Well, at least they tried. Asked to remove name servers used by their criminal customer, Moniker / Ace of Domains made an effort.The request was to lock out the domain from the criminal, and set the address to 0.0.0.0, so how did they perform?

ns1.hairyolddns.com has had address changes 221.7.193.181 << 0.0.0.0 << 218.106.165.213 << 121.31.56.5
ns2.hairyolddns.com has had addresses 121.31.56.5 << 221.7.193.181 << 58.61.152.102 << 0.0.0.0 << 58.61.152.102

At no time were both name servers taken offline, causing any inconvenience to their criminal customer.

Likewise with ns1.surprisingdns.com - 0.0.0.0 << 58.61.152.102 << 0.0.0.0 << 221.7.193.181 << 0.0.0.0 << 121.31.56.5
and ns2.surprisingdns.com - 121.31.56.5 << 218.106.165.213 << 121.31.56.5 << 0.0.0.0 << 218.106.165.213 << 221.7.193.181 << 218.106.165.213
Again, never losing both name servers at once.

Similar patterns of behaviour were seen for ns1.ferygoins.com and ns2.ferygoins.com and also ns1.chambogos.com and ns2.chambogos.com. Ace of Domains has either failed to lock the criminal out, or someone has overriden them.

For any competent, spam unfriendly, honest registrar this process should not be difficult. A registrar contacted me last month to say that he had been offered a bribe to keep a spammer's sites up despite complaints. It is unlikely that this is a case of a registrar acting in the best interests of a criminal. So the kindest interpretation is that Ace of Domains is merely incompetent.