Stan's List

I just received a deceptively well-crafted e-mail from a sender purporting to be Apple, claiming that I have billing problems. The link in the e-mail goes to http://www.satc.net/https/.store.apple.com/us/, which does not appear to be a valid Apple URL.
The e-mail is well laid-out, and uses Apple’s graphics from the .Mac/.Me service. The title of the e-mail is: “IMPORTANT: Billing Problems”.
I received the e-mail just after buying a song from iTunes, so I was worried my account info may have been compromised, but after doing a little detective work, this appears to be a coincidence.
The long headers in the e-mails seems to indicate that “User (unknown [92.55.82.185]) by mail.decitre.fr ” is the sender. I requested that Apple add that IP/domain to its blacklist, since the headers opf the e-mail are forged and look as though the mail is coming from Apple.
Here are the headers. One easy tip off is the X-Mailer header; Apple doesn’t send e-mails using OUtlook Express 6 for Windows.
To see this information when you suspect an e-mail isn’t genuine, Click the View Menu, select Message, and choose Long Headers. Look for the “Received:” section, and see if it matches the purported sender in the “From:” field of the e-mail.