A Linux live CD is not an option". Bullshit. You windows-swilling pansy, grow some balls and try Linux. It won't kill you, it won't make you gay, and it won't rape your dog. Are you terrified of being free from >99% of viruses/trojans/spyware/adware/rootkits? Is there some kind of Stockholm syndrome going on here? You LIKE it when windows beats you, don't you? You hide the bruises, that's why you always wear those sweaters.

You sick, twisted fuck.

Re:Why do...

[Nimey]

it won't make you gay, and it won't rape your dog Shit. I must have used the wrong distribution, then.

My dog still hasn't forgiven me.

Re:Why do...

[geminidomino]

it won't make you gay, and it won't rape your dog Shit. I must have used the wrong distribution, then.

My dog still hasn't forgiven me. You must have used Gentoo then.

The flag you want is --NO_VIOLATE_FIDO

Re:Why do...

My dog was raped by Fedora, you insensitive clod.

detecting malware ..

[rs232]

Under Windows, there is no sure way of detecting malware once it's already installed, as it takes steps to hide itself.

The only sure way is a clean install or re-imaging from a hidden partition at boot. Something that would be a pain to set up and probably wouldn't even work with the current incarnation of Windows.

Your bet bet is to get your friend to install these Sysinternals ">utilitys and see if they can detect the keylogger by its activity. Monitoring activity at the firewall is also a good place to detect suspicious activity.

What is it about Windows that your friend absolutly needs to use. Are there alternatives out there.

If you absolutly can't survive without Microsoft applications then why not use a version of Linux that comes with CrossOver, this allows Windows applications to run natively on Linux, without the the same level of malware threat. Eg, by clicking on an URL or opening an email attachment.

Re:detecting malware ..

[amorsen]

Under Windows, there is no sure way of detecting malware once it's already installed, as it takes steps to hide itself. The same is true for Linux, sadly. Disclaimer: I'm a Linux fanboy.

Re:detecting malware ..

[rs232]

"The same is true for Linux, sadly. Disclaimer: I'm a Linux fanboy"

Well, yea, but it's virtually impossible to infect a locked down Linux, by clicking on a URL or opening an attachment. The worst that can happen is compromise of the users home dir and not the whole box.

An embedded OS with the user running in a virtual machine would be a solution. In theory, once you reboot any malware is flushed from the system.

I've user the restore from hidden partition solution, while it is a pain, it does work and I can click on links and open email without fear. Of course any documents I then forward are contaminated.

Like, right now I have a 'virus' on my USB stick. I don't know how it got there, probably in some Internet cafe, but it does nothing on my Linux box. The USB device is one of those that automatically runs an application in Windows. It creates two drives F: and G: presumably to handle encryption and password protection. Not much good if the drive itself is compromised .. :)

Anti-Keylogger Home Trial

[opit]

I used http://www.qfxsoftware.com/ freeware on my personal computer for months without known problems. This question is a reminder to install it on my new drive. Supposedly this program ignores the question of are keyloggers present : it just encodes signals from the keyboard and reconstructs them downstream.

Re:Anti-Keylogger Home Trial

[geminidomino]

Supposedly this program ignores the question of are keyloggers present : it just encodes signals from the keyboard and reconstructs them downstream. How would that work? If the keylogger is hooked into the kernel, QFX would have to be as well, probably using the same hooks(essentially, being a keylogger that encodes it's log, then decodes it and re-feeds it into the kernel.

Might be a way to defeat keylogging if it was implemented in hardware, but in software, I'm dubious.

Fallout from divorce?

[The+Stranger]

A number of others have already speculated about how bad this relationship must be for the woman to believe her spouse is spying on her. However, it is just possible that this is a post-divorce problem. Suppose they have already divorced and she ended up with this computer. I can imagine that she might want to make sure it isn't sending sensitive information to her ex. I could be completely off-base, but I thought I'd point out a semi-plausible scenario where someone might reasonably make this request. In any case, I think a wipe and re-install is probably the only reliable solution.

Re:Fallout from divorce?

[jafiwam]

Hah. Well, that is exactly the senario my wife is in. She got her computer (and gave me the "family" laptop back) and I got my computer.

Both the laptop and my computer got wiped after she had no more access to them. Her computer, probably isn't wiped.

