How to Test a Suspicious Link Without Clicking It

We recommend CheckShortURL to see where a short link really goes

What to Know

  • See where a short link goes with a link-expansion service like CheckShortURL, or a similar browser extension.
  • Verify solicited emails from financial institution by contacting them directly. Don't click any links in the email.
  • Decode links with strange characters with a tool like URL Decoder to see the real destination.

This article explains how to test a suspicious link without clicking it. It focuses on expanding short links, verifying unsolicited emails, and decoding links with strange characters. It includes general safety tips for avoiding suspicious links using link scanners and anti-malware or antivirus software.

Inspect Short Links

One clue that your link may be dangerous is that the URL seems too short. While link-shortening services such as Bitly are popular and common tools for creating shorter links, malware distributors and phishers use link shortening to conceal their links' true destinations.

You can't tell if a short link is dangerous just by looking at it. Use a link-expansion service such as CheckShortURL or URL Expander to reveal a short link's true intended destination. Some link-expander sites even tell you if the link is on a list of known "bad sites." Another option is to load a browser plug-in that will show you a short link's destination if you right-click it.

A spam email with a short link

If you're dealing with an embedded link, and so you can't see the URL like in our example, hover your cursor over the link to see the URL.

Verify Links in Unsolicited Emails

A common phishing ploy is to send an email that seems as if it came from your bank. These emails usually instruct victims to "verify your information" by clicking a link, ostensibly to go to the bank's website.

If you received an unsolicited email that is supposedly from your bank asking you to click a link, then you are likely the target of a phishing attack.

Even if the link to your bank looks legitimate, don't click it. Visit your bank's website through your web browser, either by entering its address or accessing a bookmark. This advice holds true for unsolicited texts from your "bank," as well.

Screenshot of an unsolicited bank email with a suspicious link

Beware of Links With Strange Characters

Some malware distributors conceal the destination of malware or phishing sites by using what is known as URL encoding. For example, with URL encoding, the letter A translates to %41.

Using encoding, malware distributors can mask destinations, commands, and other nasty stuff within a link so that you can't read it. Use a decoding tool like URL Decoder to figure out the exact destination.

Screenshot of an email with a suspicious link containing random characters

General Link Safety Tips

There are lots of security tools that will prove indispensable for keeping your computer safe should you fall victim to an attacker's URL tricks.

Scan the Link With a Link Scanner

Link scanners are websites and plug-ins that let you enter the URL of a suspicious link and check it for safety. Visit Norton SafeWeb, URLVoid, and ScanURL to learn about these companies' link safety-checking capabilities. They index the remote destination and then report what was found so you never have to load the site on your own computer.

Turn on Real-Time or Active Scanning in Anti-Malware Software

Take advantage of any active or real-time scanning options provided by your anti-malware software. These options may use more system resources, but it’s better to catch malware while it’s trying to enter your system rather than after your computer has already been infected.

Real-time protection turned on for Windows Security in Windows 11

Keep Your Anti-Malware and Antivirus Software Up to Date

If your anti-malware or antivirus software doesn’t access the latest virus definitions, it’s can't catch the latest threats in the wild that might infect your machine. Make sure your software is set to auto-update on a regular basis and check the date of its last update to ensure they're actually taking place.

Consider Adding a Second-Opinion Malware Scanner

A second-opinion malware scanner can offer a second line of defense should your primary antivirus fail to detect a threat. Some excellent second-opinion scanners, such as Malwarebytes and HitmanPro, can make a real difference.

FAQ
  • What do I do if I clicked on a phishing link?

    If you clicked on a suspicious link, immediately disconnect your device from the internet. Back up your device, scan it for malware, and change the login credentials of the application from which you clicked the link.

  • What do I do if I click on a phishing link on Android?

    If you clicked on a phishing link and notice sluggish activity or see new apps you haven't installed, go to Settings > Apps and find apps that are using more data than expected. Clear the shady app's cache and uninstall it.

  • What should I do if I click a phishing link on my iPhone?

    If you clicked a phishing link on your iPhone, do not enter any information. Immediately disconnect from the internet. Note the targeted account and change its password. With Apple's built-in security, your data is likely safe unless you interact with a suspicious website or app.

Was this page helpful?