Defacement flagged?

See: http://killmalware.com/expo2010.pl/#
This signature was found in 2730 websites.
Missed as usuasl: https://www.virustotal.com/en/url/9d43e4d06d72eb9493837ca11a28623b52415c87c224424937c0d7bb73010e58/analysis/1429712845/

ISSUE DETECTED DEFINITION INFECTED URL
Defacement MW:DEFACED:01 htxp://expo2010.pl
Defacement MW:DEFACED:01 htxp://expo2010.pl/404testpage4525d2fdc
Defacement MW:DEFACED:01 htxp://expo2010.pl/404javascript.js
Defacement MW:DEFACED:01 htxp://expo2010.pl/404javascript.js
Web site defaced. Details: http://sucuri.net/malware/entry/MW:DEFACED:01

Hacked By SecurityCrewz WordPress version outdated: Upgrade required. Outdated WordPress Found: WordPress Under 4.0 Vulnerable to BruteForce attacks.

iFrame hack: File name: index.html


[[<iframe width="0%" height="0" scrolling="no" frameborder="no" src="htxps://w.soundcloud.com/player/?url=htxps://soundcloud.com/user674471/syairimamahmad%26amp;auto_play=true%26amp;hide_related=false%26amp;show_comments=true%26amp;show_user=true%26amp;show_reposts=false%26amp;visual=true">]]

Flagged by Browser JSGuard as “Threat:: Hidden Iframe
Evil URL(s) are ::: w.soundcloud dot com”

Vuln. on website: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fexpo2010.pl
link to wXw.cpmprofit.com blocked by μMatrix for me in Google Chrome browser
See: http://www.metaheaders.com/www.cpmprofit.com.html

polonus