(It's not my wife though, my wife's boyfriend is a geek and not stupid enough to pose a question like this.)

BIOS

I'm presuming they're not booting from a LiveCD because they don't have a password. Remember, most BIOSs can be reset by removing the motherboard battery (If you do this, the password will be different and he'll know). If he's soldered that in your only hope would be replacing the mother board or a brute force attack... And Don't forget that if he's gone to these extents he probably has a way of knowing if the computer case is opened. And probably has the house bugged. IMHO, there is something seriously wrong here.

use a computer outside the home

[pbhj]

If the problem is being spied on by their spouse then using a computer outside the home sounds the best option.

I did a website for a women's aid group ("WA"), they wanted information about how to keep it hidden from an abusive partner that the women were in touch with WA. I did a review of what the national centers gave as advice, including details of removing history files and such. In the end I settled for the only method being to use a public computer (eg at a library).

Someone else can spy on you for sure, but unless your partner works at the City IT center or for the library (or wherever) then it's not going to be your partner spying on you.

If you _need_ to get out the house and contact someone and your being abused and can't - please call directory enquiries and contact your local Womens' Aid organisation. They can advise you, give you temporary accommodation in a safehouse, help you talk to the police, help you seek mediation; basically empower you to take back control of your situation.

Re:use a computer outside the home

I gotta love how all the resources out there for abused spouses are for WOMEN.

Just wait until your abusive psycho wife takes you into divorce court with a lawyer funded by one of these fucking groups.

After they've frozen your assets.

While fighting off an assault charge because you bruised their fingers with your forehead.

Re:use a computer outside the home

[pbhj]

The question referred to a woman.

But yes you're probably right, husbands are generally considered to be capable of looking after themselves - violent abuse perpetrated by females is not (apparently) that uncommon.

A very sex girl!

[wooden+pickle]

Just have her start playing World of Warcraft. She'll find out if she has a keylogger pretty quick.

"A" spouse?

Is she mormon by any chance?

USE GOOGLE!

[EETech1]

I'd bet that if she spent a few minutes Googling the right things that she could tell right away if he is spying on her. Example... 1. Google "secretly removing my spying husbands penis while he is sleeping" 2. Watch for him to sleep 3. Still is divorce. (PROFIT?)

Here are some good ones....

[Skylinux]

Since most of the posts are not answering your question at all, here are some programs which can help.

I have been fixing Windows computers for over 10 years and can suggest the following programs from personal experience. There is no guarantee that they will find all keyloggers but they will detect the progs you find by using google.

1) Spybot Search & Destroy (free) http://www.safer-networking.org/
    This is a spyware checker, cleaner. It will also find keyloggers and screen capturing software
2) Antivir (free for personal use) http://www.free-av.com/
    This is an Antivirus / malware program which I have found to kick the shit out of Norton Antivirus (Personal + Corporate) and McAfee.
3) Norton Antivirus 2008 (not free)
    This is another antivirus program, it is not as good as Antivir but it may contain different malware signatures then Antivir.
4) Adaware (free) http://www.lavasoftusa.com/
    Like Spybot but less strict, I don't use it anymore but you should run it anyway.
5) Windows Defender (free) http://www.microsoft.com/athome/security/spyware/software/default.mspx
    This one is made (purchased) by Microsoft and is actually quite good, I can highly recommend it to remove crap from a computer. This one is free and includes an "active shield"

If you run suggestions 1,2,4 and 5 above you can assume that your computer is clean. To be sure format and reload.

As for the rest, follow the advice above and end the relationship....

Re:Here are some good ones....

[timtiminator]

In the most probable case that this spouse just installed some googled or popular download site keylogger, then the standard fair anti-crap programs should do the trick. But if this guy put any thought into it and downloaded some trojan or keylogger off a hacker board somewhere then nothing you do will help. Something like that is usually configurable (name change, size of executable, registry keys used...). I highly doubt any anti-crapware (free or not) would suffice. In this day and age it is better to just reinstall Windows.

Re:Here are some good ones....

Parent has good software suggestions. I would like to add a hardware suggestion:

Somebody earlier mentioned getting an EEE pc. Great idea, because can you imagine how tough it is to shoehorn a hardware keylogger into one of those things?? And additionally, it is that much easier to carry your EEE around & not let it out of your sight. So maybe this is two hardware suggestions.

