A PHISHing website with vulnerable CMS - JS/PHISH detected?

See: http://killmalware.com/grupopromove.com.br/
Now given as all green?
Flagged came: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fgrupopromove.com.br%2Fwp-includes%2Fjs%2Fcomment-reply.min.js%3Fver%3D4.3.1

Web application version:
WordPress version: WordPress
Wordpress Version 4.1 based on: -http://grupopromove.com.br/wp-includes/js/autosave.js
WordPress theme: -http://grupopromove.com.br/wp-content/themes/customizr/
Wordpress internal path: /home/promove/public_html/wp-content/themes/customizr/index.php

WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.

contact-form-7 4.3 latest release (4.4) Update required
http://contactform7.com/
Plugins are a source of many security vulnerabilities within WordPress installations, always keep them updated to the latest version available and check the developers plugin page for information about security related updates and fixes.

Loading the site failed: Loading the site failed

Scanner output:
Scanning -http://grupopromove.com.br
{“date”:“2016-02-29T22:56:14.333Z”,“timeout”:“http://grupopromove.com.br/”}
Status: fail
Load time: 61435ms
On a second scan this was detected:
-http://grupopromove.com.br/
Detected libraries:
jquery-migrate - 1.2.1 : -http://grupopromove.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : (active1) -http://grupopromove.com.br/wp-includes/js/jquery/jquery.js?ver=1.11.3
(active) - the library was also found to be active by running code
1 vulnerable library detected

Bitdefender TrafficLight blacklisted: https://trafficlight.bitdefender.com/info?url=grupopromove.com.br

IP badness history: https://www.virustotal.com/en/ip-address/186.202.39.134/information/
migrated here: https://www.virustotal.com/en/ip-address/107.180.41.158/information/

pol