htaccess exploit leads to bogus av?

See: http://killmalware.com/ohmardarling.com/
See: https://www.virustotal.com/nl/url/2ab722e33eb39a396c9bed9c10d77442cbf9245a9cb55565cb6cddcf8546afa7/analysis/1418426900/
index
Severity: Suspicious
Reason: Detected suspicious redirection to external web resources at HTTP level.
Details: Detected HTTP redirection to htxp://87.248.180.90/in.html?s=ipw2.
File size[byte]: 0
File type: Unknown
Page/File MD5: 00000000000000000000000000000000
Scan duration[sec]: 0.001000
4 instances of internal server error: http://sitecheck.sucuri.net/results/ohmardarling.com

 php-error-headers-already-sent
<b>Warning</b>:  Cannot modify header information - headers already sent by (output started at /usr/home/www/xerxer.net/html/go.php:3) in <b>/usr/home/www/xerxer.net/html/go.php</b> on line <b>58</b>
 

Read on malcode here: https://www.badwarebusters.org/main/itemview/4304
Drive-by-download malware: http://safeweb.norton.com/report/show?url=87.248.180.90
No longer suspicious: http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=87.248.180.90
Read abput the redirect here (credits John level 10 ) https://productforums.google.com/forum/#!topic/webmasters/viVflCTYTSo
The Google Search redirection is blocked for me here: http://www.google.com/url?q=http%3A%2F%2F87.248.180.90%2Fin.html%3Fs%3Dipw2&sa=D&sntz=1&usg=AFQjCNFYTjo0gueL3RZjSbzMHu9PZdDSoA

pol

Other domains on IP launch Blackole: https://www.virustotal.com/nl/file/341a326ca0178b42ab695c8b4b4a19cdf1e0889afef71d6fe739c84303f3225a/analysis/

polonus