There are several blacklists (or blocklists) of malware domains. Google Safe Browsing is the one most people probably encounter with its warning that a site is dangerous.
How do I "know"? Well, I have AIS and open Firefox and Chrome (separately) in Sandbox mode.
Then I copy several of the domains posted in the past month. Result: first time around, Avast noticed nothing. WOT got there first OR the "server reset/not found" message indicated malwaredomains filter got there.
Here's the interesting thing: the NEXT time I ran the same sequence, Avast DID detect some of them but missed the fake AVs (most antivirus programs, like Avast, seem weak on fake AVs, which always trick my wife and kids!!). The supplement to kill fake AV is MBAM (malwarebytes pro). It's the only thing I know that gets fake AVs -- a threat I think A/V makers take too lightly, IMHO.
That first time around I was able to download trojans from within the avast sandbox to my desktop. It was described as a fake AV with a rogue installer in the malwaredomains filter list.