this is how they try to fool you with URL’s, take a look at this simple one
Looks like highstbank.com, right ? wrong. Notice the at sign ? everything before the @ is a user name and is usually ignored, the real url is afterwards.
URLs can be very cryptic, using numeric IP, hex codes etc…
try this one:
Forumosa won’t show that as a link properly, you’ll have to copy and paste it into your browser. URLs can get a lot more complicated and hidden than that.
I think this is the URL in that spam:
As you can see, it shows as www.visa.com then a load of meaningless numbers, then a @, then the REAL website address hidden in the middle (188.8.131.52) which is an address in Korea