Better yet than the EEE, I recently picked up an OQO 01 on ebay for under $350. That's cheaper than the EEE's and half the size again plus more powerful. [Hey Linux fans--it even runs the Transmeta 5800 chip!] But not everyone is gonna have that kind of bidding luck.

I should add, one other software solution does come to mind:

BIOSes often allow bootup passwords; so do many OSes; and now Truecrypt has its military-grade pre-boot environment available. So it really is pretty feasible these days to lock down your OS against any malicious installs. Even for those of us who can't afford to hire marines to watch our computers 24/7.

Plausible deniability in the relationship is another angle. I for one have separate no-password "limited" windows login accounts for me & the partner, and then a password-protected admin login which I don't share. If s/he asks, it is because neither of us need those admin privileges for daily usage... "Remember how malware-ridden *your* computer is always getting??"

No, s/he is not a Slashdot reader to my knowledge. [says me, playing with fire... ;) ]

Re:Here are some good ones....

> If you run suggestions 1,2,4 and 5 above you can assume that your computer is clean. To be sure format and reload.

Unless it's a hardware keylogger. I guess you could buy a new keyboard and check for mystery attachments, but there are probably a few types of keylogger I haven't seen.

Re:Here are some good ones....

[hacker]

All good points, except #2.

Stay far, FAR away from Avira. Not only does it hang, seize up and fail to complete its own updates and scans, but it drags system resources down tenfold more than the other alternatives.

It also requires the "questionable" use of quite a few daemons which don't seem to be necessary with the other free AV products (like ClamAV, AVG Free and so on).

No easy solution exists

[gweihir]

Keyloggers are designed to hide. Hence, while non-experts may be able to get lucky with some, with others they will not stand a chance. Sorry.

However the problem is different. In most juristiction, installing a keylogger is a criminal act. One that could well tip the balance in a divorce proceedings. (I expect divorce will be the next step here, as things cannot really work out anymore: One or both partners are paranoid, and there is no trust left.) So if there is good reason to believe in the presence of a keylogger, paying a forensics expert to discover it and doument this in a fashion that will hold up in court, may be a good idea.

Re:No easy solution exists

[timtiminator]

"Keyloggers are designed to hide." Yes, especially those using a rootkit, in which case even experts have a hard time detecting them. It is really amazing how far hacking/monitoring and security technology has come.

Re:No easy solution exists

[gweihir]

Indeed. A very interessting field to work in, scary nonetheless.

Mod Parent Up: +5 Insightful

This is the only post I've seen that attempts to actually answer the question.

And yes, she needs to either switch to Linux or use a computer at the library.

-AtC

*sig not found: invalid address*

Graphical entry mechanisms

[gadzook33]

For sensitive things like typing in passwords to financial sites, a graphical authentication should be utilized wherein the user "types" with her mouse. But, as has been pointed out, there is no 100% safe protection.

Easy: Knoppix

[AmiMoJo]

Simply boot a Knoppix CD and use that. Physically check for hardware keyloggers and you are done.

Simplest solution

[Duradin]

Don't use the compromised computer.
Don't use the compromised network.
Assume anything that could be compromised is compromised. Email accounts, IM accounts, online bank accounts, etc. etc. Don't use them.

Detecting hardware keyloggers

[RiotingPacifist]

Given that software keyloggers can be found, (rootkit detector and an encrypted partition) is it possible, perhaps only theoretically, to protect youself from phyical keyloggers without taking your keyboard apart?
Do hardware keylogers supply thier own batteries or could it their power usage be (again theoretically) detected?
Do they log messages from they computer to the keyboard (e.g lock changed)? could anti key loggers spam the keyboard with lock toggles until the memory fills up?
With the ones that dump their logs when a key combination is pressed (this is more common in the ones you hide inside they keyboard, could the fact that somebody is trying at a million words per minute be logged?

sure none of these will keep the nsa off your back, but then again the spouse of the woman the OP is sleeping with is probably just going to have installed some cheap ass detectable software key logger, making 99% of the posts in this thread void (i only saw this containing any answers.

Donny? Is that you?

[JumperCable]

Come back to the guild.

