ok i'll just see how it goes has it is. i've done 4 passwords so farSounds like a lot of hassle to me. The attacker could extract the archive to get the database.
i don't download any doggy things anyway.
could i keep the flash drive pluged in but disabled it in device manager after finishing with keepass? or still best to unplug it?