false positive Kaspersky Plus keep deleting file in Exclusion folder

[Hendarto]

Operation System : Windows 11 v 10.0.22631 Build 22631

Kaspersky Plus 21.20.8.505
Subscription: Kaspersky Total Security
Burp Suite v2025.2.4 Build 37731
SQLipy Sqlmap Integration v0.8.5 by Josh Berry

I work as a pentester using Burp Suite, so this is very disruptive to my work.

I have an issue related to the exclusion feature in Kaspersky Plus, where even though I have set an exclusion for a folder, Kaspersky still scans that folder, causing the files inside it to be detected and deleted

The scenario started when I tried to install the Burp extension sqlmap. After successfully installing, the extension file was automatically deleted by Kaspersky because it was detected as HEUR:HackTool.Python.Agent.gen. I then performed an exclusion for the folder C:\Users[MYUSER]\AppData\Roaming\BurpSuite, including checking the box for included subfolders. However, Kaspersky still deleted the settings.py file or other files owned by the sqlmap extension in the Burp folder. The setting I used was to uncheck all component protection in the exclusion. I also tried the opposite by checking all component protection. The result was the same.

Link Video Scenario : https://drive.google.com/file/d/12r0r3ksJfxkIk3yVSv8LGZTT2jwbRPiN/view?usp=sharing

[harlan4096]

Welcome to Kaspersky Community.

 

In Type of Object detected, You have to add the exact detection You get in Reports, and tick all the protection modules.

Welcome to Kaspersky Community.

 

In Type of Object detected, You have to add the exact detection You get in Reports, and tick all the protection modules.