This is what I would do if you use any programs like this, the whole thing with these key chain things, is so you can have just one master key that maybe you write down somewhere, then lock away in your safe, and then use some random generator to make a mix of letters numbers and symbols if allowed, then allowing you to de-encrypt with your private key. Now my advice would be this, write down or screenshot your passwords from the key chains, then completely wipe it off your pc, then install something to encrypt your keystrokes on websites etc, so when that virus beacons back to bass all that they get is scrambled monkey like letters and numbers with no really value. I would recommend downloading http
/www.qfxsoftware.com/
Then knowing that you are not infected, do something like install a sandbox, now a sandbox won't protect you if you are already infected, but say you go to bad website X and it drops the payload on your machine, well it won't be able to do anything outside of the sandbox because it will be blocked off, so I recommend if you use any of these use a sandboxed web browser, and wipe the contents of that box daily. Another thing you can do is something simple like installing a virtual keyboard, not the one included in windows. Good ones will encrypt your data, making it 99% effective against an attacker. There is a more in depth guide here https
/www.raymond.cc/blog/how-to-beat-keyloggers-to-protect-your-identity/ This link also will provide the information of where to download. The last two things I would like to add are just disable java script, and slowly add those trusts back on the websites you go to a lot, at first you might be bothered by doing this, but after a week you will be integrated into it enough, it won't cause any more needing to enable. 2nd is WOT or web of trust, it is a free app for chrome, it simply will give reviews, and experience that other people have had or reported about the website. It works like a traffic light, green means go right ahead, yellow means precede with caution not 100% safe, red means don't load the page at all. Also most real time protection from AV software will help you against most websites that try to drop payloads on your machine.
Just wanted to toss that out there, just a infosec nerd with some free time, enjoy hope it helped someone.