I performed a packet capture on a OSD and even though majority of data is being pulled from the Distribution Point, there was still some chatter over the WAN being caused by the following:

1. UI B B64.EXE

2. UI 2B 2B.EXE

I was just wondering what they were and what they do?

Appreciate the response in advance. 

Those are UI++.exe and UI++64.exe (the pluses are simply encoded to conform to the http protocol).

They do what you want them to do although the only thing network wise that UI++ ever does is use LDAP to securely authenticate a user if you've configured it to do so.

Thank you, Jason.