First, images are evil. Please do not post your pg2 logs in image(png/bmp/jpg/etc) format. When investigating a log, it is nice to be able to copy and paste the content.

So, here's how.

Open up Pg2. Either by launching the Pg2.exe, or clicking on the tray icon.
Click the "View History" button. Depending on your RAM/cpu, and overall log size, this may take a second or five.
You will be presented with the History window:


From here, click the File menu, and move down to Export to.

Upon clicking Export to, you will be presented with another dialog box:


The To: and From: fields should be ticked/checked/enabled, and set to one day. Chances are, if you have a question regarding a log entry, it's going to be from Today, maybe yesterday, so set those dates, so they are the same.

By doing this, you will only generate one days' worth of logs.

You can keep the Protocol field disabled. By disabling that field, the exported logs will contain all traffic, no matter what protocol was used.

The Action field should be set to "Blocked" so that only Blocked connections are exported. Of course, if you have a question regarding a packet that snuck past, you would set this field to Allowed.

The output file field can really be anywhere, but I find it easiest to export to my desktop, so I can find it easily.

You are all set up, click the OK button, and go get a drink, bathroom break, or whatever :P Depending on how big your history.db file is. Just for reference, my history.db file is 275 MB (288,899,072 bytes) :) And it only took about 5 seconds to generate. But I have not done any p2ping today. Days where I was p2ping, it took much longer to generate the daily log exports of blocked connections.

So anyways, now you should have the exported file wherever you saved it. Open the file, and find the connection you were questioning. You can use your Notepad-Find skills to lookup the IP or company name you saw blocked, and just copy the entries from within the log file. It is easiest for us to investigate logs if you have clearly noted the IPs/connections you have questions regarding ;)

Anyways, that's about it. This guide should be sufficient unless the pg2 dialog boxes are re-designed.

Any questions regarding this tutorial/guide, feel free to reply. IP address or IP Investigation questions should be directed to the proper forum, and NOT as a reply here.

UPDATE!
I've been asked via PM, how to "Export" or "Archive" pg2 logs without using the auto-generated/archive feature in the pg2..since there seems to be a bug with it duplicating logs/data, and well, not giving time stamps..so...you basically follow these similar steps except the part where you "Export to"...you will set your options like so:



When you hit OK, ALL available data will be exported.

It's as simple as that ;)

*All images within are thumbnailed, single left-click the image to see a bigger/clearer image*

__________________
PeerGuardian § Posting PeerGuardian 2-Logs § HOSTS File § Windows Worm Doors Cleaner § "Personal Firewalls" are snake-oil! § VLC media player § Media Player Classic § FrostWire (LimeWire alternative) § µtorrent § Invalid IP Reports (Bluetack)

Correction : Export
Heh i sorta got confused when i found no Extract in the menu

Otherwise its a really nice guide, Images are evil.
The same log in text form will load upto 20 times faster than an image ;)

I think the forum rules should be updated , The agreemend before you signup.
Or maybe a sticky thread should be made called "Posting rules" that contains all the rules or something

__________________
Need Help? Contact Me : MSN - vl.turbo.88@gmail.com, AIM - k1dcash Yahoo - Kidcash5000 Email : vl.turbo.88@gmail.com

Thanks r00ted. Next time I connect to ares ill post tbe blocks that occur at start up. It takes forever to connect when PG2 keeps blocking the connections.

__________________









To the MPAA and RIAA: Don’t wound what you can’t kill.

exactly. at first i was recommending users post images, but it is a pain to hand type IP addresses to whois, and then make sure they are typed correctly etc :P so i figured I'd make this little tutorial :)

__________________
PeerGuardian § Posting PeerGuardian 2-Logs § HOSTS File § Windows Worm Doors Cleaner § "Personal Firewalls" are snake-oil! § VLC media player § Media Player Classic § FrostWire (LimeWire alternative) § µtorrent § Invalid IP Reports (Bluetack)

oops. thx, fixed.

__________________
PeerGuardian § Posting PeerGuardian 2-Logs § HOSTS File § Windows Worm Doors Cleaner § "Personal Firewalls" are snake-oil! § VLC media player § Media Player Classic § FrostWire (LimeWire alternative) § µtorrent § Invalid IP Reports (Bluetack)

hey r00ted. i posted this guide on the phoenixlabs beta documentation page http://wiki.phoenixlabs.org/

What´s the site? I tryed but didnt found anything..
thx!

Ok, I will take a look! thx a lot!

it is beta and not available yet. http://wiki.phoenixlabs.org/wiki/Main_Pagethats where it will go.

just stay posted and check there everyday.

anyway.. is that something serious going on here?