The question here is do these calls come in via the ST servers? If so, then methods 2,3 & 4 will not work because as far as the OBi knows the calls are genuine with the correct UserAgentPort, correct ip address and correct AuthUserName.
While researching further you might try a version of method 1, combined with the oleg method such as:
Voice Services > SP1 Service > X_InboundCallRoute:
{(Priv@@.):},{>(GVxxxxxxxxxxx):ph}
This will block all calls with a CallerID / Peer Number of "Priv" followed by anything. Make sure you get the upper/lower cases correct for "Priv" exactly as shown in Call History > Peer Number.
If you get genuine calls with the CallerID / Peer Number "Private Caller" that you wish to receive, then this will block those, so may not be a good method for you. In that case we are out of ideas for now