IzGuard Blacklist Lookup
Query the attacker IP addresses collaboratively reported by devices across the IzGuard network. See whether an IP is listed and which attack types it was flagged for. If you believe your IP was listed unfairly, submit a removal request.
Look Up an IP Address
Enter the IPv4 or IPv6 address you want to check.
Removal Request
If you believe your IP address was listed unfairly, fill in the form below. Your request will be forwarded to our support team for review.
Request received
Your removal request has been sent to our support team. We will get back to you after review.
Why does IP blocking matter?
The IzGuard global blacklist aggregates thousands of real attack signals into a single confidence score. Key benefits:
Proactive protection
An attacking IP is recognized and auto-blocked across the entire network the moment it is caught at another location — before it ever targets you.
Community intelligence
Dozens of independent firewalls report the same attacker. Distributed brute-force, scanning and botnet activity you could not see alone becomes visible in the shared pool.
Automatic & noise-free
Only persistent, multi-source, high-score IPs are listed. One-off noise and false positives are filtered out; legitimate traffic is unaffected.
Privacy-first
No customer logs or personal data are shared — only the attacker IP signature and attack type circulate. Which company reported it is never disclosed.
How it works
IzGuard analyzes firewall and server logs at the sites where it is installed to detect attacker IPs and shares them in a global threat-intelligence pool.
On-site detection
IzGuard agents analyze attacks from firewalls and servers at the customer location in real time. No logs ever leave the site; only the attacker IP signature is shared.
Shared intelligence
When several independent sources report the same IP, the confidence score rises. A single source's mistake does not affect the whole network.
Transparent removal
In case of a false positive, the IP owner can submit a removal request. Requests are reviewed; if the attack has stopped, the IP is delisted.