Running in in administrative mode just violates the rule of least privilege.
If a piece of software is compromised in windows, the threat actor will have the same privileges as the application itself.
I have demonstrated a remote code execution exploit on older versions of BPQ that did not require any action by the sysop besides exposing the telent port.
For more information, see CVE-2024-34087
In this case, the exploit is now public.
But either way, if the application were to be compromised (as they exploit does), and the application is running as a regular user, it will greatly reduce the impact and ability for the attacker to move around your network, or access other files.
If the application is running as administrator, the attacker now has complete control over the whole system, and can use it in any way they please as an administrator on your computer.
Regular users can't see each other files, and can't navigate to areas of the computer where sensitive user data is kept. They also can't install applications and often can't leverage network resources, as you experienced.
This helps keep the attacker contained within the system, and greatly reduces the ability for them to move laterally through the network.
KN4MKB Billy