Programs in this category have a number of functions (such as concealing files in the system, hiding windows running applications, terminating active processes, etc.) which can be used with malicious intent. They are, in themselves, not malicious.
Unlike programs classified as NetTool, RiskTool programs are designed to operate on the local computer.
If a user has installed such a program on his/her computer, or if it was installed by a system administrator, then it does not pose any threat.
This is detected as a possibly unsafe program. This could make it an unsafe application in the hands of those that did not install this themselves.
Here it is the setup program that is flagged as such,
Well, people, I know what a PUP is. Pondus’ quote give some hints about “hidden Windows actions”. But, really, can’t this detection be improved? What Vista Switcher do as PUP?