If they are detecting fiddler, they are probably scanning for the certificate or network interface
All that really means is renaming or hiding both or intercepting and changing your network traffic in a vm or off your pc
it is also possible they encrypted their traffic or patched it server sided