Running Windows with ‘standard' rather than ‘admin' rights removes over 90 percent of the risk" according to a recent study. See here for the full detail or below is an excerpt (yes I know I have been going on about this for years):
Running Windows users with ‘standard' rather than ‘administrator' rights would have removed over 90 percent of the risk posed by critical vulnerabilities reported in Microsoft products last year, an analysis by privilege management firm Avecto has found.
The firm first looked at 333 vulnerabilities reported by Microsoft in 2013 across all products in its monthly Security bulletins, finding that 60 percent would have been mitigated by removing admin rights. Studying only the 147 rated as the most serious, the mitigation level reached an astonishing 92 percent.
Check to see if you are an administrator on your PC by right clicking on "My Computer" or "Computer" or "This PC" (depending on your Windows version) and chose manage. If you are able to access the Windows computer management console (with or without a warning popup) then you ARE an administrator and you might want to consider changing that (will require thoughtful setup). If you are prompted for a username and password then you aren't an administrator and are a lot safer from malicious software.
However even as a standard user all the usual safe practices apply.