If you know the IP, and it does not change, simply block it at the OS level, i.e. add a firewall rule to drop all requests from the malicious IP.

If you have no clue of what I wrote, contact the technical support of your hoster.

Alexander