Is this a malware uri?

See: htxp://190.98.197.123/Transparencia_SantoDomingo/templates/everhest/js/mouseover.js
code starts with

 eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'' 

Code might be OK because it is packer and not packed which would be malcode!
Site also has suspicious iframes detected:
Object: htxp://190.98.197.123/Transparencia_SantoDomingo/index.php/component/docman/cat_view/41-subsidios-y-otros-beneficios/264-programa-vinculos-/265-nomina-de-beneficiarios?amp;dir=DESC&limitstart=0&am …
SHA1: 4dd562690f86a5250f12fa4237b997e8ef8f1666
Name: TrojWare.JS.Iframe.HC

avast does not block IP.

polonus

Hi polonus, after decode it looks like script for animating menu elements.
The second url avast! detected as JS:Iframe-ARY.

Tondah

Hi Tondah,

Good to know avast! user community is being protected.

polonus