Format and Re-install

[flyingfsck]

If you don't trust the machine, format and re-install it.

This might work--what do you think

Few well probably read this now but i think it might work. First get a new keyboard and glue its screws. Then reinstall windows, lock down bios with a password and disable booting from anything but the hard drive. Then install windows steadystate. Its like reapplying a ghosted image each time she reboots, so no changes can be permanently made to c: unless the admin specifically allows them to be made permanent such as after an update. Give her a limited user account. Hopefully you can also lock the case and/or enable a case open warning from the bios. Nothings perfect but i think this is a decent approach.

Re:This might work--what do you think

This is a good approach, but steadystate is vulnerable to mbr rootkits. If the motherboard was one which could detect alterations to the mbr then she would be safer, unless the bios had been compromised.

Here's an idea...

[mattgoldey]

FDISK should do the trick.

Re:Here's an idea...

[rts008]

Up until about three months ago, I would agree.

I was cleaning up a slow WinXP SP2 PC for a friend, and after two 'format & re-install' sessions, was still getting virus/trojan found messages as soon as I would install AVG Free.

After poking around, C: is not being reported correctly (total disc size)...Okay, reboot with old Win 98 'rescue'/boot floppy...fdisk, delete all found partitions, make new active partition (use whole disc- or some such), restart, format, reinstall XP, again format (full, not 'quick') and reinstall....same again.

Go back to FDISK, try again....same again!!
ARGHHH!!!

Hmmm...WTF?- but with Linux Live CD- what's this 120 MB partition?*
Full of files and folders.
Go to Google....Ahh! Insidious Infestation!
I'm not near my notes for this job, thus can't remember exactly what this crapware was, but finally the only way (with resources available at that time) I finally got rid of this was to start the Linux install, delete all of the partitions, format with VFAT, then escape the install. Then I tried the XP install again, this time it worked, no crap found after the AVG install this time.

After some research, I found out this particularly nasty bit of software apparently creates a small hidden partition, installs itself to BOTH partitions, and modifies the MBR (IIRC) to check for a certain hidden file at boot, and if it doesn't find this file, reinstalls the crapware from the hidden partition at boot time.

I sure I am just rusty from not dealing with Windows for quite a while, but this was hair-pulling frustration until Linux helped me out.

Sometimes you just have to nuke it from orbit...just to be sure.

* BTW, this was the only time I have noticed this one though. I believe that what made it noticeable to start with,it was an old PC w/ a '6 GB' HDD (for base OS install) master/primary and an old 10 GB HDD as master/secondary (for 'my documents' and 'program files'), so I was checking free space after base install, but did not notice the total being wrong at first- my bad- but I don't know I would have caught this on a larger HDD.

Spidey sense tingling...

[dr00g911]

I'm sensing two people trying to keep a relationship hidden from a spouse. Whether it's physical, long-distance via AIM/email or whatever.

Huge paranoia probably due to the person you're afraid of intercepting something incriminating is still in the house?

If my theory isn't the case, tell your friend to get out. Go to family, a shelter, anything. Just get the F out. If there's nothing sinister under the surface here, that's not a healthy relationship. Get. Out. Of. It.

If my suspicions prove accurate, I can share this:

I've been on the moral low-ground of a similar situation in my (much) younger, (much) dumber days. The guilty have a tendency to get extremely paranoid about everything. That's not to say that a psychotic husband isn't standing in your bushes with a 9mm at this very moment looking through the window. It happened to me, and that's a point that I really feel the need to drive home. My sloth of a cat jumping when a twig snapped is probably the only reason I'm typing this right now.

I guess the point of all of this is: tread carefully. Don't be so naïve as to believe that things can't spiral out of control within a single heartbeat in ways that you never imagined. It doesn't even particularly matter if you truly care for the person or if you're just chasing tail. You cannot predict what another person, even one that you feel you know well, is capable of doing when blinded by rage. I've seen people turn homicidal, I've seen people turn self-destructive.

So the take-away is: watch your ass. If you truly care for this person and it's reciprocated, why haven't they left their spouse? Seems to me that you should be considering a plan for the future as opposed to hiding in the present. You're just delaying the inevitable.

Re:Spidey sense tingling...

[jafiwam]

Just to drive this point home.

