So you've got intruders, which hijacked your VPS account and could have done whatever to your machine, you are absolutely unsure about it.
The sane approach to resolve this is:
1. Reboot your machine into rescue mode
2. Try to figure out what happened, how they came in and what they have done - if you got a webserver, also pay attention to PHP files there etc. as well, use rkhunter/maldet
3. Delete your VPS and install it from scratch
4. Restore all necessary data from your backup - this means data, but no binaries/shell scripts
The sane approach to resolve this is:
1. Reboot your machine into rescue mode
2. Try to figure out what happened, how they came in and what they have done - if you got a webserver, also pay attention to PHP files there etc. as well, use rkhunter/maldet
3. Delete your VPS and install it from scratch
4. Restore all necessary data from your backup - this means data, but no binaries/shell scripts