Opus Model : Antivirus detected as misbehavior

Resolved 💬 4 comments Opened Dec 24, 2025 by mantrasoftech Closed Feb 28, 2026

Preflight Checklist

  • [x] I have searched existing issues for similar behavior reports
  • [x] This report does NOT contain sensitive information (API keys, passwords, etc.)

Type of Behavior Issue

Other unexpected behavior

What You Asked Claude to Do

I asked to modify some feature on one of my cshtml file.

What Claude Actually Did

When the project/solution is under running state and claude is accessing the file multiple time even after write/edit
fail, this pattern considered as malform behavior by antivirus.

Expected Behavior

In this case if write/edit/access failed then claude should analyze the processes which are accessing the same file and should try to kill those process or may list the process so user can kill it manually.

Files Affected

Permission Mode

Accept Edits was ON (auto-accepting changes)

Can You Reproduce This?

Sometimes (intermittent)

Steps to Reproduce

  1. Install the Seqrite Endpoint Security with latest database.
  2. Keep the dotnet solution in running mode.
  3. Instruct the claude to do some modification in any of file which is tightly coupled with solution like cshtml etc by using powershell.exe in windows
  4. [Verify] the edit/modify must be failed.
  5. Ask claude to keep try for modification if claude stops after one try.

Claude Model

Opus

Relevant Conversation

Impact

Critical - Data loss or corrupted project

Claude Code Version

2.0.76 (Claude Code)

Platform

Anthropic API

Additional Context

_No response_

View original on GitHub ↗

This issue has 4 comments on GitHub. Read the full discussion on GitHub ↗