Curious that they have an IP in their URL, I check their website, running on DSL. It says "Secure order form" ... a lie. It's just HTTP, and they take credit card numbers.
This _so_ pisses me off.
They're running Windows and tons of services, which all report their version numbers. One of which is Serv-U, notoriously buggy. And at least one DoS is available to kill 2.5e remotely. I wish I was evil enough to do it.
Too bad there isn't one to kill their mail server. Well, I didn't check. That wouldn't be immoral would it? Stopping a spammer? :P
*sigh* Stupid internet.