DSHIELD. High Risk Domain
SANS Internet Storm Center
re: http://www.dshield.org/tools/suspicious_domains.html
alt: http://isc.sans.edu/suspicious_domains.html
DNS: http://www.robtex.com/dns/cz88.net.html
DNS: http://bgp.he.net/dns/cz88.net
BEFORE requesting me to remove my ratings and comment ensure the domain has been removed from the source:
re: http://www.dshield.org/feeds/suspiciousdomains_High.txt
alt: http://isc.sans.edu/feeds/suspiciousdomains_High.txt
According to ThreatStop this is a known Russian Business Network site:
http://blog.threatstop.com/2011/04/03/the-rsa-spearphish-attack-and-ip-reputation/
RSA lists it as one of the attack sites in the SecureID theft:
http://blogs.rsa.com/rivner/anatomy-of-an-attack/