Microsoft has never done an adequate job of advising users not to use an admin account when connected to the Net. It's not necessary in most all cases. A study done by a cyber security group not too long ago, estimated that over 90% of malware intrusion could be halted by simply not using a default admin account.
When I first read about CryptoLocker type malware, I made some security changes to my personal systems. Which I already considered was fairly locked down.
Besides top rated security software, its advisable to setup an automated backup system. I already had one in place, but beefed it up even more so programs only had read only access to the backup drive in a user account. Should encryption malware get by all security measures in place, it still wouldn't be able to encrypt any files on the backup drive. Which in itself is already separately encrypted, and auto backed up at least twice daily.
All my security and backup software is open source, or freeware.
