Today I’ve seen the most rare thing… Well I was just downloading Aircrack for windows (Aircrack is made for Ubuntu but I just wanted to Hex it), and well… I just scanned it with my AV and see what happened!:
I don’t use to see win32 processor files in Ubuntu Applications… And I found some WIN32 scripting in other applications in the 41 file, take a look:
[— Cut Here —]
MESSAGE “wzcook – Win32 Release” (based on “Win32 (x86) Console Application”)
!MESSAGE “wzcook – Win32 Debug” (based on “Win32 (x86) Console Application”)
!MESSAGE
# Begin Project
# PROP AllowPerConfigDependencies 0
# PROP Scc_ProjName “”
# PROP Scc_LocalPath “”
CPP=cl.exe
RSC=rc.exe
!IF “$(CFG)” == “wzcook – Win32 Release”
# PROP BASE Use_MFC 0
# PROP BASE Use_Debug_Libraries 0
# PROP BASE Output_Dir “Release”
# PROP BASE Intermediate_Dir “Release”
# PROP BASE Target_Dir “”
# PROP Use_MFC 0
# PROP Use_Debug_Libraries 0
# PROP Output_Dir “Release”
# PROP Intermediate_Dir “Release”
# PROP Target_Dir “”
# ADD BASE CPP /nologo /W3 /GX /O2 /D “WIN32” /D “NDEBUG” /D “_CONSOLE” /D “_MBCS” /YX /FD /c
# ADD CPP /nologo /W3 /GX /O2 /D “WIN32” /D “NDEBUG” /D “_CONSOLE” /D “_MBCS” /YX /FD /c
# ADD BASE RSC /l 0x40c /d “NDEBUG”
# ADD RSC /l 0x40c /d “NDEBUG”
BSC32=bscmake.exe
# ADD BASE BSC32 /nologo
# ADD BSC32 /nologo
LINK32=link.exe
# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386
# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /machine:I386
!ELSEIF “$(CFG)” == “wzcook – Win32 Debug”
# PROP BASE Use_MFC 0
# PROP BASE Use_Debug_Libraries 1
# PROP BASE Output_Dir “Debug”
# PROP BASE Intermediate_Dir “Debug”
# PROP BASE Target_Dir “”
# PROP Use_MFC 0
# PROP Use_Debug_Libraries 1
# PROP Output_Dir “Debug”
# PROP Intermediate_Dir “Debug”
# PROP Target_Dir “”
# ADD BASE CPP /nologo /W3 /Gm /GX /ZI /Od /D “WIN32” /D “_DEBUG” /D “_CONSOLE” /D “_MBCS” /YX /FD /GZ /c
# ADD CPP /nologo /W3 /Gm /GX /ZI /Od /D “WIN32” /D “_DEBUG” /D “_CONSOLE” /D “_MBCS” /YX /FD /GZ /c
# ADD BASE RSC /l 0x40c /d “_DEBUG”
# ADD RSC /l 0x40c /d “_DEBUG”
BSC32=bscmake.exe
# ADD BASE BSC32 /nologo
# ADD BSC32 /nologo
LINK32=link.exe
# ADD BASE LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept
# ADD LINK32 kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib kernel32.lib user32.lib gdi32.lib winspool.lib comdlg32.lib advapi32.lib shell32.lib ole32.lib oleaut32.lib uuid.lib odbc32.lib odbccp32.lib /nologo /subsystem:console /debug /machine:I386 /pdbtype:sept
!ENDIF
[— Cut Here —]
And This
[— Cut Here —]