The only thing that stopped me from doing some crap like that, was recognizing that it would ultimately be a self-destructive act. I had all sorts of violence planned for the guy that broke up my marriage, but stopped for two reasons; a) I would get caught and b) it would have killed his dogs too. (I like animals.)

Despite being an ordinarily very caring and nice person, I was ready to do these things. Pile on it worse, is the spouse has a relationship with them, but NOT so much the third party. So expect to bear the brunt of the anger for TWO people.

Even if you have no moral restrictions for interfering with a married or otherwise "taken" person, don't do it because you could get killed if you underestimate something. Sex is great, but it's not worth getting killed for.

Hmm..

[pclminion]

Meddling in two people's fucked up relationship? Sounds like a great way to get yourself into a position to have your ass sued off. Or maybe you'll get lucky and play a role in triggering a murder or suicide. What are you, an idiot? Run the fuck away.

This'll fix the rotton bounder.

[chris_sawtell]

What is simple, reliable and most effective?

Tell your friend to get a lancet, puncture her finger and splash a drop of blood on a vertical surface somewhere in her home which is fairly obvious.

Have her just vanish. Tell her to leave her passport behind and on no account to touch her bank accounts. Once you are sure she is out of harm's way, Tell the local police that your friend is missing.

Uncle Sams's paranoid police and vindictive legal system will do all the dirty work for her, and keep her (ex-) spouse securely out of mischief for at least 25 years. End of problem.

Forget about computers. They are veritable goldmines of all sorts of stories and spoor. Do not use them for private communication - ever.

Re:This'll fix the rotton bounder.

[Ihlosi]

Tell your friend to get a lancet, puncture her finger and splash a drop of blood on a vertical surface somewhere in her home which is fairly obvious.

Don't forget the part about flooding the car so there's inch-deep standing water in it. Even if the spouse in question manages to escape the clutches of the legal system, their car will still be messed up (bonus if it was an expensive car).

Re:This'll fix the rotton bounder.

[shentino]

Surely you could have done better about doing a Hans Reiser plug?

Re:This'll fix the rotton bounder.

[chris_sawtell]

Of course I could have, but because I am not 100% convinced either way as to Hans's guilt or innocence of the murder charge, I don't really want to. I have a different understanding about the meaning of the words "reasonable doubt" to the Californian jury. However, on the other hand, I was not in the court room watching him for six months.

What I can say is that I sincerely believe that Hans and his Russian helpers have made a really top of the line file system. I have used it for about 3 years and it has never lost me a single byte. None of the Linux filesystems I have used so far have managed that for that sort of time. The data recovery abilities of the fsck.reiser4 utility are nothing short of amazing. The fact that Reiser4 is not in the Linux kernel is a testament to the pure pig-headedness of both Hans and Linus. I'm pretty sure that Reiser4 will now pass into the Annals of Time, and that's most unfortunate.

Not the solution

[L4t3r4lu5]

This isn't about your spouse wanting to read your email, it's about your spouse not trusting you.

You need relationship counciling, not security software.

these are not really solutions

[pbhj]

The questioner says she can't run a live-CD. I can only imagine that's a problem of her ability with computers; in which case installing, scanning, interpreting, then properly removing the software is probably going to be too onerous for her.

He's going to know that she has scanned for spyware, it'll be in his keylogger info.

IMHO the solution is to use a different computer that the spouse could not have accessed, eg at a library or cybercafe.

If they wanted suggestions for combating keyloggers then they should have asked for that instead of couching the question in terms of spousal abuse.

No LiveCD, but a floppy?

[junglee_iitk]

Really, get some floppies and install Slackware 11.0.

Re:No LiveCD, but a floppy?

[BrokenHalo]

Slackware is now at 12.1 and it hasn't been installable from floppies for some time now.

Sorry.

But (I agree) Slackware is my own Linux distro of choice, though I am using an ageing iBook G4 to post this...

Re:No LiveCD, but a floppy?

[junglee_iitk]

I know that slackware 12.0 and 12.1 are not installable from floppy - that is why I suggested 11.0

And hey! If it bootable from USB or anything - your choice!

