My GarrysMod server was hacked. I have no Idea how they got in or what I should do. - Help

First of all thank you for your help its much appreciated. I have been running a Trouble In Terrorist Town server for quite a while with no problems. We have a very secure and long RCON password. We are running Trouble In Terrorist Town V28 with some custom coded modifications also we are using Ulib and ULX. The problem occurred around 2 hours ago someone spawned in our server they somehow managed to promote themselves to superadmin yet there are no logs on him doing this at all the next thing he does is disable all the logs which makes it really hard to see what he actually did. He banned all the admins and demoted all the players and promoted a few of his friends to superadmin and messed around and spawned loads of stuff in the server which made it lag. I managed to log on as console and ban him, however I did not realize he promoted his friend to superadmin and his friend unbanned him before disconnecting. Now this is where it gets a bit confusing to me. Checking the logs I tried to ban him and his friends Steam ID from the server yet ULX kept telling me his steam ID was not actually valid. So I have not managed to ban him from the server. I have locked the server and changed the RCON password to another 30 character password and also I have changed the passwords to log into the cPanel. I then restarted the server the hacker joined again and promoted himself to superadmin again and started doing it again. This shows to me he did not enter the RCOn password at all as it would of been almost impossible to guess it or use a computer to hack the password again. He has found another way to promote himself to superadmin. Im very confused and im not sure what to do, and if you awesome people could spend a few minutes of your time to help me it would be much appreciated. :) [B][I]Note to moderators: In all my panic. I realize I posted this in the GarrysMod section not in the Support Section. Even though im very likely to get banned for this, I would like to let the moderators know this was a mistake and was not intentional.[/I][/B]

Disable RCon and remove them from admin.

There used to be and I don't know if there still is a fake steam id on drama unlimited that would let you generate a fake one so you wouldn't be banned from a server or they couldn't ban you that's what I suspect is the reason you can't ban him now the only thing is how do you ban him from your server?

You can't fake a steam id.

[QUOTE=TylerB;38090792]Disable RCon and remove them from admin.[/QUOTE] Thanks for your reply. I have removed them from SuperAdmin. Yet ULX will not let me ban them, it says Invalid Steam ID. They seem to be able to rejoin and just promote themselves to superadmin again. [editline]18th October 2012[/editline] [QUOTE=Velocity;38090800]There used to be and I don't know if there still is a fake steam id on drama unlimited that would let you generate a fake one so you wouldn't be banned from a server or they couldn't ban you that's what I suspect is the reason you can't ban him now the only thing is how do you ban him from your server?[/QUOTE] This would make sense. Thanks for your reply. Yet, I do not know how to ban him if i cannot ban him by Steam ID. Is there a way I can ban his IP adress? Yet he probably was using a VPS or Proxy. [editline]18th October 2012[/editline] [QUOTE=DaneSomdahl;38090817]You can't fake a steam id.[/QUOTE] Thats what I thought. Maybe ULX is glitching? :s

[QUOTE=DaneSomdahl;38090817]You can't fake a steam id.[/QUOTE] Oh thought I saw something on drama unlimited where you could.

In all my panic. I realize I posted this in the GarrysMod section not in the Support Section. Even though im very likely to get banned for this, I would like to let the moderators know this was a mistake and was not intentional. [editline]18th October 2012[/editline] [QUOTE=Velocity;38090882]Oh thought I saw something on drama unlimited where you could.[/QUOTE] I highly doubt you could fake a steamID thats why confuses me. :s

[url]http://www.zombiemaster.org/smf/index.php?topic=11669.0[/url]

Edit: I posted my link after the guy above did. We found out the same time.

yeah someone was kind enough to register on my forums and send that to me BB doesn't use ULX (fuck things made by others) but it was still very nice of them and I'm sure other servers owners want to know of this too