Microsoft Developer Studio Workspace File, Format Version 6.00
# WARNING: DO NOT EDIT OR DELETE THIS WORKSPACE FILE!
###############################################################################
Project: “wzcook”=”.\wzcook.dsp” – Package Owner=<4>
Package=<5>
{{{
}}}
Package=<4>
{{{
}}}
###############################################################################
Global:
Package=<5>
{{{
}}}
Package=<3>
{{{
}}}
###############################################################################
aircrack-2.41/win32/wzcook/wzcook.ico 0000644 0000000 0000000 00000001376 10335345460 017455 0 ustar root root 0000000 0000000 � � � è� � ( @ � � €� € € €€ € € € €€ ÀÀÀ €€€ ÿ ÿ ÿÿ ÿ ÿ ÿ ÿÿ ÿÿÿ ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿð �ÿÿÿÿÿÿÿÿÿÿÿÿÿð �ÿÿÿÿÿÿÿÿÿÿÿÿÿð �ÿÿÿÿÿÿÿÿÿÿÿÿÿð �ÿÿÿÿÿÿÿÿÿÿÿ÷ˆ �ÿÿÿÿÿÿÿÿø �ð �x ÿÿÿÿÿÿÿ �ÿð �ÿp ÿÿÿÿÿð ÿð �ÿÿ �ÿÿÿÿÿ€ ÿÿð �ÿÿp ÿÿÿÿ÷ �ÿÿð �ÿÿð ÿÿÿð �ÿÿð �ÿÿø �ÿÿÿp ÿÿð �ÿÿ÷ �ÿÿÿ€ ÿÿð �ÿÿÿ �ÿÿÿ ÿÿÿð �ÿÿÿ ÿÿÿ ÿÿÿð �ÿÿÿ ÿÿÿ ÿÿÿð �ÿÿÿ ÿÿÿ ÿÿÿð �ÿÿ÷ ÿÿÿ ÿÿÿð �ÿÿ÷ ÿÿÿ€ ÿÿð �ÿÿø �ÿÿÿp ÿÿð �ÿÿð �ÿÿÿð ÿÿð �ÿÿ€ �ÿÿÿø �ÿÿð �ÿ÷ ÿÿÿÿ �ÿÿø ÿ€ �ÿÿÿÿÿð ÿ÷ ÿÿÿÿÿÿ€�ÿÿ€ �ÿÿÿÿÿÿÿ÷€�ÿ÷€ ˆÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ aircrack-2.41/win32/wzcook/wzcook.rc 0000644 0000000 0000000 00000003254 10335345460 017304 0 ustar root root 0000000 0000000 //Microsoft Developer Studio generated resource script.
//
#include “resource.h”
#define APSTUDIO_READONLY_SYMBOLS
/////////////////////////////////////////////////////////////////////////////
//
// Generated from the TEXTINCLUDE 2 resource.
//
#include “afxres.h”
/////////////////////////////////////////////////////////////////////////////
#undef APSTUDIO_READONLY_SYMBOLS
/////////////////////////////////////////////////////////////////////////////
// French (France) resources
#if !defined(AFX_RESOURCE_DLL) || defined(AFX_TARG_FRA)
#ifdef _WIN32
LANGUAGE LANG_FRENCH, SUBLANG_FRENCH
#pragma code_page(1252)
#endif //_WIN32
/////////////////////////////////////////////////////////////////////////////
//
// Icon
//
// Icon with lowest ID value placed first to ensure application icon
// remains consistent on all systems.
IDI_APP_ICON ICON DISCARDABLE “wzcook.ico”
#ifdef APSTUDIO_INVOKED
/////////////////////////////////////////////////////////////////////////////
//
// TEXTINCLUDE
//
1 TEXTINCLUDE DISCARDABLE
BEGIN
“resource.h”
END
2 TEXTINCLUDE DISCARDABLE
BEGIN
“#include “”afxres.h””\r\n”
“”
END
3 TEXTINCLUDE DISCARDABLE
BEGIN
“\r\n”
“”
END
#endif // APSTUDIO_INVOKED
#endif // French (France) resources
/////////////////////////////////////////////////////////////////////////////
#ifndef APSTUDIO_INVOKED
/////////////////////////////////////////////////////////////////////////////
//
// Generated from the TEXTINCLUDE 3 resource.
//
/////////////////////////////////////////////////////////////////////////////
#endif // not APSTUDIO_INVOKED
[— Cut Here —]
I also found some html in the code, sorry for cutting links, It’s just that the AV companies are getting angry with me 
