I stumbled into a blog post about simple yet effective ways to improve windows security:
http://bulletproof-windows.blogspot.com/Things like sandboxing and data execution prevention can really save the day in addition to running your user in standard user instead of administrator. Please be aware that using the instructions you CAN mess up and render your computer non-working.
This happens very easy if you degrade your user to standard user
before you create another administrator account. Do NOT do it without creating a separate admin account first. You have been warned!