The infection is cleaned up -- you can verify this by visiting the URLs norton complains about. They're all 404's now:
Norton simply hasn't updated their records yet. Ted submitted a request for them to re-evaluate the site, but there's no telling how long it'll be before they bother to follow through.
After some cursory investigation, I've discovered a dozen other sites hosted on the same blog hosting platform (Media Temple) with the same infection. We've notified Media Temple.
This only effected the esa.epicski.com wordpress blog, which we do not manage. The main epicski.com site is on separate hardware, in a separate datacenter, hosted by SoftLayer, and we do not host the vulnerable application (Wordpress).