It's odd that this Class A should be your pest ;)

Many moons ago there was a participant here named "Marie" who simply advised that the easiest solution was to deny the 193., because too many pests came from there.

Polish ISPs do seem to harbor many pests. It may just be because broadband has monthly limits so some users may covertly (using UA switching software) DL entire web sites for future use, or it could be these pests are actually malicious.

I tend to ban by IP range for a week or so then check to see if they've revisited. If not, I remove the ban to save load time on my filters. If they come back a second time with the same bad behavior, they stay on the ban list.

Probably more on the lines of their OS's being more easily compromised so they are unwittingly acting as botnets.

An interesting note in a Semantic security blog: a major portion of compromised machines are trojan'd because they are using pirated copies of MS operating systems (presumably XP and Vista). MS will not let them automatically patch the OS and they are slow to do so manually.

Poland wasn't included in the top ten Pirate/Infection chart although Russia was.

I find I get more suspect web access attempts from ukraine than from poland. And more from USA than anywhere.