Site is clean as such and will pass as clean, but there are so many insecurities, that you almost can wait for a new disaster to happen (a IIS7 exploit run?). Also here there is DNS issues - delegation, nameserver and soa - flagged: http://dnscheck.pingdom.com/?domain=aspentheseries.com
A lethal brew from non interrelated security measures, ignorance, lack of knowledge, unprofessionalism and sloppy maintenance. Yes, site is waiting for a coming infestation. Site clean but as vulnerable as …
polonus
P.S. Defacement webdav exploit is easily performed, because of existing IIS7 configuration errors - script kiddie level actually.
D