brokaddr - 5:33 am on Apr 26, 2012 (gmt 0)

No, I am not looking at my raw logs actually.

It's a php script that monitors current activity (what users are looking at, referrers, etc) - I catch a majority of the weirdest activity from bots through this thing.

Now, without this particular user sending the remote host - how would I go about narrowing it in my raw access logs?

I can limit a search to the image filename viewed, but I'd suspect he wasn't the only one viewing the image - how can I be sure I found the right guy?