gistfile1.txt

[fucker@li244-43 tmp]$ tshark -f 'not port ssh' -w /tmp/poo
Capturing on 'eth0'
[fucker@li244-43 tmp]$ for stream in $(tshark -r poo -2 -R 'http.request' -T fields -e tcp.stream | sort -n | uniq)
> do
> tshark -r poo -q -z follow,tcp,ascii,$stream > /tmp/stream-$stream
> done

stream-0

===================================================================
Follow: tcp,ascii
Filter: tcp.stream eq 0
Node 0: 173.255.234.43:50385
Node 1: 178.33.22.114:80
204
POST /api/new-updater/ HTTP/1.1
User-Agent: Wget/1.15 (linux-gnu)
Accept: */*
Host: www.urbanterror.info
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 67


67
p0=70142f66475ae2fb33722d8d4750f386ecfefe7b&p1=LinuxCMD&p2=Release1
        1183
HTTP/1.1 200 OK
Date: Thu, 31 Jul 2014 04:57:08 GMT
Server: Apache/2.2.16 (Debian)
X-Powered-By: FS-CMS/v3.0.1
X-Frame-Options: SAMEORIGIN
Cache-Control: max-age=5
Expires: Thu, 31 Jul 2014 04:57:13 GMT
Vary: Accept-Encoding
Content-Length: 845
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html

Release1^Caudit^Jhide^Jhide^JQuit^Zquit^Jq3ut4/zUrT42_qvm.pk3^Jq3ut4/zUrT42_0026.pk3^Jq3ut4/zUrT42_0025.pk3^Jq3ut4/zUrT42_0024.pk3^Jq3ut4/zUrT42_0023.pk3^Jq3ut4/zUrT42_0022.pk3^Jq3ut4/zUrT42_0021.pk3^Jq3ut4/zUrT42_0020.pk3^Jq3ut4/zUrT42_0019.pk3^Jq3ut4/zUrT42_0018.pk3^Jq3ut4/zUrT42_0017.pk3^Jq3ut4/zUrT42_0016.pk3^Jq3ut4/zUrT42_0015.pk3^Jq3ut4/zUrT42_0014.pk3^Jq3ut4/zUrT42_0013.pk3^Jq3ut4/zUrT42_0012.pk3^Jq3ut4/zUrT42_0011.pk3^Jq3ut4/zUrT42_0010.pk3^Jq3ut4/zUrT42_0009.pk3^Jq3ut4/zUrT42_0008.pk3^Jq3ut4/zUrT42_0007.pk3^Jq3ut4/zUrT42_0006.pk3^Jq3ut4/zUrT42_0005.pk3^Jq3ut4/zUrT42_0004.pk3^Jq3ut4/zUrT42_0003.pk3^Jq3ut4/zUrT42_0002.pk3^Jq3ut4/zUrT42_0001.pk3^Jq3ut4/ut4_jumpents.pk3^Jq3ut4/ut4_commune.pk3^Jq3ut4/server_example.cfg^Jq3ut4/readme42.txt^Jq3ut4/mapcycle_example.txt^Jq3ut4/autoexec_example.cfg^Jq3ut4/QIIIA_Game_Source_License.doc
===================================================================

stream-1

===================================================================
Follow: tcp,ascii
Filter: tcp.stream eq 1
Node 0: 173.255.234.43:50386
Node 1: 178.33.22.114:80
206
POST /api/new-updater/ HTTP/1.1
User-Agent: Wget/1.15 (linux-gnu)
Accept: */*
Host: www.urbanterror.info
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 1009


1009
p0=70142f66475ae2fb33722d8d4750f386ecfefe7b&p1=LinuxCMD&p2=Release1&p3[q3ut4/zUrT42_qvm.pk3]=&p3[q3ut4/zUrT42_0026.pk3]=&p3[q3ut4/zUrT42_002
5.pk3]=&p3[q3ut4/zUrT42_0024.pk3]=&p3[q3ut4/zUrT42_0023.pk3]=&p3[q3ut4/zUrT42_0022.pk3]=&p3[q3ut4/zUrT42_0021.pk3]=&p3[q3ut4/zUrT42_0020.pk3
]=&p3[q3ut4/zUrT42_0019.pk3]=&p3[q3ut4/zUrT42_0018.pk3]=&p3[q3ut4/zUrT42_0017.pk3]=&p3[q3ut4/zUrT42_0016.pk3]=&p3[q3ut4/zUrT42_0015.pk3]=&p3
[q3ut4/zUrT42_0014.pk3]=&p3[q3ut4/zUrT42_0013.pk3]=&p3[q3ut4/zUrT42_0012.pk3]=&p3[q3ut4/zUrT42_0011.pk3]=&p3[q3ut4/zUrT42_0010.pk3]=&p3[q3ut
4/zUrT42_0009.pk3]=&p3[q3ut4/zUrT42_0008.pk3]=&p3[q3ut4/zUrT42_0007.pk3]=&p3[q3ut4/zUrT42_0006.pk3]=&p3[q3ut4/zUrT42_0005.pk3]=&p3[q3ut4/zUr
T42_0004.pk3]=&p3[q3ut4/zUrT42_0003.pk3]=&p3[q3ut4/zUrT42_0002.pk3]=&p3[q3ut4/zUrT42_0001.pk3]=&p3[q3ut4/ut4_jumpents.pk3]=&p3[q3ut4/ut4_com
mune.pk3]=&p3[q3ut4/server_example.cfg]=&p3[q3ut4/readme42.txt]=&p3[q3ut4/mapcycle_example.txt]=&p3[q3ut4/autoexec_example.cfg]=&p3[q3ut4/QI
IIA_Game_Source_License.doc]=
        4344
HTTP/1.1 200 OK
Date: Thu, 31 Jul 2014 04:57:09 GMT
Server: Apache/2.2.16 (Debian)
X-Powered-By: FS-CMS/v3.0.1
X-Frame-Options: SAMEORIGIN
Cache-Control: max-age=5
Expires: Thu, 31 Jul 2014 04:57:14 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

