rm -rf eh? Wowzer, that sounds totally 1337 - Let me try it immediately! :)
I've tried msgsnarf but experience similar results. Had thought about scripting something to parse the Wireshark output but why reinvent the wheel if there's stuff already out there that'll do the job..
I'm using an x64 instance of BT5R1 running as a virtual machine on a Hyper-V Core box - Wireshark needs to be removed and recompiled from source in x64 BT5R1 - The default is for it to be b0rk. Not sure if that's relevant but thought I'd throw it out there anyway.