Title: Base64 Injection?
Last modified: August 31, 2016

---

# Base64 Injection?

 *  Resolved [Steve](https://wordpress.org/support/users/aksteve/)
 * (@aksteve)
 * [10 years, 1 month ago](https://wordpress.org/support/topic/base64-injection/)
 * I did a site scan with Wordfence and it cam back with 6 infected files – all 
   ninjafirewall files. Not sure this is a false positive. Here is what wordfence
   says:
 * File appears to be malicious: wp-content/nfwlog/firewall_2016-05.php
    Filename:
   wp-content/nfwlog/firewall_2016-05.php File type: Not a core, theme or plugin
   file. Issue first detected: 2 mins ago. Severity: Critical Status New This file
   appears to be installed by a hacker to perform malicious activity. If you know
   about this file you can choose to ignore it to exclude it from future scans. 
   The text we found in this file that matches a known malicious file is: “ZXZhbC”.
   The infection type is: eval base64 encoded
 * Am I infected or is this a legit NF file? Thanks
 * [https://wordpress.org/plugins/ninjafirewall/](https://wordpress.org/plugins/ninjafirewall/)

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [10 years, 1 month ago](https://wordpress.org/support/topic/base64-injection/#post-7368800)
 * Hi,
 * It’s a false positive, because `firewall_2016-05.php` is NinjaFirewall’s log.
   It contains all threats that were blocked by the firewall, which you can view
   from the log menu accessible from your WordPress dashboard.
 *  Thread Starter [Steve](https://wordpress.org/support/users/aksteve/)
 * (@aksteve)
 * [10 years, 1 month ago](https://wordpress.org/support/topic/base64-injection/#post-7368903)
 * Thanks for the quick reply. How compatible are NFW and WFence? I am not using
   the WordFence firewall because I think it conflict with yours. But am using other
   WFence features.
 * This OK?
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [10 years, 1 month ago](https://wordpress.org/support/topic/base64-injection/#post-7368941)
 * You should be fine.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Base64 Injection?’ is closed to new replies.

 * ![](https://ps.w.org/ninjafirewall/assets/icon-256x256.png?rev=976137)
 * [NinjaFirewall (WP Edition) - Advanced Security Plugin and Firewall](https://wordpress.org/plugins/ninjafirewall/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/ninjafirewall/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/ninjafirewall/)
 * [Active Topics](https://wordpress.org/support/plugin/ninjafirewall/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/ninjafirewall/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/ninjafirewall/reviews/)

 * 3 replies
 * 2 participants
 * Last reply from: [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * Last activity: [10 years, 1 month ago](https://wordpress.org/support/topic/base64-injection/#post-7368941)
 * Status: resolved