Opus Model : Antivirus detected as misbehavior
Resolved 💬 4 comments Opened Dec 24, 2025 by mantrasoftech Closed Feb 28, 2026
Preflight Checklist
- [x] I have searched existing issues for similar behavior reports
- [x] This report does NOT contain sensitive information (API keys, passwords, etc.)
Type of Behavior Issue
Other unexpected behavior
What You Asked Claude to Do
I asked to modify some feature on one of my cshtml file.
What Claude Actually Did
When the project/solution is under running state and claude is accessing the file multiple time even after write/edit
fail, this pattern considered as malform behavior by antivirus.
Expected Behavior
In this case if write/edit/access failed then claude should analyze the processes which are accessing the same file and should try to kill those process or may list the process so user can kill it manually.
Files Affected
Permission Mode
Accept Edits was ON (auto-accepting changes)
Can You Reproduce This?
Sometimes (intermittent)
Steps to Reproduce
- Install the Seqrite Endpoint Security with latest database.
- Keep the dotnet solution in running mode.
- Instruct the claude to do some modification in any of file which is tightly coupled with solution like cshtml etc by using powershell.exe in windows
- [Verify] the edit/modify must be failed.
- Ask claude to keep try for modification if claude stops after one try.
Claude Model
Opus
Relevant Conversation
Impact
Critical - Data loss or corrupted project
Claude Code Version
2.0.76 (Claude Code)
Platform
Anthropic API
Additional Context
_No response_
This issue has 4 comments on GitHub. Read the full discussion on GitHub ↗