Is it safe to just click a link if I don't enter data?

No. Clicking can reveal your location (IP), device type, and confirms your email/number is 'active'. It can also trigger 'drive-by' malware downloads on unpatched devices.

What should I do if I clicked a suspicious link?

Immediately close the tab. Do not enter any info. Clear your browser cookies and run a full antivirus scan on your device.

How do I check where a link really goes?

On a computer, 'hover' your mouse over the link without clicking. The true destination URL will appear in the bottom-left corner of your browser window.

Link Checker

Verify suspicious links before you click.

Scammers use deceptive URLs to lead you to phishing sites or trigger automatic malware downloads. They often use URL shorteners or 'Lookalike Domains' to hide the true destination of a link and bypass your natural suspicion.

Security Insight

Over 90% of cyberattacks begin with a single malicious link. By clicking a link, you may be providing scammers with your IP address, device information, and a confirmation that your email address is active and vulnerable.

Expands Shortened URLs (bit.ly, tinyurl)

Identifies 'Punycode' domain tricks

Protects your device and data

Analyze a Suspicious Link Link Safety Guide

How to spot a Malicious URL

A link's display text can be completely different from its actual destination. Watch out for these specific technical red flags before interacting with any unsolicited link.

The 'Shortened URL' trap

Links like 'bit.ly/3xY7z' are used to hide the final destination. Never click a shortened link from an unknown sender without expanding it first.

The 'Lookalike' Domain trick

Using characters that look identical to others, such as 'googIe.com' (with a capital 'I' instead of 'l') or 'faceb0ok.com'.

Double-Dot or IP Address links

Links that lead to a string of numbers (e.g., http://192.168.1.1/login) instead of a brand name are almost always malicious.

Automatic 'File Download' links

Links that end in .exe, .dmg, .zip, or .iso. These are designed to install software or ransomware as soon as you click.

What IsThisSpam checks before you trust a sender

Quick verdicts are useful, but the real value is understanding why something looks safe, uncertain, or risky.

Unusual TLDs

Be wary of links leading to .xyz, .top, .ga, or .tk. These extensions are cheap and frequently used by massive phishing campaigns.

Subdomain Confusion

A link that says 'paypal.verification-portal.com' actually leads to 'verification-portal.com', not PayPal.

The 'Hidden' URL

When you hover over a link, the URL shown in the bottom corner of your browser doesn't match the text of the link itself.

Protocol mismatch (http vs https)

While many scam sites now use https, an 'Official' bank link that only uses http is a guaranteed red flag.

Related guides

Use the checker for the fast answer, then read the deeper guidance for recurring scam patterns.

Scam Website Checker

Broad guide for identifying malicious domains and fake stores.

Read the guide

SMS Scam Checker

Learn about links specifically sent via text message (Smishing).

Read the guide

FAQ

These are the questions people usually ask right before they click, reply, or pay.

Got a screenshot or attachment? Our AI can analyse it.

Free scan first, deeper analysis when you need it

Check the sender before you trust the message.

Start with a fast scan, then move to SuperScan when the message involves money, account access, or sensitive documents.

Analyze a Suspicious Link Link Safety Guide