IE8 Delegating a pages resource collection to multiple IPs ?

I was just looking through some website access logs and came across an interesting pattern. The pattern suggests that this visitor was fetching all pages using one IP address, then the IP address used to fetch the resources in each page randomly toggled between two addresses on the same network.

Does IE, Windows, or something marked by the signature in this User-Agent header support this behavior ?
What is it ?



I've attached the portion of the log with the requests if anyone wants to see it.

I looks like someone crawling the site. Do you remember web snake? It might be some bot. The IP addresses in question are external IP addresses in Dubai, owned by the Emirates Telecommunications Corporation. So, it's not even someone's LAN.

I'm thinking it's someone browsing from their place of work off the top of my head because of the Office~ stuff mentioned in the User-Agent.

I'm not familiar with Microsofts office/business software though. I've never seen a request be delegated like that before.

Well, off the cuff, Office live is a Microsoft Office addin that allows you to save/store/share files "online". They were accessing wallpapers, correct? Just thinking that perhaps they were saving them to their office live location.

That would make sense, if there were double requests for each thumbnail.

Each page has 6 thumbnails. The way the requests are showing in the logs, the first IP requests the HTML page, and then there are 6 requests total after that split between the two IP addresses to fetch the 6 thumbnails on the page.

Maybe 10 seconds later, the same thing happens with a new page and 6 more thumbnails.