That looks like a part of the 'DNS Seed' that Core uses to "
jump-start" the connection to the network.
The purpose must be to minimize the risk of new nodes connecting to those node instead of the proper ones, but that's quite a small list compared to an active node's own banlist.dat.
Yes but what stops them? They can simply change ip.
As I've said above, your node have its own "
banlist" and will automatically ban the IP of misbehaving
peers for 24hrs (
default) if it detected a malicious activity.