SE redirect cleansed - site still vulnerable - avast detects!

See: http://killmalware.com/iddaatahminleri.com/# (iddaatahminleri dot com parked/expired)
Clean? - https://www.virustotal.com/nl/url/62a9dd9b15d0dadae8d39dabc07e722d59ea3f9bc548e0df2a4f6df9dc6db08f/analysis/1415139443/
Here the SEO Spam is still given: http://sitecheck.sucuri.net/results/www.iddaatahminleri.com
Vulnerable because CMS outdated:
Web application version:
WordPress version: WordPress
Wordpress Version 3.3 or 3.4 based on: htxp://www.iddaatahminleri.com/wp-includes/js/autosave.js
All in One SEO Pack version: 1.6.15
WordPress directory: htxp://www.iddaatahminleri.com/wp-content
WordPress theme: htxp://www.iddaatahminleri.com/wp-content/themes/ESKI-soccerwp/
WordPress version outdated: Upgrade required.
Outdated WordPress Found: WordPress Under 4.0

IP blacklisted: http://www.ip-finder.me/5.152.192.218/
IP badness history: https://www.virustotal.com/nl/ip-address/5.152.192.218/information/

Avast detects/detected JS:Redirector-FB [Trj] Nameserver issues: http://www.dnsinspect.com/iddaatahminleri.com/1415139840

List of referenced blacklisted domains/hosts: 4
-counter.yadro.ru
-facebook.com *
-www.liveinternet.ru
-feeds.feedburner.com

error document
ErrorDocument 404 htxp://vip-rx-solutions.com/
polonus