Everytime I open the blizzard launcher, I get a update request for HotS. After the 1.28mb update. My Anti-virus flags for malware.
This occurred with a Hearthstone ‘update’ as well
Win32:Malware
libGLESv2.dll
(x86)\Heroes of the Storm\Sup port\BlizzardBrowser
have you allowed the game to run in your firewall settings.
Yes, it is allowed
This started yesterday (been playing for years) Every time I close the launcher, and reopen. Updates are prompted, and my antivirus kicks off
have you kept your antivirus up to date?
I’ve found that when antivirus programs lapse, they tend to become virus-like themselves.
I keep it up-to-date. Run full deep-scans every night. I am kind of a stickler for computer security, especially with how much my rig costs
I’m getting the same thing as well. Hots is running fine so idk what it’s all about.
Your antivirus company runs a bad database which has received contributions from game creators.
https://nitlanguage.org/catalog/p/glesv2.html
In some games you can inject cheats like wall hacks, wire frames etc. through certain graphics wrappers, like the openGL gles wrapper.
Lazily coded antivirus softwares may automatically see some of these as “cheats” which get labeled as malware.
It is nothing more than a tool for rendering graphics. Blizzard is not uploading malware on your PC.
(Blizzard has changed to using the Metal API though.)
If I didn’t know better, I’d say the wrapper is involved in translating opengl commands to Metal.
I feel like the launcher was cracked. And not an issue with my security
What you say makes sense. Yet, I dont feel like that is what is going on
If hackers managed to ‘crack’ the launcher they would have taken it offline or made a public post on Twitter/the main page on battle.net.
It isn’t uncommon for antivirus to detect graphics wrapper DLL’s as malware.
That is, if they wanted attention.
Regardless. I am refusing to run the launcher because of this potential security risk. Unless you can give me hardcore proof its nothing to worry about
https://www.reddit.com/r/heroesofthestorm/comments/iep5ck/maleware_from_blizzard/
I can’t find other posts besides yours relating to HotS, besides this one on Reddit which was closed by the moderators. As the DLL is also a standard link library included with Google Chrome.
It seems to be a false positive only reported by AVG.
I have been digging as well. I might be harmless, it might be an error flagging it.
I still dont feel comfortable with the situation. It makes me uneasy, so I think I take a break from the blizzard launcher until the situation is rectified.
I do appreciate you attempting to figure this out
Could be the computer is infected with malware which is injecting itself into these dll files, turning them into malware carriers. This is common for highly infected PCs since it keeps the PC infected even if some causes are detected and solved. At this stage an OS reinstall is recommended, preferably by booting into an installer created from an uninfected system.
I run Norton on my PC, and it always freaks out about the Blizzard launcher as well, it started about a month ago I guess? I don’t have my PC nearby nor will I have it for a couple days but it’s always something in the lines of “SONAR has detected a suspicious program”. I updated Norton and then the launcher (which was not up to date at the time but it is now) and haven’t searched much about it thinking a future update would fix it, but I still have the issue.
there’s this one too, same file as OP
What anti-virus software do you use?
That’s really baffling, and frankly concerning. There hasn’t been any word on this from Blizzard at all yet? I do have an update to my own situation, as I too have had the same issue; once more after I allowed HotS to run it’s little short update, whatever it was. I actually suspect it might be the file itself being mistakenly identified as malicious by AVG, and apparently Avast is also doing this.
I was able to get the file sent to AVG and also left them my e-mail, hoping they might be able to determine if it’s malware but also respond to me. I should have received a response by now, so going to check.
Edit So I have received no response from AVG yet. Might be they’re still going through the process of reviewing if the file is indeed malware? Or perhaps they’ve received multiple submissions and help requests. Could be busy. Keeping an eye on the situation. Am going to open battle.net now and post a secondary edit update with what happens.
Same story here guys,happened to me for 3 times now when opening launcher it downloads this 700 kb file and then avast pops up ,getting same dll quarantined by avast free,added it to exceptions.Im sure its just false positive
I was thinking of coming back to hots recently but now I’m goin to wait for Blizzard to remove their injected malware first before I come back.But I’m sure it’s a false positive because if it really is a virus they are injecting you could technically sue them for damages XD but it must be a false positive.
Just uninstall your antivirus only 3 stupid antivirus said it virus 
https://www.virustotal.com/gui/file/9e9bb5d58271b4275f83d8d1986f1eded2c28b97e3170dd25f0b909fa9657bdb/detection/f-9e9bb5d58271b4275f83d8d1986f1eded2c28b97e3170dd25f0b909fa9657bdb-1598261470