Luckily the sites were not badly attacked and I was soon up and running again and my first task was to upgrade from 1.15.12 to 1.5.14 (I'll never be slow upgrading again). Then, after a couple of days of following the security tips here I started looking for a single app that could help me and I found OSE Antihacker. At first I was wary about purchasing a product when I'd only seen the demo site but bit the bullet and purchased the standalone version (I have several sites). Its been mentioned in earlier reviews that proper installation is not an out of the box affair.
Now, I've downloaded many joomla extensions and have had some great service/support but helix and the team have been excellent, I didn't purchase the extended support but the response was always swift and friendly and after I'd upgraded my sites to PHP5 (another must both for OSE & general security)I was ready to start testing.
Some of you may use a variant of the system Gaurd (GuardXT) and this was a blessing to locate and fix folder/file permissions and perform various other security checks. Next I made sure the sites were virus scanned and clean (a couple of rogue notifications that Helix sorted for me). This was all done on a clone of my largest site and I was now ready to install the single line of code into my site. If you don't have a test site you should be carefull as the whitlist is not complete and mod dependant but again, by return Helix an co were there to help me whitelist legal requests.
Everything went live yesterday and no banning of legit users but have already banned 10 blacklisted IP addresses for XSS offences.
This is by far the most important addition to my sites and the standalone version will protect all of my sites from a single CP - easily worth the money for your piece of mind and I'd happily recommend this to all Joomla users.
btw, reading this back it reads a little like an advert and whilst I've no affiliation with the company I'm happy to promote it! 5 star + from me!