Search:

Sources I see online suggest you can block Ip's using the routing table by pointing it to a bogus address; or a null route; 0.0.0.0 is a "non-routable" address.
for example:

in linux: route add...

Seems unlikely seeing that this blocks the addresses via firewall and hosts; the only way some form of reverse routing could take place is if persistent routes could bypass the firewall and hosts...

Ok ancile is what is doing this; it blocks the same addresses in windows firewall, and the hosts file, then it adds them to the routing table in reverse; perhaps it is acting similar to a "hosts"...

I believe to have found the source of the problem. Seems these may have been added by the application ancile, which I did run on my pc; the same list was found here:
and they suggest adding those...

Shes probably a volunteer; hasn't alluded to or suggested anything to do with spying or malware like activity; though its pretty obvious to me its a massive route-redirection taking place by mostly...

"=" the character doesn't mean something. Since there is no value data under the entries, it displays as

"<routes>" ="null"

I have found no information regarding malware and Persistent routes...

So far confirmed in a Windows 7 64 SP1 Machine and a Windows 10 machine; both on the same network. The 10 machine had 0&0 shutup-10 and blackbird protection. http://www.getblackbird.net/

Combofix never removed them either; only backed them up!

I found these in my TCPIP spy stack... at least that it appears to have been for these guys. Before locating these I had found other hacking software, a windows port of redis in particular on my...