The exploit is gone. I emailed the site admins to check their ads. I suspect one ran a code somehow even though the ad never showed. Or maybe the site was hacked to deliver malware and the owners didn't know it. I've read before that sites can still deliver malicious code even though they didn't install it to run themselves. So far I haven't seen any more drive bys on that site, knock on wood.