The final few XP browsers and antiviruses are ending support. There is a bit of hope, though. Hackers aren't targeting XP systems as much due to the EOS. I think that one day, either someone releases an antivirus for XP with the latest definitions...or hackers and viruses no longer target XP at all. Then we will be safe.
You already are safe. I have been running 'unsafe' XP Pro on an old OptiPlex 960, using 'unsafe' browsers (Firefox 52.4.0, Mypal, and Centaury) for over three years now. For the last year without antivirus, unless you count Malwarebytes Free and Superantispyware. Other than 3 or 4 PUPs, I have had
zero malware, after an estimated 5700 hours on the internet, going to every site I could get to, including those dens of malware iniquity (porn sites). The much ballyhooed viruses, trojans, rootkits, keyloggers, etc., constantly threatened by M$, and their legion of parrots continue to be MIA, long after the EOL/EOS 'calamity' of 2014.
Want to be safe? Ditch the wifi crap. Get a wired-only router (MikroTik, Ubiquiti, Gl.iNet, etc.), and engage its SPI & NAT hardware firewall. Before you connect your PC, take it to a shop for a full malware scan. Connect it to internet via the router. First thing you do is download software firewall (I use a silly Outpost Firewall 2009), Malwarebytes Free, Adwcleaner, network/port monitor, and a decent uninstaller. I'd bet you will be as safe as I have been. Experience over the last 3+ years has convinced me all this twaddle about EOL/EOS is just that. At best a molehill blown into a mountain. At worst, an M$ attempt to deploy their own große Lüge, to stampede the sheeple into buying one rendition after another of their always insecure and corporate malware-infested OS.
https://www.cvedetails.com/product/739/Microsoft-Windows-Xp.html?vendor_id=26
https://www.cvedetails.com/vulnerability-list/vendor_id-26/product_id-17153/Microsoft-Windows-7.html
https://www.cvedetails.com/product/26434/Microsoft-Windows-8.1.html?vendor_id=26
https://www.cvedetails.com/vulnerab...sion_id-200932/Microsoft-Windows-10-1607.html
A quick comparison shows little if any improvement. M$ resources never goes into security....unless it is to try to make corporate crapola like DRM, HDCP, and so on as bulletproof as possible...and they even faceplant in that.