Jtdylktuy

To test the 'truthfulness' of a network function, I have set up a virtual machine running windows 10. I'm running the Microsoft network monitor on the virtual machine, and on the next level up, I'm comparing the network requests of the virtual box to the network requests that the virtual box claims that it made.

Note that the virtual box has no network requests until I start a VM.

My current method of trying to block these network requests is to use the hosts file for any domains, and the firewall for any IPs. The Firewall has been working fine so far, It's the hosts file that's giving me a headache.

There seem to be certain "Evaluated" domains that the hosts file will not block, and I need them blocked

for example, here are some domains that you cannot block with the hosts file:

dm3p.wns.notify.windows.com.akadns.net

e1553.dspg.akamaiedge.net

e15275.g.akamaiedge.net

cs9.wac.phicdn.net

arc.msn.com.nsatc.net

How do I block requests to and from these addresses using only vanilla windows 10?

We can try this link which talked about Block or Redirect specific Websites in windows hosts file.
[https://www.online-tech-tips.com/computer-tips/edit-windows-hosts-file-to-block-redirect-websites/][1]

These are websites for Microsoft telemetry, Windows Update and Akamai network
optimizations.

Analyzing the websites in your list:

• dm3p.wns.notify.windows.com.akadns.net is 13.89.217.116 registered by Microsoft.
  cs9.wac.phicdn.net is the same for Verizon users.
  They are probably used principally for Windows Update.




• arc.msn.com.nsatc.net is probably used by Windows Spotlight for
  new lock screen images and suggested apps.
  It can be turned off with no negative effects as
  described by Microsoft.




• e1553.dspg.akamaiedge.net is 104.121.28.119 registered by Akamai
  to figure out what's the closest server to you to speed things up.
  e15275.g.akamaiedge.net is the same.

The results of disabling them might be incorrect Windows Update patches
applied to your computer, and slower Internet access on the Akamai network.

Recommendations

I would recommend, rather than blocking the Microsoft websites,
to turn them off by disabling their services for the ones that are
judged unnecessary.
This is done in:

• 
  Settings > Privacy allows nowadays to turn off most of the telemetry options


• The Microsoft article
  Manage connections from Windows operating system components to Microsoft services
  contains instruction on turning off dozens of Windows services.

I would recommend leaving the Akamai sites to do their job.
You may block them at the router by IP address, but you are only degrading
your Internet experience.

Blocking

Windows UPdate can be disabled from Administrative Tools > Services.

For good measures, the Microsoft Store can be disabled via regedit,
key KEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsStore,
right-click and select New > DWORD 32-bit, named RemoveWindowsStore
with the value of 1.

As Windows will not block these IP addresses, you may try
installing a third-party firewall, from which these websites will not
get a special treatment, so might succeed in blocking them.
Disable in that case the Windows Defender firewall.