Cleansed after defacement but still vulnerable...

See three warnings: https://asafaweb.com/Scan?Url=blackgoldbiofuels.com
Code to be retired: Detected libraries:
jquery-migrate - 1.2.1 : -http://www.blackgoldbiofuels.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : (active1) -http://www.blackgoldbiofuels.com/wp-includes/js/jquery/jquery.js?ver=1.11.3
(active) - the library was also found to be active by running code
1 vulnerable library detected
HTTP Server: nginx (Cloudflare)
PHP Version: 5.4.27 (Outdated)

Wordpress Version 4.1 based on: -http://www.blackgoldbiofuels.com//wp-includes/js/autosave.js
WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.

wp-spamshield latest release (1.9.6.6)
http://www.redsandmarketing.com/plugins/wp-spamshield/

WordPress Theme
The theme has been found by examining the path /wp-content/themes/ theme name /

Frontier 1.2.4http://ronangelo.com/frontier/

Warning User Enumeration is possible!

SEO Spam danger: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.blackgoldbiofuels.com%2Fwp-content%2Fplugins%2Fwp-spamshield%2Fjs%2Fjscripts.php
landing at: -http://www.kidinacandyshop.us

-http://www.kidinacandyshop.us
Detected libraries:
jquery-migrate - 1.2.1 : -http://www.kidinacandyshop.us/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : (active1) -http://www.kidinacandyshop.us
(active) - the library was also found to be active by running code
1 vulnerable library detected - nd that is just where the scan lands!

polonus (volunteer website security analyst and website error-hunter)