Those are too obvious domains scam. Who would click on such URL?
Those are the punycode versions, not the ASCII versions. The subdomain of those URLs listed above would display in your browser's address bar as follows:
As you might imagine, people fall for these kind of attacks all the time if their browser is set to not display punycode.
To protect yourself from this kind of attack, in Firefox open a new tab, type
about:config, accept the warning, search for "punycode", and change the value of
network.IDN_show_punycode to true. This will change the URL in your browser from the examples I've given in this post to instead display as the examples Baofeng has given in his (so from mẹdium to xn--mdium-n51b, for example).