b337

stream-2

===================================================================
Follow: tcp,ascii
Filter: tcp.stream eq 2
Node 0: 173.255.234.43:53959
Node 1: 46.105.198.3:80
152
GET /urt/42/018-03/q3ut4/zUrT42_qvm.pk3 HTTP/1.1
User-Agent: Wget/1.15 (linux-gnu)
Accept: */*
Host: cdn.urbanterror.info
Connection: Keep-Alive


        1460
HTTP/1.1 200 OK
Last-Modified: Sat, 25 Jan 2014 19:21:36 GMT
ETag: "1bc0088-e0d88-4f0d062113000"
Cache-Control: max-age=86400
Expires: Fri, 01 Aug 2014 04:10:51 GMT
Content-Type: application/x-zip
Content-Length: 920968
Accept-Ranges: bytes
Date: Thu, 31 Jul 2014 04:57:17 GMT
Connection: keep-alive
X-Cacheable: Matched cache
X-CDN-Geo: tor
X-CDN-Geo-IP: 46.105.194.37
X-CDN-Any-IP: 46.105.198.3

PK..........8D..".S....E......vm/cgame.qvm.].\.........O.........0.}......B.a....0.a...B.a.a.B.!..B...u_.}..[......[.y..:.}.?.....<m...l.%..

stream-3

===================================================================
Follow: tcp,ascii
Filter: tcp.stream eq 3
Node 0: 173.255.234.43:53960
Node 1: 46.105.198.3:80
153
GET /urt/42/018-03/q3ut4/zUrT42_0026.pk3 HTTP/1.1
User-Agent: Wget/1.15 (linux-gnu)
Accept: */*
Host: cdn.urbanterror.info
Connection: Keep-Alive


        1460
HTTP/1.1 200 OK
Last-Modified: Sat, 25 Jan 2014 19:21:36 GMT
ETag: "1bc0087-221791-4f0d062113000"
Cache-Control: max-age=86400
Expires: Fri, 01 Aug 2014 04:10:53 GMT
Content-Type: application/x-zip
Content-Length: 2234257
Accept-Ranges: bytes
Date: Thu, 31 Jul 2014 04:57:18 GMT
Connection: keep-alive
X-Cacheable: Matched cache
X-CDN-Geo: tor
X-CDN-Geo-IP: 46.105.194.37
X-CDN-Any-IP: 46.105.198.3

PK..
.......8D................models/PK..
.....[.8D................models/players/PK..
.....[.8D................models/players/athena/PK........[.8DS..[8...,...'...models/players/athena/arms_damage_5.tga..[.d.u.79..IQ.)Z.."..'.

stream-4

===================================================================
Follow: tcp,ascii
Filter: tcp.stream eq 4
Node 0: 173.255.234.43:53961
Node 1: 46.105.198.3:80
153
GET /urt/42/018-03/q3ut4/zUrT42_0025.pk3 HTTP/1.1
User-Agent: Wget/1.15 (linux-gnu)
Accept: */*
Host: cdn.urbanterror.info
Connection: Keep-Alive


        1460
HTTP/1.1 200 OK
Last-Modified: Sat, 25 Jan 2014 19:21:36 GMT
ETag: "1bc008f-bd03c2-4f0d062113000"
Cache-Control: max-age=86400
Expires: Fri, 01 Aug 2014 04:10:56 GMT
Content-Type: application/x-zip
Content-Length: 12387266
Accept-Ranges: bytes
Date: Thu, 31 Jul 2014 04:57:18 GMT
Connection: keep-alive
X-Cacheable: Matched cache
X-CDN-Geo: tor
X-CDN-Geo-IP: 46.105.194.37
X-CDN-Any-IP: 46.105.198.3

PK........Y..B..v.pu..,...%...models/players/athena/arms_pink_w.tga....$Yv..r.).Ig.... .!9C.B.M.,. .n4Z.L.....7.2D.R..\..0.>.._...".......an

stream-5

===================================================================
Follow: tcp,ascii
Filter: tcp.stream eq 5
Node 0: 173.255.234.43:53962
Node 1: 46.105.198.3:80
153
GET /urt/42/018-03/q3ut4/zUrT42_0024.pk3 HTTP/1.1
User-Agent: Wget/1.15 (linux-gnu)
Accept: */*
Host: cdn.urbanterror.info
Connection: Keep-Alive


        1460
HTTP/1.1 200 OK
Date: Thu, 31 Jul 2014 04:57:21 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2014 19:21:36 GMT
ETag: "1bc0092-7e23cb9-4f0d062113000"
Accept-Ranges: bytes
Content-Length: 132267193
Cache-Control: max-age=86400
Expires: Fri, 01 Aug 2014 04:57:21 GMT
Content-Type: application/x-zip
Connection: close

PK..
.....{r9C................env/PK...........B.{..;I..).......env/gtsky_bk.jpg.:y\.W.7.!...h1...B6.H...".F0.k]..!..d.P[Y.V.....ET....~n.....E..