99nasha Did they hack the server.. or were you running some sort of CMS? Was it your server, or someone hosting it for you? What operating system is it, and what kind of "controll panel" does it have? cPanel, Helm, etc..
Found some more information on him, it apears as though he is hacking the servers themselves. Some how he found a vulnerability in them and is exploiting his way through to get root access. I have been able to track his ip back to the UK, he might be using a proxy, however i do not think he is due to his ip not changing at all on any of the hacks, however that does not rule that out.
Here is some information regarding the ISP he is using to do this.
org-name: Nitrex LTD
address: 1 Enterprise Court
Lakes Road / Braintree
address: CM7 3QS
phone: +44 845 053 1560
fax-no: +44 137 632 1277