See: htxp://190.98.197.123/Transparencia_SantoDomingo/templates/everhest/js/mouseover.js
code starts with
eval(function(p,a,c,k,e,r){e=function(c){return(c<a?''
Code might be OK because it is packer and not packed which would be malcode!
Site also has suspicious iframes detected:
Object: htxp://190.98.197.123/Transparencia_SantoDomingo/index.php/component/docman/cat_view/41-subsidios-y-otros-beneficios/264-programa-vinculos-/265-nomina-de-beneficiarios?amp;dir=DESC&limitstart=0&am …
SHA1: 4dd562690f86a5250f12fa4237b997e8ef8f1666
Name: TrojWare.JS.Iframe.HC
avast does not block IP.
polonus