In any case you can upgrade from 11.0 to 12.0 anyway. (Although I don't see any reason why anyone would want to update kernel and glibc)

Relationship, Not Computers

[Millennium]

There's very little you can do about this, to be honest. A determined person with that sort of access to a computer is only going to be defeated by someone with the same level and amount of access: your friend herself. You won't be able to keep up.

Nor, frankly, should you. This is a sign of some serious problems in that relationship. Your friend might be to blame, or her spouse might be to blame, or the concept of blame might not even apply; it's tough to tell with the little information here. But the solution here is communication: they need to hash this out between themselves, possibly with a mediator (who should not be you, by the way). The best way to defeat a keylogger is to make the other person not want to install it in the first place.

If only...

[ildon]

If only the submitter had claimed to be trying to protect their WoW account from getting hacked, he would have gotten the help he needed instead of a lot of off-topic relationship advice....

deep freeze

[meshmaster]

Deep Freeze won't completely fix any problems that are already there either on the computer or in the relationship, but it can "freeze" the hard drive, or drives so that any changes made to them won't stay on the next reboot. There are ways to work around it if you boot from a floppy, but just remove the floppy drive and you are set. Deep Freeze's website is http://www.deepfreezeusa.com/ ... also a great secondary use for deep freeze is to use it on main OS's drive so that it'll keep whatever virii or other problems you run in to, whether it's that time limited demo software's timer or something else from remembering that it's been installed once you reboot. Makes an awesome little sandbox, and lots of universities use it to keep students from installing junk on the comptuers for good - even though it does arguably encourage downloading and installing software since it lets most record of downloaded and installed stuff, warez or otherwise, from being too traceable once you reboot,... which leaves some kiddies installing time delay demos over and over and over without any repurcussions.

There is an easy solution.

It should be pretty easy.
1. Have her find some dirty hippies.
2. Have her explain that her old growth keyboard is threatened by loggers.

No technical solution

[shentino]

The fact that you have a keylogger installed in the first place strongly suggests that your difficulties are political in nature. Especially if it's a machine locked down so tight that a LiveCD isn't possible.

My advice for you is to either:

1. Find a cyber cafe or other computer to use
2. Count your blessings and be grateful you can access SOME things

Case in point: I know someone who I chat with over IRC, who has recently been VERY absent because he has to stay with his uncle, and his uncle is no less than the head of network security at a major Fortune 500 company. He absolutely cannot chat over IRC there, and only by using MSN (which his uncle doesn't know about) is he even able to maintain a presence.

He can't use proxies, he already removed a keylogger, and there is a router that logs EVERYTHING that goes in and out of the box he uses.

The only privacy he gets is when he uses a cyber-cafe, and that requires non-home usage.

PS:

Dear brother post:

Don't be such a hardass. This specific "ask slashdot" is a very good, albeit primitive, specific case of what generally fills the YRO section.

When we hear so much about China, China, China and RIAA, RIAA, RIAA, it's nice and refreshing to hear a reality check in the form of problems right at home.

Cheaters must be monitored.

[elucido]

What if he or she has cheated on you in the past, what if you have kids together? Then you can't just leave and get a new life, you'll be stuck with that person.

As far as monitoring people, trust should be earned, not just given. If they are so loyal that you don't have to monitor them because they monitor themselves, great. But many people aren't capable of monitoring their own behavior.

So what you are saying is that people who cannot be monogamous should not ever get married. That is correct, but it's beside the point. If they already are married then it's too late.

Re:Cheaters must be monitored.

[Khaed]

This doesn't really conflict with what I said.

"If you have to monitor someone, you don't trust them."

And staying stuck in that relationship isn't healthy. Even the Catholic church allows for divorce in the case of adultery.

Not so clear-cut at all...

[mi]

Seriously, if you are in an abusive relationship, LEAVE.

Who said anything, about the relationship being abusive? There is evident lack of trust, but "abusive"?..

Leave before it gets worse, leave before it injures or kills you.

Uhm, a bit of fear-mongering, but Ok...

A psychologically abusive relationship is just as bad as a physically abusive one -- perhaps worse

Hold on, how can something, that can not kill you, possibly ever be "as bad or perhaps worse", than something, that can?

If you're worried about the whole "till death do us part" thing, consider that the abuser broke the vows first by failing to love and honor.

What if you think, that it was your fault — fully or in large enough part to try to repair?