I am brand new to the email headers (not talking about spam), but I would like and need to have some knowledge for it now. I list two email headers below, they are (assumed) from the same sender with the same machine, is this correct and how can I tell that from the headers? BTW, the emails are from China, how can I tell where is the sender's system is? What is the info I should look to find the above items?
From =?gb2312?B?zv3B1rjfzd64383e?= Tue May 26 16:15:19 2009
Authentication-Results: mta128.mail.cnb.yahoo.com from=live.cn; domainkeys=neutral (no sig); from=live.cn; dkim=neutral (no sig)
Received: from 126.96.36.199 (EHLO blu0-omc3-s29.blu0.hotmail.com) (188.8.131.52) by mta128.mail.cnb.yahoo.com with SMTP; Tue, 26 May 2009 16:16:23 +0800
Received: from BLU142-W14 ([184.108.40.206]) by blu0-omc3-s29.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959); Tue, 26 May 2009 01:15:20 -0700
Content-Type: multipart/alternative; boundary="_2e821a2a-bc19-4feb-a1cc-9cb691bfbf08_"
From: =?gb2312?B?zv3B1rjfzd64383e?= <replaced[at]live.cn> æŸ¥çœ‹è”ç³»äººèµ„æ–™
To: =?gb2312?B?sc8g0cex8g==?= <replaced[at]yahoo.com.cn>
Date: Tue, 26 May 2009 08:15:19 +0000
P.S. I replaced the USER IDs for the sender and receiver.