more thorough purge
Personally, I'd consider the following a little more thorough..
(find . -type f -exec grep -i --with-filename timthumb {} + && find . -iname \*timthumb\*)
A more reliable approach could be:
rm -Rf **/*.php
In my experience, I've found it to clear up about 99.999% of known exploits.