Hi, On a fresh new Win 10 build, I am seeing a strange new 'ping' method. It seems to be spoofing DNS queries and generating return packets from TCP 469669 and up. I don't have anything listening at that address and up. The address the packet is returning to is a hacker address which I have blocked. and it is showing up in my logs. Anybody have any clue as to how this works?