New Update iDefender

[yvan]

Updated to 5.4.1.

• Add Memory Defense rules (Dynamic Code Execution Detection, Dynamic Code Network Access Detection)
• Add detection for renamed third-party processes (python.exe, node.exe)
• Add detection for WMI creating consumer persistence
• Add detection for WMI command execution events
• Built-in rules add blocking for WMI creating processes, creating services, and creating scheduled tasks
• Add blocking for WinRAR vulnerability exploitation (CVE-2025-8088)
• Fix some UI display issues

 

[Avethil]

I guess I was too biased about iDefender and World of Warcraft compatibility New Update - iDefender
I just did a research with Microsoft Copilot and I got the following result, so I could consider to use iDefender Pro in future.

iDefender & World of Warcraft
Are they compatible?

✔ Yes — generally compatible

iDefender is a lightweight anti‑malware + anti‑exploit tool that focuses on:

• Blocking malicious scripts
• Preventing exploit‑based attacks
• Hardening the system against ransomware
• Monitoring suspicious process behavior

iDefender does NOT inject DLLs into processes, does not hook games aggressively, and does not use kernel‑level exploit mitigations that interfere with anti‑cheat systems.

This makes it far less likely to conflict with games, including World of Warcraft.

Why iDefender rarely causes issues with WoW

1. No aggressive memory hooking

WoW’s Warden anti‑tamper system dislikes tools that:

• Inject DLLs
• Hook memory
• Intercept keyboard input
• Modify process flow

iDefender avoids these techniques.

2. No exploit shields tied to specific applications

iDefender uses system‑wide heuristics, not per‑application mitigations.
This means WoW is not singled out or wrapped in a protection profile.

3. No interference with Battle.net launcher

Battle.net is sensitive to:

• Code injection
• DLL hooking
• Anti‑exploit sandboxing

iDefender doesn’t do these things.

4. Real‑world behavior

Users who run iDefender alongside WoW report no crashes, no launch failures, and no FPS drops.

iDefender is safe to use with World of Warcraftand should not require exclusions or special configuration.


If you want a “quiet” hardening layer that won’t disturb WoW, iDefender is a good fit.

 

[yvan]

5.5.2.0 Released.​

Major Version Update: Refined Built-in Rules, Enhanced Stability, and Optimized User Experience — Enabling True Proactive Defense

• Completely reorganized all built-in rules into three intuitive categories—Malicious, Suspicious, and Sensitive—and introduced multiple rule modes with support for automated response.
  • Basic Protection RulesProvides out-of-the-box basic protection, automatically blocking viruses, trojans, and malicious programs. No complex configuration or annoying pop-up prompts, helping novice users quickly build an endpoint security defense.
  • ATT&CK-based RulesBuilt on the MITRE ATT&CK framework, accurately reconstructing the complete attack chain from intrusion to exfiltration. Supports flexible rule adjustment by threat level and attack phase, provides fine-grained detection control, and delivers orchestratable active defense capabilities.
  • Advanced Expert RulesProvides fine-grained forensic analysis capabilities across processes, files, network, registry, etc., along with multi-scenario security enhancement capabilities such as privacy protection, system optimization, and vulnerability defense. Suitable for experienced security experts conducting precise threat hunting and policy tuning.
• Dramatically improved protection against Silver Fox malware, achieving 100% detection and blocking of known variants.
• Core engine improvements:
  • Optimized disk modification monitoring logic
  • Enhanced memory tampering detection
  • Refined ransomware detection heuristics
  • Completely reimplemented UAC privilege escalation detection
  • Redesigned WMI hooking mechanism
  • Overhauled process caching architecture
• Networking & usability fixes:
  • Added ICMP Type field to prevent internal ping blocking from interfering with external connectivity
  • Implemented attack chain analysis with parent-process attribution
  • Standardized event logging format (foundation for upcoming Process Tree and Detection & Response features)
  • Redesigned alert/interception records schema (breaking change: historical records from older versions will no longer be viewable—please export and back up existing logs before upgrading)
• New features & enhancements:
  • Added trial license mode for quick evaluation of Pro version capabilities
  • Improved hooking reliability for delay-loaded DLLs
  • Updated Scheduled Task targeting logic: now uses execution path instead of task name (note: this affects existing allowlists; a new "Task Name" field has been added to trust rules)
• Stability & reliability fixes:
  • Resolved rare BSOD during driver uninstallation
  • Fixed detection-related crashes caused by malformed stack traces
  • Addressed occasional UI hang issues
• Plus numerous additional improvements to user experience, rule accuracy, and core framework performance.