the false detection is "a variant of W32.Statik"
here's an example: (just a simple program I made compiled in visual studio 6)
http://www.zshare.net/download/130695027021fd81/
Also, I protected aim.exe and it returned the same false detection
here's what's weird: it doesn't detect it locally! only the internet monitor detects it when you're in the process of downloading a winlicence-protected application

all of the WinLicense users are affected by this, can someone let ESET know?

Hello SteveDell,

Similar thread with some tips. http://www.wilderssecurity.com/showthread.php?t=198693

Thanks for the reply, ronjor

Fortunately, I'm not infected, I'm just informing everyone that NOD32 is falsely detecting all WinLicense-protected applications as malware, "variant of W32.Statik"

Marcos explained some of it, "Statik is new technology of heuristic detection which is currently being tuned up. Currently it's usually enabled only for IMON/web modules and further modules will follow as soon as the results are analysed and evaluated."

that explains why it's not being detected by NOD32's AMON and only IMON

still, it's a false detection and I use WinLicense to protect all of my software, so I really hope they clear up this false-positive!

I'm sure ESET will take note of your post.

You can also submit a file if need be.

How to submit virus or potential false positive samples to ESET's labs (http://training.eset.com/kb/index.php?option=com_kb&Itemid=29&page=articles&articleid=141)

thanks, ronjor